JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.175.198.186

20.175.198.186 was found in our database!

This IP was reported 111 times. Confidence of Abuse is 22%: ?

22%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.175.198.186

Whois 20.175.198.186

IP Abuse Reports for 20.175.198.186:

This IP address has been reported a total of 111 times from 51 distinct sources. 20.175.198.186 was first reported on March 10th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-10 04:33:42 (2 weeks ago)	6 incidents: malicious activity. First: 2026-05-26 22:31, Last: 2026-06-10 00:33 UTC. Triggers: ufw- ... show more 6 incidents: malicious activity. First: 2026-05-26 22:31, Last: 2026-06-10 00:33 UTC. Triggers: ufw-repeater. show less	Port Scan
🇫🇮 nNordic	2026-06-09 09:15:56 (2 weeks ago)	Connection attempt blocked by IDS/IPS from 20.175.198.186/32	Hacking
🇺🇸 micropedro	2026-05-20 01:33:24 (1 month ago)	8 incidents: malicious activity. First: 2026-04-11 23:31, Last: 2026-05-19 21:33 UTC. Triggers: non- ... show more 8 incidents: malicious activity. First: 2026-04-11 23:31, Last: 2026-05-19 21:33 UTC. Triggers: non-public-port,port-trap,ufw-repeater,ufw-repeater. show less	Port Scan
🇯🇵 VXG-NET	2026-05-09 01:01:13 (1 month ago)	port=6379, indicator_type=scan	Port Scan
🇸🇰 GOVCERT	2026-04-27 15:34:28 (1 month ago)	Sweep Scan	Port Scan
🇨🇭 SOC [GOLINE SA]	2026-04-27 15:18:33 (1 month ago)	[RoutePulse \| 2026-04-27T15:18:33Z] ATTACK: port scan horizontal (port 6379) TARGET: 4 subnets: 185. ... show more [RoutePulse \| 2026-04-27T15:18:33Z] ATTACK: port scan horizontal (port 6379) TARGET: 4 subnets: 185.54.81.0/24, 185.54.82.0/24, 185.54.83.0/24 SOURCE: 20.175.198.186 · AS8075 Microsoft Corporation · Canada EVIDENCE: severity=warning · 1025 flows · 62 KB · 1024 distinct targets · port 6379 INTEL: RoutePulse score 4/100 MITRE: T1018 Remote System Discovery, T1046 Network Service Scanning DETECTION: sFlow/IPFIX flow analysis + 18-model ML ensemble + threat-intel correlation ACTION: Pre-blackhole intelligence report (live monitoring continues) show less	Port Scan
Anonymous	2026-04-27 04:50:07 (1 month ago)	2026-04-27T05:50:06.375037+01:00 vps kernel: [39005608.109890] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-04-27T05:50:06.375037+01:00 vps kernel: [39005608.109890] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.175.198.186 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=39 ID=46099 DF PROTO=TCP SPT=27977 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 donarev419	2026-04-27 01:32:12 (1 month ago)	Connection to port 6379 with data transfer. Data preview: *1 $4 info	Port Scan Hacking
🇨🇦 celestialcity	2026-04-26 22:56:55 (1 month ago)	Blocked by UFW on celestialcityna [6379/tcp] \| SPT: 28103 \| TTL: 44 \| LEN: 60 \| TOS: 0x00 • Reported ... show more Blocked by UFW on celestialcityna [6379/tcp] \| SPT: 28103 \| TTL: 44 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 pengpeng	2026-04-26 20:07:52 (2 months ago)	monitor: on VM-0-7-ubuntu \| port: 6379 \| ttl: 250 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇯🇵 VXG-NET	2026-04-26 20:05:24 (2 months ago)	port=6379, indicator_type=scan	Port Scan
🇨🇿 Honzas	2026-04-26 14:06:38 (2 months ago)	Automatic report:26.04.2026 14:06:38. Port:6379	Port Scan Hacking
🇨🇭 pingusurmars	2026-04-26 13:30:17 (2 months ago)	Blocked by UFW on ampereone [6379/tcp] Source port: 27971 TTL: 49 Packet length: 60 TOS: 0x00 This ... show more Blocked by UFW on ampereone [6379/tcp] Source port: 27971 TTL: 49 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 Pingger Shikkoken	2026-04-26 09:12:39 (2 months ago)	2026-04-26T09:12:39+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-04-26T09:12:39+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=20.175.198.186 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=40 ID=39044 DF PROTO=TCP SPT=20872 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 2026-04-26T13:01:06+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=20.175.198.186 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=40 ID=15011 DF PROTO=TCP SPT=27968 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Hacking
🇸🇬 celestialcity	2026-04-26 08:22:15 (2 months ago)	Blocked by UFW on celestialcityas [6379/tcp] \| SPT: 28105 \| TTL: 33 \| LEN: 60 \| TOS: 0x00 • Reported ... show more Blocked by UFW on celestialcityas [6379/tcp] \| SPT: 28105 \| TTL: 33 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 111 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 157.90.88.153

🇺🇸 147.185.132.71

🇦🇺 134.199.172.18

🇹🇼 59.126.224.134

🇳🇱 45.148.10.30

🇺🇸 24.2.43.134

🇧🇷 205.210.31.237

192.168.2.63

🇳🇱 178.16.54.93

🇨🇳 111.31.165.24

🇺🇸 71.6.135.131

🇧🇾 46.216.198.132

🇳🇱 45.148.10.240

🇳🇱 45.148.10.141

🇨🇦 20.43.20.191

🇹🇼 198.235.24.119

🇺🇸 195.184.76.65

🇳🇱 195.178.110.30

🇨🇳 182.46.0.39

🇺🇸 162.216.149.55