20.163.15.93
IP Intelligence Briefing: 20.163.15.93
Date: 2026-06-15
---
**1. Core Profile**
- Reputation: Moderate Risk (Risk Score: 40)
- Ownership: Microsoft Corporation (ASN: 8075, ARIN)
- Geolocation: Phoenix, AZ, US (Latitude: 33.45, Longitude: -112.07)
- Network Role: Microsoft Azure (Cloud Infrastructure)
- Threat Indicators: No malicious activity detected (no blacklists, spam, or known attackers).
---
**2. Observation History**
- Latest Activity: June 15, 2026.
- Key Findings:
- DNS records link to stretchoid.com (PTR: `azpdwsv12bqv.stretchoid.com`).
- No TLS certificates or open ports detected.
- Subnet abuse density: 0.25 (mixed risk, 2/7 neighbors flagged as medium risk).
---
**3. Network Relationships**
- DNS Associations:
- Repeated DNS records for azpdwsv12bqv.stretchoid.com (likely internal Azure subdomain).
- Subnet Context:
- Part of 20.163.15.93/24.
- 2 medium-risk neighbors (e.g., 20.163.15.131, 20.163.15.206) and 5 low-risk IPs.
- Subnet abuse density: 0.25 (slightly elevated).
---
**4. Threat & Risk Analysis**
- No Direct Threats: No malicious indicators, spam, or campaigns linked.
- Subnet Risk: Moderate due to neighboring IPs with higher risk scores.
- Recommendation: Monitor subnet for unusual activity; verify stretchoid.com for legitimacy.
---
**5. Actionable Intelligence**
- SOC Prioritization: Low to medium risk. Focus on subnet-level anomalies.
- Firewall Rules: Consider blocking high-risk neighbors (e.g., 20.163.15.131) if traffic is observed.
- Further Investigation: Validate stretchoid.com and check for DNS misconfigurations.
---
Conclusion: 20.163.15.93 is a legitimate Microsoft Azure IP with no direct malicious activity. However, its subnet contains risky neighbors, warranting closer monitoring.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | azpdwsv12bqv.stretchoid.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | azpdwsv12bqv.stretchoid.com |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-21 21:00:05 UTC |
| Last Seen | 2026-06-28 15:52:59 UTC |
| Profile Built | 2026-06-29 03:58:29 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 24 |
Full dossier details are available via our API.