City: Singapore
Region: unknown
Country: Singapore
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 40.74.0.0 - 40.125.127.255
CIDR: 40.74.0.0/15, 40.120.0.0/14, 40.96.0.0/12, 40.125.0.0/17, 40.112.0.0/13, 40.124.0.0/16, 40.76.0.0/14, 40.80.0.0/12
NetName: MSFT
NetHandle: NET-40-74-0-0-1
Parent: NET40 (NET-40-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2015-02-23
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/40.74.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 40.99.8.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51032
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;40.99.8.200. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026020502 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 06 02:11:26 CST 2026
;; MSG SIZE rcvd: 104Host 200.8.99.40.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 200.8.99.40.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 113.197.54.162 | attackspambots | Unauthorized connection attempt detected from IP address 113.197.54.162 to port 445 |
2019-12-24 20:34:25 |
| 218.92.0.198 | attackspambots | Dec 24 12:09:39 amit sshd\[1070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.198 user=root Dec 24 12:09:41 amit sshd\[1070\]: Failed password for root from 218.92.0.198 port 43666 ssh2 Dec 24 12:11:14 amit sshd\[1097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.198 user=root ... |
2019-12-24 20:46:32 |
| 139.199.58.118 | attackbotsspam | SSH/22 MH Probe, BF, Hack - |
2019-12-24 20:26:53 |
| 45.120.23.66 | attackbots | Unauthorized connection attempt from IP address 45.120.23.66 on Port 445(SMB) |
2019-12-24 21:01:07 |
| 176.44.38.73 | attackbotsspam | Unauthorized connection attempt from IP address 176.44.38.73 on Port 445(SMB) |
2019-12-24 20:37:42 |
| 49.48.33.80 | attackspam | Unauthorized connection attempt from IP address 49.48.33.80 on Port 445(SMB) |
2019-12-24 20:28:51 |
| 5.183.181.37 | attack | SSH/22 MH Probe, BF, Hack - |
2019-12-24 20:43:20 |
| 197.33.202.213 | attack | DLink DSL Remote OS Command Injection Vulnerability |
2019-12-24 20:43:48 |
| 177.74.126.17 | attackspam | Unauthorized connection attempt from IP address 177.74.126.17 on Port 445(SMB) |
2019-12-24 20:48:24 |
| 185.117.119.100 | attackbotsspam | [portscan] tcp/3389 [MS RDP] *(RWIN=1024)(12241323) |
2019-12-24 20:25:36 |
| 113.170.69.97 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 24-12-2019 07:15:09. |
2019-12-24 20:59:31 |
| 105.154.192.204 | attack | Attempted to connect 3 times to port 8291 TCP |
2019-12-24 20:46:00 |
| 115.72.176.45 | attackspambots | Unauthorized connection attempt from IP address 115.72.176.45 on Port 445(SMB) |
2019-12-24 21:05:18 |
| 222.186.180.41 | attack | Dec 24 13:36:51 v22018086721571380 sshd[23688]: Failed password for root from 222.186.180.41 port 47634 ssh2 |
2019-12-24 20:39:33 |
| 64.202.188.156 | attackbots | WordPress XMLRPC scan :: 64.202.188.156 0.120 BYPASS [24/Dec/2019:07:37:30 0000] [censored_2] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-12-24 20:53:19 |