JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.127.238.135

20.127.238.135 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 58%: ?

58%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.127.238.135

Whois 20.127.238.135

IP Abuse Reports for 20.127.238.135:

This IP address has been reported a total of 17 times from 16 distinct sources. 20.127.238.135 was first reported on March 30th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 boxed-it	2026-06-09 09:23:26 (2 weeks ago)	GET /.git/config (Tarpitted for 1d15h8m29s, wasted 8.06MB)	Web App Attack
🇧🇷 SOC-BR	2026-06-08 07:26:20 (2 weeks ago)	Attack detected by Fortinet - web_server: HTPasswd.Access - 2026-06-07 14:32:45 - Source Port 42113	Port Scan Hacking
🇬🇧 essinghigh	2026-06-07 22:10:51 (2 weeks ago)	IPS Detection: 20.127.238.135 -> DPT: 2087	Port Scan
🇩🇪 KPS	2026-06-07 21:35:50 (2 weeks ago)	PortscanM	Port Scan
🇮🇳 Mr.Singh	2026-06-07 21:30:26 (2 weeks ago)	NFT blocked 20.127.238.135 after 4 rejections on 08-Jun-2026.	Port Scan Brute-Force
Anonymous	2026-06-07 20:50:22 (2 weeks ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 kosada.com	2026-06-07 20:45:06 (2 weeks ago)	Web vulnerability probing: /.env.backup (bogus vhost/SNI)	Web App Attack
🇺🇸 RAP	2026-06-07 19:44:33 (2 weeks ago)	2026-06-07 19:44:33 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇧🇷 Halux	2026-06-07 19:26:43 (2 weeks ago)	20.127.238.135 Probing protected path or service	Web App Attack
🇺🇸 xmission.com	2026-06-07 19:26:12 (2 weeks ago)	Blocked by UFW (TCP on 80) Source port: 41428 TTL: 48 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 41428 TTL: 48 Packet length: 60 TOS: 0x00 This report (for 20.127.238.135) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇨🇿 Countryman	2026-06-07 19:13:14 (2 weeks ago)	IPS detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇺🇸 Starburst SysOp Team	2026-06-07 18:16:20 (2 weeks ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-4)	Hacking Bad Web Bot
🇵🇱 Wepted	2026-06-07 17:32:36 (2 weeks ago)	Port scan detected by honeypot	Port Scan Hacking
🇧🇪 voormedia	2026-06-07 17:30:42 (2 weeks ago)	Accessed trap at '/.git/HEAD'	Web App Attack
🇺🇸 RAP	2026-06-07 17:09:03 (2 weeks ago)	2026-06-07 17:09:03 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a04:c300:400::168

🇵🇱 194.180.49.70

🇩🇪 135.136.0.234

🇺🇸 66.132.172.232

🇦🇺 52.65.121.82

🇸🇳 41.208.147.131

🇧🇷 172.253.233.27

🇳🇱 91.92.40.237

🇱🇹 45.227.254.170

🇳🇱 45.198.224.18

🇺🇸 44.118.48.95

🇺🇸 20.83.167.28

🇮🇳 15.206.68.232

🇬🇧 193.163.125.70

🇧🇷 189.90.55.244

🇫🇮 135.181.156.44

🇺🇸 100.29.192.123

🇺🇸 44.194.135.220

🇺🇸 44.96.149.64

🇬🇧 35.203.210.110