20.169.49.249 - IPInfo

Basic Info

City: Phoenix

Region: Arizona

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       20.160.0.0 - 20.175.255.255
CIDR:           20.160.0.0/12
NetName:        MSFT
NetHandle:      NET-20-160-0-0-1
Parent:         NET20 (NET-20-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2017-02-22
Updated:        2017-02-22
Ref:            https://rdap.arin.net/registry/ip/20.160.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.169.49.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7532
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;20.169.49.249.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026032800 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 29 01:30:12 CST 2026
;; MSG SIZE  rcvd: 106

Host info

249.49.169.20.in-addr.arpa domain name pointer azpdwg7emnzo.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
249.49.169.20.in-addr.arpa	name = azpdwg7emnzo.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.108.66.99	attackspambots	8888/tcp 22/tcp 82/tcp... [2019-07-14/09-08]14pkt,6pt.(tcp),2pt.(udp)	2019-09-09 11:04:46
51.255.109.170	attackspambots	17185/udp 10001/udp 11211/udp... [2019-07-10/09-08]22pkt,11pt.(udp)	2019-09-09 11:27:32
159.203.199.151	attackbotsspam	8081/tcp 1433/tcp 27019/tcp... [2019-09-06/08]6pkt,6pt.(tcp)	2019-09-09 11:41:50
188.93.234.85	attack	Sep 8 11:13:45 friendsofhawaii sshd\[16270\]: Invalid user admin from 188.93.234.85 Sep 8 11:13:45 friendsofhawaii sshd\[16270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85 Sep 8 11:13:47 friendsofhawaii sshd\[16270\]: Failed password for invalid user admin from 188.93.234.85 port 49798 ssh2 Sep 8 11:20:05 friendsofhawaii sshd\[16748\]: Invalid user sinusbot from 188.93.234.85 Sep 8 11:20:05 friendsofhawaii sshd\[16748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85	2019-09-09 11:01:38
159.203.199.142	attackspam	2525/tcp 43521/tcp 1400/tcp... [2019-09-06/08]4pkt,4pt.(tcp)	2019-09-09 11:25:53
74.82.47.20	attack	5900/tcp 2323/tcp 50070/tcp... [2019-07-09/09-08]34pkt,12pt.(tcp),2pt.(udp)	2019-09-09 11:17:40
192.42.116.15	attackspam	2019-08-15T15:28:52.636101wiz-ks3 sshd[9906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-exit-node-hviv115.hviv.nl user=root 2019-08-15T15:28:54.629931wiz-ks3 sshd[9906]: Failed password for root from 192.42.116.15 port 40998 ssh2 2019-08-15T15:28:57.697243wiz-ks3 sshd[9906]: Failed password for root from 192.42.116.15 port 40998 ssh2 2019-08-15T15:28:52.636101wiz-ks3 sshd[9906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-exit-node-hviv115.hviv.nl user=root 2019-08-15T15:28:54.629931wiz-ks3 sshd[9906]: Failed password for root from 192.42.116.15 port 40998 ssh2 2019-08-15T15:28:57.697243wiz-ks3 sshd[9906]: Failed password for root from 192.42.116.15 port 40998 ssh2 2019-08-15T15:28:52.636101wiz-ks3 sshd[9906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-exit-node-hviv115.hviv.nl user=root 2019-08-15T15:28:54.629931wiz-ks3 sshd[9906]:	2019-09-09 11:01:12
193.70.0.42	attackbots	Sep 8 23:21:40 TORMINT sshd\[5700\]: Invalid user git from 193.70.0.42 Sep 8 23:21:40 TORMINT sshd\[5700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.42 Sep 8 23:21:41 TORMINT sshd\[5700\]: Failed password for invalid user git from 193.70.0.42 port 42526 ssh2 ...	2019-09-09 11:32:15
141.98.9.67	attackbots	Sep 9 05:26:46 mail postfix/smtpd\[11675\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 05:27:29 mail postfix/smtpd\[1845\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 05:28:13 mail postfix/smtpd\[4942\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-09 11:34:07
202.51.74.173	attackbotsspam	Sep 8 16:25:22 hcbb sshd\[19903\]: Invalid user tomcat from 202.51.74.173 Sep 8 16:25:22 hcbb sshd\[19903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.173 Sep 8 16:25:24 hcbb sshd\[19903\]: Failed password for invalid user tomcat from 202.51.74.173 port 48212 ssh2 Sep 8 16:30:08 hcbb sshd\[20373\]: Invalid user ts3server from 202.51.74.173 Sep 8 16:30:09 hcbb sshd\[20373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.173	2019-09-09 11:14:01
185.60.88.110	attackbotsspam	Sep 9 05:17:27 core sshd[24235]: Invalid user git from 185.60.88.110 port 49088 Sep 9 05:17:28 core sshd[24235]: Failed password for invalid user git from 185.60.88.110 port 49088 ssh2 ...	2019-09-09 11:32:55
207.38.86.247	attackspam	207.38.86.247 - - [09/Sep/2019:04:35:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:32 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-09 11:17:14
223.171.32.56	attackspam	Sep 9 05:22:05 s64-1 sshd[26969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.56 Sep 9 05:22:07 s64-1 sshd[26969]: Failed password for invalid user redmine from 223.171.32.56 port 39792 ssh2 Sep 9 05:28:57 s64-1 sshd[27224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.56 ...	2019-09-09 11:39:14
68.183.50.0	attackbotsspam	Sep 8 17:09:58 hiderm sshd\[30347\]: Invalid user sftptest from 68.183.50.0 Sep 8 17:09:58 hiderm sshd\[30347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.50.0 Sep 8 17:09:59 hiderm sshd\[30347\]: Failed password for invalid user sftptest from 68.183.50.0 port 56620 ssh2 Sep 8 17:16:03 hiderm sshd\[30931\]: Invalid user demo from 68.183.50.0 Sep 8 17:16:03 hiderm sshd\[30931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.50.0	2019-09-09 11:22:04
114.32.153.15	attack	[Aegis] @ 2019-09-08 23:19:24 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-09 11:12:34

Recently Reported IPs

45.148.10.4	49.232.164.64	2606:4700:10::6816:4693	2606:4700:10::6816:1199
2606:4700:10::6816:406d	2606:4700:10::ac43:2812	2606:4700:10::6814:9565	2606:4700:10::ac43:1252
2606:4700:10::6816:1819	2606:4700:10::6814:4536	2606:4700:10::6814:4361	14.207.194.93
88.101.166.218	88.101.166.243	88.101.166.244	10.51.172.182
164.110.75.136	122.161.75.23	2606:4700:10::6814:8528	2606:4700:10::ac43:2443