City: Dublin
Region: Leinster
Country: Ireland
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.192.0.0 - 20.255.255.255
CIDR: 20.192.0.0/10
NetName: MSFT
NetHandle: NET-20-192-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-10-18
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/20.192.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.234.20.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62323
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.234.20.103. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026030701 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 12:00:44 CST 2026
;; MSG SIZE rcvd: 106Host 103.20.234.20.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 103.20.234.20.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 49.234.222.209 | attackbots | Apr 10 00:52:51 firewall sshd[7277]: Failed password for invalid user ubuntu from 49.234.222.209 port 36926 ssh2 Apr 10 00:58:20 firewall sshd[7515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.222.209 user=root Apr 10 00:58:21 firewall sshd[7515]: Failed password for root from 49.234.222.209 port 37534 ssh2 ... |
2020-04-10 12:50:40 |
| 113.116.57.104 | attackspambots | (sshd) Failed SSH login from 113.116.57.104 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 10 05:37:52 amsweb01 sshd[4961]: Invalid user gitlab from 113.116.57.104 port 59754 Apr 10 05:37:54 amsweb01 sshd[4961]: Failed password for invalid user gitlab from 113.116.57.104 port 59754 ssh2 Apr 10 05:50:05 amsweb01 sshd[6582]: Invalid user user from 113.116.57.104 port 56356 Apr 10 05:50:07 amsweb01 sshd[6582]: Failed password for invalid user user from 113.116.57.104 port 56356 ssh2 Apr 10 05:58:17 amsweb01 sshd[7703]: Invalid user obus from 113.116.57.104 port 56068 |
2020-04-10 12:51:11 |
| 36.81.203.211 | attackbots | SSH login attempts. |
2020-04-10 13:11:40 |
| 162.243.128.97 | attack | Unauthorized connection attempt detected from IP address 162.243.128.97 to port 8889 |
2020-04-10 12:37:09 |
| 62.109.26.125 | attack | Apr 10 00:57:50 ws24vmsma01 sshd[170411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.109.26.125 Apr 10 00:57:52 ws24vmsma01 sshd[170411]: Failed password for invalid user king from 62.109.26.125 port 57400 ssh2 ... |
2020-04-10 13:17:18 |
| 182.53.230.105 | attackspam | Tried sshing with brute force. |
2020-04-10 12:58:32 |
| 192.241.172.175 | attackbots | Brute force attempt |
2020-04-10 12:38:13 |
| 202.175.60.53 | attackspambots | Apr 10 05:55:08 minden010 sshd[31485]: Failed password for root from 202.175.60.53 port 59276 ssh2 Apr 10 05:58:24 minden010 sshd[32506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.175.60.53 Apr 10 05:58:26 minden010 sshd[32506]: Failed password for invalid user admin from 202.175.60.53 port 54986 ssh2 ... |
2020-04-10 12:38:59 |
| 138.197.147.128 | attackbotsspam | Apr 10 05:58:23 |
2020-04-10 12:44:49 |
| 106.54.224.208 | attackspambots | 5x Failed Password |
2020-04-10 13:14:08 |
| 212.19.134.49 | attack | (sshd) Failed SSH login from 212.19.134.49 (KZ/Kazakhstan/reception-break.bestshake.net): 5 in the last 3600 secs |
2020-04-10 12:54:12 |
| 104.131.52.16 | attack | Apr 10 05:58:20 [host] sshd[14693]: Invalid user w Apr 10 05:58:20 [host] sshd[14693]: pam_unix(sshd: Apr 10 05:58:21 [host] sshd[14693]: Failed passwor |
2020-04-10 12:48:50 |
| 139.59.79.202 | attackspambots | firewall-block, port(s): 26385/tcp |
2020-04-10 12:44:24 |
| 190.88.217.122 | attackbotsspam | Unauthorized connection attempt detected from IP address 190.88.217.122 to port 1433 |
2020-04-10 12:54:48 |
| 185.175.93.105 | attack | Apr 10 06:27:53 debian-2gb-nbg1-2 kernel: \[8751882.664953\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.105 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63929 PROTO=TCP SPT=57439 DPT=6720 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-10 12:32:14 |