City: Phoenix
Region: Arizona
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.160.0.0 - 20.175.255.255
CIDR: 20.160.0.0/12
NetName: MSFT
NetHandle: NET-20-160-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-02-22
Updated: 2017-02-22
Ref: https://rdap.arin.net/registry/ip/20.160.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.168.120.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.168.120.209. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025092701 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 28 13:00:45 CST 2025
;; MSG SIZE rcvd: 107209.120.168.20.in-addr.arpa domain name pointer azpdwgh24hlv.stretchoid.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
209.120.168.20.in-addr.arpa name = azpdwgh24hlv.stretchoid.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 84.17.52.55 | attackspam | (From fastseoreporting@aol.com) Need better SEO reporting for your drmattjoseph.com website? Let's try http://seo-reporting.com It's Free for starter plan! |
2019-11-19 08:43:37 |
| 216.10.249.73 | attack | Nov 19 01:04:58 lnxmail61 sshd[14842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.10.249.73 |
2019-11-19 08:43:54 |
| 144.217.214.13 | attackspam | Nov 19 00:36:21 web8 sshd\[9700\]: Invalid user mary from 144.217.214.13 Nov 19 00:36:21 web8 sshd\[9700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.13 Nov 19 00:36:24 web8 sshd\[9700\]: Failed password for invalid user mary from 144.217.214.13 port 39118 ssh2 Nov 19 00:40:31 web8 sshd\[11656\]: Invalid user chaweng from 144.217.214.13 Nov 19 00:40:31 web8 sshd\[11656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.13 |
2019-11-19 08:40:45 |
| 129.213.63.120 | attackspam | 2019-11-18T23:56:21.395039abusebot-3.cloudsearch.cf sshd\[20543\]: Invalid user 51vip from 129.213.63.120 port 37558 |
2019-11-19 08:26:27 |
| 128.199.38.162 | attackbots | Nov 19 00:55:01 MK-Soft-VM6 sshd[11276]: Failed password for root from 128.199.38.162 port 57720 ssh2 ... |
2019-11-19 08:16:29 |
| 222.83.218.117 | attack | (ftpd) Failed FTP login from 222.83.218.117 (CN/China/-): 10 in the last 3600 secs |
2019-11-19 08:35:56 |
| 139.59.84.55 | attackbots | 2019-11-19T00:33:24.193486abusebot.cloudsearch.cf sshd\[29650\]: Invalid user azureuser from 139.59.84.55 port 36610 |
2019-11-19 08:50:52 |
| 210.70.253.157 | attackbotsspam | Unauthorized IMAP connection attempt |
2019-11-19 08:52:02 |
| 194.28.115.251 | attackbots | 1,22-02/02 [bc03/m96] PostRequest-Spammer scoring: essen |
2019-11-19 08:40:25 |
| 1.162.144.160 | attackspam | port 23 attempt blocked |
2019-11-19 08:52:47 |
| 106.12.78.161 | attackbotsspam | Nov 19 01:12:38 ArkNodeAT sshd\[31437\]: Invalid user maze from 106.12.78.161 Nov 19 01:12:38 ArkNodeAT sshd\[31437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 Nov 19 01:12:40 ArkNodeAT sshd\[31437\]: Failed password for invalid user maze from 106.12.78.161 port 50980 ssh2 |
2019-11-19 08:43:14 |
| 27.70.153.187 | attackbotsspam | Nov 19 01:33:33 * sshd[3362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.70.153.187 Nov 19 01:33:36 * sshd[3362]: Failed password for invalid user test from 27.70.153.187 port 36694 ssh2 |
2019-11-19 08:34:29 |
| 14.142.94.222 | attack | Nov 19 00:30:34 nextcloud sshd\[12150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.94.222 user=root Nov 19 00:30:36 nextcloud sshd\[12150\]: Failed password for root from 14.142.94.222 port 59778 ssh2 Nov 19 00:35:17 nextcloud sshd\[16960\]: Invalid user godbout from 14.142.94.222 Nov 19 00:35:17 nextcloud sshd\[16960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.94.222 ... |
2019-11-19 08:39:06 |
| 27.154.7.6 | attackspam | port 23 attempt blocked |
2019-11-19 08:33:32 |
| 83.233.60.202 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-11-19 08:20:28 |