20.55.103.191 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 20.55.103.191 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: syntrapxl.be takepayments.co.uk ndsbilling.com barracuda-mail-gateway.cc 50offli.com motherhoodindia.com motherhoodchaitanya.com imestia-immo.fr groupe-imestia.fr imestia-restauration.fr technoval.com drivinginsights.co.nz northcott.com kraemerna.com breckpointrx.com cumulusmedia.com moodyspfaudits.com altronicdistributors.com.au frimex.com mutualfundsindia.com trucarerx.com haztuplandeempresa.es e-ieppro1.com redicarerx.com e-ieppro3.com msd.co.il le-chasseur.com promalagaincubadoras.es syntra-limburg.be cliniquevip.es bakercountyor.gov bakercounty.org teampaladin.uk digitalskillboost.digital bigdealtwin.com hotelcashcards.com pwba.org.uk sonntag-vb.de busemplea.es lagranbotiga.com busemplea.com bcrxplus.com myrxvaletforpets.com bigdealboise.com malagapass.com bonsconsumbenissa2024.es cudaopsec.com urs.org pehp.org lawshelf.com akums.in 4myscheme.co.uk russellinvestmentspensionplan.com dossaryapp.com icraanalytics.co.in loveholidays-travel-insurance.co.uk baxterboo.com bunzl.com.br genovagrp.com dhllc.com torreypartners.com stoutrisiusross.com stout.ch methodicalmgmt.com vpadvisors.com theclarogroup.com stout.co malagaworkbay.com leeds.gov.uk kcrealestatecareers.com rnrentals.com caroljones.com rexairllc.com first-travel-insurance.co.uk rushinsurance.co.uk bluebeartravelinsurance.co.uk bbqe.co.uk rushportal.co.uk com-pass.co.uk covered2go.co.uk trinity-crm.co.uk traveldox.co.uk gosafe.com e-ieppro5.com e-ieppro8.com e-ieppro10.com e-ieppro4.com 5statedeals.com sanitaservu.com btppensions.co.uk quickbbqparts.com ltonoord.nl activecasper.com bhhsresource.com icraesgratings.in mestech.co.ls stopapilloma.co.il petrogasep.com footballerspensions.com monoveraunclick.com teamsfa.ca mankindpharma.com e-ieppro7.com shamalholding.com cudalab.us ncodeal.com xn–burjassotcomerviu-nsb.com growwithweaver.com shop30deals.com chat-bmwindia.com barracuda.com empleoteruel.org appjar.co.za e-ieppro2.com innores.com.tr mindyourwaste.org pragatifin.com msci.org kabzend.com gfg.com.pk sonntag-partner.de barracudanetworks.com dataprotechgroup.com manforcecondoms.com blackhat23.com cel.lu mesure-lettre.fr perduefoodservice.com lifestarpharma.com cameranu.be dubai360.com kitebeach.ae dworx.at iprofitbuild.com pmcovacation.com texassafetyfoundation.com txsafetyfoundation.org reliancefallprotection.com raathlab.co.za preganews.com dubaifilm.ae unwanted21days.in qinetiq.com rbck.icu utahinsulin.net t3e.uk enterprisesigns.com icevonline.com cevmultimedia.com cheneybrotherspoultry.com colemanfoodservice.com san.org scfta.org scratchpads.org preprod-cho.org hidromek.com thepools.com seabirdtracking.org comercioscomunitatvalenciana.com careerconnector.org altronics.com.au jackpot7.app footballpools.com drillcut.au newt1.com doctorshcp.com lockviewer.com thayerpubliclibrary.org rangerspools.com computeralliance.com.au workpacgroup.com aofas.org perdueagribusiness.com sdcraa.org drt.cudawaf.net drapervalleyfarms.com perdueretailtrade.com two-too.com bezpieczenstwo-sieci.pl workpac.com brcrecruitment.com.au bergres.com banklviv.com brodernas.net ascocyber.pl ascocybersecurity.pl ascocyber.com voto.com.tr mvholding.com istanbulfilmstudyolari.com.tr guzeloteller.net csmceconsult.com residorm.com pa-ag.at gilliers.eu icraanalytics.com perdueanimalnutrition.com bmw-whatsappsupport.com sweetwater911.org usplastic.com msctv.es cudaafrlab.co.za e-e.ag nihongocenter.com.ph tpf.fr cyber-security.com.pl zabezpiecz-siec.pl veriavi.com perdue.com beintl.com oferteo-pre.pl fpcanada.ca cumulusmediaprograms.com skydivedubai.ae worldvisionboard.ca westwoodone.com collabit.nl delossantosmed.ph aionbi.net imrlocumbank.com.au jobtrail.co hidromek-smartlink.com.tr pmcotime.com freestylesolutions.com saccof-packaging.es saccof-packaging.com saccof-packaging.eu devil-immo.fr prestarest.fr elizz.com usac.edu.gt digitalsi.com.au chateaulapointechantecaille.com myallergiesinamerica.co parisautrement.com parisfontainedupetitmusc.com groupesge.fr lareunionautrement.com parisuniquement.com elektro27.de weinmann-schanz.de assctech.com landerenis.com healthem.ai tbs-online.de healthoptions.org aaos.org ahml.info pinehaven.org mersbergerfinancialgroup.com waldostate.bank clevelandstate.bank sheboygan.k12.wi.us miesfelds.com frankmayer.com steel-line.com.au seably.app theatom.ai watchwholesalers.com rebate.ai testsitetred.com motherdairy.com trentbarton.co.uk kinchbus.co.uk reportrover.com trentbusespensionscheme.co.uk spinfusion.com gtechkeys.com tredence.com nreunderground.com cccl.com.pk cudastore.net ibedcpins.com atbmarket.com darklab.co spinfusion.co.nz worldvision.ca wvchosen.ca newriverelectrical.com ecisnet.com inedys.net evoluty.net ecisnet.net tmlhealthbenefits.org interdev.com universitylands.org webeasybox.com cs2it.com ec-is.net ecis.fr ecis.net eldapps.fr eldapps.org eldapps.net tmlhb.org eldapps.com evoluty.fr evoluty.com evoluty.org inedys.fr inedys.com visionmondiale.ca drakelow.community olord.paris sanitalb.com bordeauxautrement.com instantseats.com sulnox.com golaunchpoint.com vistametrix.co.uk olord.fr experiences-k.com guerrero.gob.mx labienveillance.fr oferteo-tst.pl www.nreunderground.com m3cubeapi.com mcubefinancial.ai checkdone-it.eu checkdone-it.com juron.pl bdc.ae netflow.xyz emplos.lt israeasymed.com

Malware Detected on Host

Count: 3 d45b4ae5fe5b9019f52efcd24ffaed4830022323422442f5bbe739a7b618d1ba e292f4da3e38983f0f5018c49bdcb1ca7199abd2adb5eaec4af1cc6140cbf7a8 4082cab1da3b77a279371edf90deab91af56cce39e0852a2cb2eb994933c5ca8

Open Ports Detected

443 80

Map

Whois Information

• NetRange: 20.33.0.0 - 20.128.255.255
• CIDR: 20.34.0.0/15, 20.64.0.0/10, 20.36.0.0/14, 20.128.0.0/16, 20.48.0.0/12, 20.40.0.0/13, 20.33.0.0/16
• NetName: MSFT
• NetHandle: NET-20-33-0-0-1
• Parent: NET20 (NET-20-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Microsoft Corporation (MSFT)
• RegDate: 2017-10-18
• Updated: 2021-12-14
• Ref: https://rdap.arin.net/registry/ip/20.33.0.0
• OrgName: Microsoft Corporation
• OrgId: MSFT
• Address: One Microsoft Way
• City: Redmond
• StateProv: WA
• PostalCode: 98052
• Country: US
• RegDate: 1998-07-10
• Updated: 2025-06-10
• Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
• Comment: * https://cert.microsoft.com.
• Comment:
• Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
• Comment: * abuse@microsoft.com.
• Comment:
• Comment: To report security vulnerabilities in Microsoft products and services, please contact:
• Comment: * secure@microsoft.com.
• Comment:
• Comment: For legal and law enforcement-related requests, please contact:
• Comment: * msndcc@microsoft.com
• Comment:
• Comment: For routing, peering or DNS issues, please
• Comment: contact:
• Comment: * IOC@microsoft.com
• Ref: https://rdap.arin.net/registry/entity/MSFT
• OrgTechHandle: SINGH683-ARIN
• OrgTechName: Singh, Prachi
• OrgTechPhone: +1-425-707-5601
• OrgTechEmail: pracsin@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
• OrgTechHandle: IPHOS5-ARIN
• OrgTechName: IPHostmaster, IPHostmaster
• OrgTechPhone: +1-425-538-6637
• OrgTechEmail: iphostmaster@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
• OrgAbuseHandle: MAC74-ARIN
• OrgAbuseName: Microsoft Abuse Contact
• OrgAbusePhone: +1-425-882-8080
• OrgAbuseEmail: abuse@microsoft.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
• OrgTechHandle: BEDAR6-ARIN
• OrgTechName: Bedard, Dawn
• OrgTechPhone: +1-425-538-6637
• OrgTechEmail: dabedard@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
• OrgRoutingHandle: CHATU3-ARIN
• OrgRoutingName: Chaturmohta, Somesh
• OrgRoutingPhone: +1-425-882-8080
• OrgRoutingEmail: someshch@microsoft.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
• OrgTechHandle: MRPD-ARIN
• OrgTechName: Microsoft Routing, Peering, and DNS
• OrgTechPhone: +1-425-882-8080
• OrgTechEmail: IOC@microsoft.com
• OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN