20.79.41.106

United States

0

Resolved hostnames

0

Contacting malwares

0

Online malicious URLs allocated

0

Offline malicious URLs allocated


Blacklist timeline


First seen: Tue May 04 2021 23:04:52 GMT+0000
Last seen: Fri May 14 2021 15:34:01 GMT+0000
Period: 10 days

Whois information


Autonomous System
AS Name:
AS8075 Microsoft Corporation
AS Country Code:
US (United States)
AS Registry:
arin
AS Date:
Wed Oct 18 2017 00:00:00 GMT+0000
AS CIDR:
20.64.0.0/10

Registrant information
Registrant name:
Microsoft Corporation
Address:
One Microsoft Way
Postal Code:
98052
Country Code:
US (United States)
City:
Redmond
State:
WA

Emails
Emails:
  • msndcc@microsoft.com
  • IOC@microsoft.com
  • dabedard@microsoft.com
  • v-raghuy@microsoft.com
  • abuse@microsoft.com
  • Dates
    Indexed:
    Sun Apr 25 2021 12:18:10 GMT+0000
    Last modified:
    Wed May 08 2024 20:05:46 GMT+0000
    Last Updated:
    Wed Oct 18 2017 00:00:00 GMT+0000
    AS Date:
    Wed Oct 18 2017 00:00:00 GMT+0000

    Location - Redmond - WA - United States


    Developers can check API Specification here:


    Request:

              
    curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/ip/20.79.41.106
            

    Request:

    Alternatively you can use Maltiverse Python3 Library:
              
    import requests
    import json
    
    url = 'https://api.maltiverse.com/ip/20.79.41.106'
    response = requests.get(url)
    print(json.dumps(response.json(), indent=4, sort_keys=True))
            

    Request:

              
    $url = 'https://api.maltiverse.com/ip/20.79.41.106'
    $headers =  @{Authorization=("Bearer {0}" -f "<API_KEY>")}
    $response = Invoke-RestMethod $url -Headers $headers
    Write-Output $response
            

    Response:

          
    {
        "address": "One Microsoft Way",
        "as_name": "AS8075 Microsoft Corporation",
        "as_number": "8075",
        "asn_cidr": "20.64.0.0/10",
        "asn_country_code": "US",
        "asn_date": "2017-10-18 00:00:00",
        "asn_registry": "arin",
        "blacklist": [
            {
                "count": 8,
                "description": "SSH Attacker",
                "first_seen": "2021-05-04 23:04:52",
                "labels": [
                    "malicious-activity"
                ],
                "last_seen": "2021-05-14 15:34:01",
                "source": "Blocklist.de"
            },
            {
                "count": 4,
                "description": "Malicious host",
                "first_seen": "2021-05-10 09:30:08",
                "labels": [
                    "malicious-activity"
                ],
                "last_seen": "2021-05-11 22:50:03",
                "source": "Darklist"
            },
            {
                "count": 4,
                "description": "Malicious Host",
                "first_seen": "2021-04-24 00:00:00",
                "last_seen": "2021-04-24 00:00:00",
                "source": "HoneyDB"
            }
        ],
        "cidr": [
            "20.34.0.0/15",
            " 20.36.0.0/14",
            " 20.33.0.0/16",
            " 20.128.0.0/16",
            " 20.48.0.0/12",
            " 20.64.0.0/10",
            " 20.40.0.0/13"
        ],
        "city": "Redmond",
        "classification": "suspicious",
        "country_code": "US",
        "creation_time": "2021-04-25 12:18:10",
        "email": [
            "msndcc@microsoft.com",
            "IOC@microsoft.com",
            "dabedard@microsoft.com",
            "v-raghuy@microsoft.com",
            "abuse@microsoft.com"
        ],
        "ip_addr": "20.79.41.106",
        "ip_version": 4,
        "is_cdn": false,
        "is_cnc": false,
        "is_distributing_malware": false,
        "is_hosting": false,
        "is_iot_threat": false,
        "is_known_attacker": false,
        "is_known_scanner": false,
        "is_mining_pool": false,
        "is_open_proxy": false,
        "is_sinkhole": false,
        "is_tor_node": false,
        "is_vpn_node": false,
        "last_updated": "2017-10-18 00:00:00",
        "location": {
            "lat": 37.751,
            "lon": -97.822
        },
        "modification_time": "2024-05-08 20:05:46",
        "number_of_blacklisted_domains_resolving": 0,
        "number_of_domains_resolving": 0,
        "number_of_offline_malicious_urls_allocated": 0,
        "number_of_online_malicious_urls_allocated": 0,
        "number_of_whitelisted_domains_resolving": 0,
        "postal_code": "98052",
        "registrant_name": "Microsoft Corporation",
        "state": "WA",
        "tag": [
            "ssh",
            "bruteforce",
            "bot",
            "apache",
            "attacker",
            "script kiddies"
        ],
        "type": "ip"
    }