52.139.38.158 - IPInfo

Basic Info

City: Toronto

Region: Ontario

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       52.132.0.0 - 52.143.255.255
CIDR:           52.136.0.0/13, 52.132.0.0/14
NetName:        MSFT
NetHandle:      NET-52-132-0-0-1
Parent:         NET52 (NET-52-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2015-11-24
Updated:        2021-12-14
Ref:            https://rdap.arin.net/registry/ip/52.132.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.139.38.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41449
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.139.38.158.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026051301 1800 900 604800 86400

;; Query time: 5 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 09:00:02 CST 2026
;; MSG SIZE  rcvd: 106

Host info

Host 158.38.139.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.38.139.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.251.75.145	attackspambots	Tried to use the server as an open proxy	2020-07-23 04:41:25
212.70.149.19	attackbotsspam	2020-07-22T14:41:01.619212linuxbox-skyline auth[142602]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=orussell rhost=212.70.149.19 ...	2020-07-23 04:45:50
31.142.242.97	attackspam	michaelklotzbier.de 31.142.242.97 [22/Jul/2020:16:46:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" michaelklotzbier.de 31.142.242.97 [22/Jul/2020:16:46:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-23 04:42:52
46.146.240.185	attackspam	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-07-23 04:40:20
117.27.88.61	attackspam	Jul 22 17:54:29 vmd36147 sshd[19481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.27.88.61 Jul 22 17:54:31 vmd36147 sshd[19481]: Failed password for invalid user charles from 117.27.88.61 port 2340 ssh2 Jul 22 17:59:37 vmd36147 sshd[30438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.27.88.61 ...	2020-07-23 04:56:00
60.174.21.251	attackbots	[H1] Blocked by UFW	2020-07-23 04:21:06
134.209.96.131	attackbotsspam	2020-07-22T15:00:53.378925shield sshd\[3280\]: Invalid user alejandro from 134.209.96.131 port 53026 2020-07-22T15:00:53.388507shield sshd\[3280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131 2020-07-22T15:00:55.588810shield sshd\[3280\]: Failed password for invalid user alejandro from 134.209.96.131 port 53026 ssh2 2020-07-22T15:05:52.797472shield sshd\[4417\]: Invalid user ftpuser from 134.209.96.131 port 39416 2020-07-22T15:05:52.808057shield sshd\[4417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131	2020-07-23 04:52:20
157.245.104.19	attackbotsspam	Jul 22 21:41:38 vps639187 sshd\[16835\]: Invalid user spiceworks from 157.245.104.19 port 39828 Jul 22 21:41:38 vps639187 sshd\[16835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.104.19 Jul 22 21:41:41 vps639187 sshd\[16835\]: Failed password for invalid user spiceworks from 157.245.104.19 port 39828 ssh2 ...	2020-07-23 04:51:51
106.13.168.43	attack	Jul 22 16:55:07 ws22vmsma01 sshd[121379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.168.43 Jul 22 16:55:09 ws22vmsma01 sshd[121379]: Failed password for invalid user hm from 106.13.168.43 port 55968 ssh2 ...	2020-07-23 04:41:11
111.95.141.34	attack	Jul 22 17:50:51 vlre-nyc-1 sshd\[27081\]: Invalid user hek from 111.95.141.34 Jul 22 17:50:51 vlre-nyc-1 sshd\[27081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.95.141.34 Jul 22 17:50:54 vlre-nyc-1 sshd\[27081\]: Failed password for invalid user hek from 111.95.141.34 port 39895 ssh2 Jul 22 17:55:39 vlre-nyc-1 sshd\[27187\]: Invalid user lhs from 111.95.141.34 Jul 22 17:55:39 vlre-nyc-1 sshd\[27187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.95.141.34 ...	2020-07-23 04:27:42
222.186.175.169	attackbots	2020-07-22T20:30:53.075340abusebot-6.cloudsearch.cf sshd[20607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root 2020-07-22T20:30:54.801591abusebot-6.cloudsearch.cf sshd[20607]: Failed password for root from 222.186.175.169 port 63886 ssh2 2020-07-22T20:30:58.167066abusebot-6.cloudsearch.cf sshd[20607]: Failed password for root from 222.186.175.169 port 63886 ssh2 2020-07-22T20:30:53.075340abusebot-6.cloudsearch.cf sshd[20607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root 2020-07-22T20:30:54.801591abusebot-6.cloudsearch.cf sshd[20607]: Failed password for root from 222.186.175.169 port 63886 ssh2 2020-07-22T20:30:58.167066abusebot-6.cloudsearch.cf sshd[20607]: Failed password for root from 222.186.175.169 port 63886 ssh2 2020-07-22T20:30:53.075340abusebot-6.cloudsearch.cf sshd[20607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-07-23 04:35:14
195.181.168.170	attackspam	(From barbara.tyrrell@hotmail.com) Would you like no charge advertising for your website? Check out: http://www.completely-free-ads.xyz	2020-07-23 04:37:36
177.153.11.13	attackspambots	From bounce-35cd4d53be0cb40ec1d4b79cbb1257a1@smtplw-13.com Wed Jul 22 11:46:21 2020 Received: from smtp12t11f13.saaspmta0001.correio.biz ([177.153.11.13]:58327)	2020-07-23 04:44:09
92.222.72.234	attack	Jul 22 12:59:33 Host-KLAX-C sshd[14115]: Connection closed by 92.222.72.234 port 35042 [preauth] ...	2020-07-23 04:20:27
110.166.82.211	attackspambots	$f2bV_matches	2020-07-23 04:32:38

Recently Reported IPs

2606:4700:10::ac43:1634	218.151.38.93	198.100.58.65	172.236.15.113
91.231.89.47	91.231.89.46	91.196.152.239	47.95.192.145
192.109.200.204	2606:4700:10::6816:3970	2606:4700:10::6814:4474	2606:4700:10::6816:4236
39.100.84.10	216.180.246.12	77.247.2.37	176.65.139.165
2606:4700:10::6816:440d	216.36.105.90	20.197.195.237	117.133.151.135