20.24.67.9 Threat Intelligence and Host Information

Share on:
Apr 30, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Possibly Malicious Host 🟢 29/100

Host and Network Information

  • Tags: Nextray, awsindia, cyber security, ioc, malicious, ntp, phishing, scanners

  • View other sources: Spamhaus VirusTotal

  • Country: United States of America
  • Network: AS8075 microsoft corporation
  • Noticed: 2 times
  • Protcols Attacked: ntp
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, India, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: azuregateway-a31d0061-43b9-43b0-b7ea-c6cd6beeae78-b6124ba756e6.vpn.azure.com asd875.com dfr715.com dcv885.com mza505.com iuh659.com qwe805.com qal449.com ycu729.com poi115.com bgr405.com bvx439.com but629.com juy675.com onr519.com nja509.com kaq129.com kjk809.com kjh935.com frt739.com frw605.com wkc923.com toy738.com tok512.com dwc163.com cmn013.com clz271.com hkm218.com hqo598.com mly923.com yrk802.com bmx457.com gkh387.com jws090.com gkt686.com owk361.com ork644.com ekc185.com ksa482.com kee795.com rhk872.com wer597.com tyr019.com cvf083.com cgv690.com set733.com ser492.com sdf006.com hjg169.com sed024.com hkj079.com ygh949.com yuj376.com bvh200.com gyu068.com gfh801.com jht038.com rtf051.com fgt264.com frd040.com fgs094.com aiu230.com anw310.com lap874.com qpb704.com gtr574.com ohg730.com jcx034.com ewr910.com kgf880.com fjk554.com werc344.com ahz293.com tgff843.com dfjg193.com drgr013.com dgwr790.com cbd029.com szxd915.com sya812.com hsd029.com hay828.com hgf521.com lak918.com iknf609.com jfs783.com edrf568.com nay723.com njyg298.com kut890.com ftgy468.com wbg606.com asr569.com awp906.com azo349.com drt639.com mjh670.com ldv406.com qsc129.com poj819.com gsi819.com gcx659.com jhg789.com opa890.com jay670.com oug529.com nbx909.com kie920.com kwe870.com kig640.com kae560.com wei915.com dfw315.com zxc015.com pdf515.com jui915.com nmd215.com kas715.com kop415.com kai015.com rty415.com wsa036.com ask080.com aoe391.com adk164.com tei971.com dbq321.com cry980.com cvg904.com dfe103.com czk314.com srf532.com hgk347.com hkc610.com mwv913.com mag729.com lij020.com mai751.com qow281.com qpb013.com qpa913.com ytm621.com qeg772.com pkn813.com bmt417.com ghb402.com gdk653.com gjn849.com joj094.com gct243.com jsw124.com juw713.com okk754.com erv812.com eok238.com esa098.com nkl122.com khg518.com kao191.com kuy211.com rke979.com fgu298.com wkwc817.com abei218.com care612.com sepe283.com hulk263.com more892.com zeus818.com kaow208.com rece318.com revd821.com tork525.com dhzx634.com hkxn271.com ghod183.com orkc367.com nmcb486.com sjwo28.com msxu58.com lazw48.com loip18.com laio98.com oapw08.com ewcy68.com nhgv68.com kaji98.com reue78.com tbvt46.com drev29.com vgdw01.com swve12.com laks92.com pqow42.com gbuj51.com ndjx02.com rbre37.com rege92.com aonx12.com daa810.com cvx356.com coz186.com vfer32.com srk561.com hty451.com bmc254.com owpa52.com okh905.com ernk92.com ecwj72.com ksl063.com rpk683.com fsd721.com ascu42.com dscj90.com dvfe01.com mncz35.com ptrh61.com jkob91.com jnkq81.com erfc21.com nsqr70.com nbdw90.com wegc80.com aieq92.com sevn43.com hweu62.com rwei65.com gtdw4.com gtob0.com gtjf3.com gtsx1.com gtya8.com gtuk2.com gthc5.com gthi9.com gtsu7.com gtdy6.com feuk5.com feds3.com felw3.com fevr8.com feap9.com fuw09.com fua68.com fut72.com fuh67.com fud01.com fux36.com fur89.com fuq23.com fuj98.com sho198.com www.sho198.com www.dgj292.com www.ujt295.com ujt295.com dgj292.com xkz231.com skx193.com hlt486.com mgt628.com pgk352.com pcb978.com bmz829.com gnn027.com gke582.com kro721.com yke281.com szcdsf.com seferf.com egefaq.com kuhjty.com fbgdre.com jdhfkd35dfd.com dns00z1.k2dns.com aimishu19.app

Map

Whois Information

  • NetRange: 20.0.0.0 - 20.31.255.255
  • CIDR: 20.0.0.0/11
  • NetName: MSFT
  • NetHandle: NET-20-0-0-0-1
  • Parent: NET20 (NET-20-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Microsoft Corporation (MSFT)
  • RegDate: 2017-10-18
  • Updated: 2021-12-14
  • Ref: https://rdap.arin.net/registry/ip/20.0.0.0
  • OrgName: Microsoft Corporation
  • OrgId: MSFT
  • Address: One Microsoft Way
  • City: Redmond
  • StateProv: WA
  • PostalCode: 98052
  • Country: US
  • RegDate: 1998-07-10
  • Updated: 2023-04-21
  • Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
  • Comment: * https://cert.microsoft.com.
  • Comment:
  • Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
  • Comment: * [email protected].
  • Comment:
  • Comment: To report security vulnerabilities in Microsoft products and services, please contact:
  • Comment: * [email protected].
  • Comment:
  • Comment: For legal and law enforcement-related requests, please contact:
  • Comment: * [email protected]
  • Comment:
  • Comment: For routing, peering or DNS issues, please
  • Comment: contact:
  • Comment: * [email protected]
  • Ref: https://rdap.arin.net/registry/entity/MSFT
  • OrgTechHandle: MRPD-ARIN
  • OrgTechName: Microsoft Routing, Peering, and DNS
  • OrgTechPhone: +1-425-882-8080
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
  • OrgTechHandle: BEDAR6-ARIN
  • OrgTechName: Bedard, Dawn
  • OrgTechPhone: +1-425-538-6637
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
  • OrgTechHandle: IPHOS5-ARIN
  • OrgTechName: IPHostmaster, IPHostmaster
  • OrgTechPhone: +1-425-538-6637
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
  • OrgAbuseHandle: MAC74-ARIN
  • OrgAbuseName: Microsoft Abuse Contact
  • OrgAbusePhone: +1-425-882-8080
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN

Links to attack logs

awsindia-ntp-bruteforce-ip-list-2022-02-08