20.79.41.106
Sign up
Create your account
Actionable Threat Intelligence
- AS Name:
- AS8075 Microsoft Corporation
- AS Country Code:
-
US
(United States)
- AS Registry:
- arin
- AS Date:
- Wed Oct 18 2017 00:00:00 GMT+0000
- AS CIDR:
- 20.64.0.0/10
- Registrant name:
- Microsoft Corporation
- Address:
- One Microsoft Way
- Postal Code:
- 98052
- Country Code:
-
US (United States)
- City:
- Redmond
- State:
- WA
- Emails:
-
- msndcc@microsoft.com
- IOC@microsoft.com
- dabedard@microsoft.com
- v-raghuy@microsoft.com
- abuse@microsoft.com
- Indexed:
- Sun Apr 25 2021 12:18:10 GMT+0000
- Last modified:
- Wed May 08 2024 20:05:46 GMT+0000
- Last Updated:
- Wed Oct 18 2017 00:00:00 GMT+0000
- AS Date:
- Wed Oct 18 2017 00:00:00 GMT+0000
United States
0
Resolved hostnames0
Contacting malwares0
Online malicious URLs allocated0
Offline malicious URLs allocatedCurrent activity of this IP:
Blacklist timeline
First seen: Tue May 04 2021 23:04:52 GMT+0000
Last seen: Fri May 14 2021 15:34:01 GMT+0000
Period: 10 days
Last seen: Fri May 14 2021 15:34:01 GMT+0000
Period: 10 days
Whois information
Autonomous System
Registrant information
Emails
Dates
Location - Redmond - WA - United States
Tags
Developers can check API Specification here:
Request:
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/ip/20.79.41.106
Request:
Alternatively you can use Maltiverse Python3 Library:
import requests
import json
url = 'https://api.maltiverse.com/ip/20.79.41.106'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))
Request:
$url = 'https://api.maltiverse.com/ip/20.79.41.106'
$headers = @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response
Response:
{
"address": "One Microsoft Way",
"as_name": "AS8075 Microsoft Corporation",
"as_number": "8075",
"asn_cidr": "20.64.0.0/10",
"asn_country_code": "US",
"asn_date": "2017-10-18 00:00:00",
"asn_registry": "arin",
"blacklist": [
{
"count": 8,
"description": "SSH Attacker",
"first_seen": "2021-05-04 23:04:52",
"labels": [
"malicious-activity"
],
"last_seen": "2021-05-14 15:34:01",
"source": "Blocklist.de"
},
{
"count": 4,
"description": "Malicious host",
"first_seen": "2021-05-10 09:30:08",
"labels": [
"malicious-activity"
],
"last_seen": "2021-05-11 22:50:03",
"source": "Darklist"
},
{
"count": 4,
"description": "Malicious Host",
"first_seen": "2021-04-24 00:00:00",
"last_seen": "2021-04-24 00:00:00",
"source": "HoneyDB"
}
],
"cidr": [
"20.34.0.0/15",
" 20.36.0.0/14",
" 20.33.0.0/16",
" 20.128.0.0/16",
" 20.48.0.0/12",
" 20.64.0.0/10",
" 20.40.0.0/13"
],
"city": "Redmond",
"classification": "suspicious",
"country_code": "US",
"creation_time": "2021-04-25 12:18:10",
"email": [
"msndcc@microsoft.com",
"IOC@microsoft.com",
"dabedard@microsoft.com",
"v-raghuy@microsoft.com",
"abuse@microsoft.com"
],
"ip_addr": "20.79.41.106",
"ip_version": 4,
"is_cdn": false,
"is_cnc": false,
"is_distributing_malware": false,
"is_hosting": false,
"is_iot_threat": false,
"is_known_attacker": false,
"is_known_scanner": false,
"is_mining_pool": false,
"is_open_proxy": false,
"is_sinkhole": false,
"is_tor_node": false,
"is_vpn_node": false,
"last_updated": "2017-10-18 00:00:00",
"location": {
"lat": 37.751,
"lon": -97.822
},
"modification_time": "2024-05-08 20:05:46",
"number_of_blacklisted_domains_resolving": 0,
"number_of_domains_resolving": 0,
"number_of_offline_malicious_urls_allocated": 0,
"number_of_online_malicious_urls_allocated": 0,
"number_of_whitelisted_domains_resolving": 0,
"postal_code": "98052",
"registrant_name": "Microsoft Corporation",
"state": "WA",
"tag": [
"ssh",
"bruteforce",
"bot",
"apache",
"attacker",
"script kiddies"
],
"type": "ip"
}