City: Washington
Region: Virginia
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.33.0.0 - 20.128.255.255
CIDR: 20.34.0.0/15, 20.64.0.0/10, 20.36.0.0/14, 20.48.0.0/12, 20.128.0.0/16, 20.40.0.0/13, 20.33.0.0/16
NetName: MSFT
NetHandle: NET-20-33-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-10-18
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/20.33.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.102.108.84
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49155
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.102.108.84. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025091902 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 20 13:00:55 CST 2025
;; MSG SIZE rcvd: 10684.108.102.20.in-addr.arpa domain name pointer azpdes995voj.stretchoid.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
84.108.102.20.in-addr.arpa name = azpdes995voj.stretchoid.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.12.83.217 | attackspam | Feb 13 09:52:11 sd-53420 sshd\[3046\]: Invalid user tv from 106.12.83.217 Feb 13 09:52:11 sd-53420 sshd\[3046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.217 Feb 13 09:52:13 sd-53420 sshd\[3046\]: Failed password for invalid user tv from 106.12.83.217 port 43426 ssh2 Feb 13 09:56:45 sd-53420 sshd\[3531\]: Invalid user tootsie from 106.12.83.217 Feb 13 09:56:45 sd-53420 sshd\[3531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.217 ... |
2020-02-13 17:32:17 |
| 118.71.3.27 | attackbotsspam | Telnet/23 MH Probe, BF, Hack - |
2020-02-13 18:26:13 |
| 14.161.4.254 | attack | 1581569374 - 02/13/2020 05:49:34 Host: 14.161.4.254/14.161.4.254 Port: 445 TCP Blocked |
2020-02-13 17:42:38 |
| 124.168.245.11 | attackspam | Automatic report - Port Scan Attack |
2020-02-13 18:20:19 |
| 123.207.235.247 | attackspambots | Feb 13 04:52:22 vps46666688 sshd[21815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.235.247 Feb 13 04:52:23 vps46666688 sshd[21815]: Failed password for invalid user saree from 123.207.235.247 port 37174 ssh2 ... |
2020-02-13 17:59:53 |
| 89.252.155.80 | attack | Feb 12 19:13:53 sachi sshd\[5254\]: Invalid user dmuser_57 from 89.252.155.80 Feb 12 19:13:53 sachi sshd\[5254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.252.155.80 Feb 12 19:13:55 sachi sshd\[5254\]: Failed password for invalid user dmuser_57 from 89.252.155.80 port 59758 ssh2 Feb 12 19:16:48 sachi sshd\[5564\]: Invalid user doja002 from 89.252.155.80 Feb 12 19:16:48 sachi sshd\[5564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.252.155.80 |
2020-02-13 18:11:41 |
| 106.13.78.180 | attackspambots | Feb 13 07:33:10 plex sshd[25105]: Invalid user bedrifts from 106.13.78.180 port 53186 |
2020-02-13 17:54:57 |
| 185.232.30.130 | attackspambots | Feb 13 10:29:42 debian-2gb-nbg1-2 kernel: \[3845410.928560\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.232.30.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=46026 PROTO=TCP SPT=46288 DPT=110 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-13 17:39:21 |
| 36.89.65.77 | attackspam | Unauthorized connection attempt detected from IP address 36.89.65.77 to port 445 |
2020-02-13 18:12:02 |
| 54.37.158.218 | attack | Feb 13 09:52:47 pornomens sshd\[16171\]: Invalid user sladkiy from 54.37.158.218 port 46211 Feb 13 09:52:47 pornomens sshd\[16171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.218 Feb 13 09:52:48 pornomens sshd\[16171\]: Failed password for invalid user sladkiy from 54.37.158.218 port 46211 ssh2 ... |
2020-02-13 17:35:41 |
| 178.62.75.60 | attack | Feb 13 01:46:36 firewall sshd[20876]: Invalid user 123456 from 178.62.75.60 Feb 13 01:46:37 firewall sshd[20876]: Failed password for invalid user 123456 from 178.62.75.60 port 56444 ssh2 Feb 13 01:49:38 firewall sshd[20982]: Invalid user test from 178.62.75.60 ... |
2020-02-13 17:38:35 |
| 114.119.10.171 | attackbotsspam | Brute force attempt |
2020-02-13 18:14:51 |
| 190.147.159.34 | attack | Feb 13 05:41:11 MK-Soft-VM8 sshd[12326]: Failed password for root from 190.147.159.34 port 35678 ssh2 Feb 13 05:49:27 MK-Soft-VM8 sshd[12450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.147.159.34 ... |
2020-02-13 17:45:40 |
| 187.73.210.233 | attackbots | <6 unauthorized SSH connections |
2020-02-13 17:58:50 |
| 80.211.5.61 | attack | 1581583575 - 02/13/2020 15:46:15 Host: host61-5-211-80.serverdedicati.aruba.it/80.211.5.61 Port: 23 TCP Blocked ... |
2020-02-13 17:43:52 |