JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.175.205.56

20.175.205.56 was found in our database!

This IP was reported 205 times. Confidence of Abuse is 30%: ?

30%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.175.205.56

Whois 20.175.205.56

IP Abuse Reports for 20.175.205.56:

This IP address has been reported a total of 205 times from 55 distinct sources. 20.175.205.56 was first reported on February 27th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-16 23:30:56 (6 days ago)	4 incidents: malicious activity. First: 2026-06-09 18:30, Last: 2026-06-16 19:30 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-06-09 18:30, Last: 2026-06-16 19:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-06-09 22:30:17 (1 week ago)	3 incidents: malicious activity. First: 2026-05-26 16:30, Last: 2026-06-09 18:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-26 16:30, Last: 2026-06-09 18:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-06-02 21:30:29 (2 weeks ago)	4 incidents: malicious activity. First: 2026-05-26 16:30, Last: 2026-06-02 17:30 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-05-26 16:30, Last: 2026-06-02 17:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-19 20:03:27 (1 month ago)	3 incidents: malicious activity. First: 2026-05-05 14:30, Last: 2026-05-19 16:03 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-05 14:30, Last: 2026-05-19 16:03 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-19 20:03:27 (1 month ago)	4 incidents: malicious activity. First: 2026-05-12 15:30, Last: 2026-05-19 16:03 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-05-12 15:30, Last: 2026-05-19 16:03 UTC. Triggers: ufw-repeater. show less	Port Scan
🇦🇺 PetePK	2026-05-11 13:29:02 (1 month ago)	Probed 1 time(s): TCP/6379	Port Scan
🇩🇪 kingjan1999	2026-05-11 13:14:30 (1 month ago)	Blocked by UFW [6379/tcp] \| SPT: 2304 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefi ... show more Blocked by UFW [6379/tcp] \| SPT: 2304 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 micropedro	2026-05-05 18:32:37 (1 month ago)	4 incidents: malicious activity. First: 2026-04-28 14:03, Last: 2026-05-05 14:32 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-04-28 14:03, Last: 2026-05-05 14:32 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-05 18:30:10 (1 month ago)	3 incidents: malicious activity. First: 2026-04-21 13:30, Last: 2026-05-05 14:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-04-21 13:30, Last: 2026-05-05 14:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇳🇱 COMPLEX	2026-04-27 00:17:11 (1 month ago)	Unsolicited TCP traffic \| Action: DROP \| Port 6379	Brute-Force
🇨🇭 SOC [GOLINE SA]	2026-04-27 00:08:00 (1 month ago)	[RoutePulse \| 2026-04-27T00:08:00Z] ATTACK: port scan horizontal (port 6379) TARGET: 4 subnets: 185. ... show more [RoutePulse \| 2026-04-27T00:08:00Z] ATTACK: port scan horizontal (port 6379) TARGET: 4 subnets: 185.54.81.0/24, 185.54.82.0/24, 185.54.80.0/24 SOURCE: 20.175.205.56 · AS8075 Microsoft Corporation · Canada EVIDENCE: severity=warning · 799 flows · 48 KB · 798 distinct targets · port 6379 INTEL: AbuseIPDB 100% (190 reports) \| feeds: Wazuh SIEM — FortiGate FW,FortiAnalyzer Threat Intel (9) \| RoutePulse score 11/100 24H PERSISTENCE: 2 events (port scan horizontal×1, threat ip active×1) MITRE: T1018 Remote System Discovery, T1046 Network Service Scanning DETECTION: sFlow/IPFIX flow analysis + 18-model ML ensemble + threat-intel correlation ACTION: Pre-blackhole intelligence report (live monitoring continues) show less	Port Scan
Anonymous	2026-04-26 21:31:45 (1 month ago)	2026-04-26T22:31:43.892865+01:00 vps kernel: [38979305.891806] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-04-26T22:31:43.892865+01:00 vps kernel: [38979305.891806] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.175.205.56 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=40 ID=15198 DF PROTO=TCP SPT=2432 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇷🇺 genokrad	2026-04-26 21:29:37 (1 month ago)	Unauthorized connection attempt on TCP/6379 (Redis)	Port Scan
🇨🇳 pengpeng	2026-04-26 18:36:22 (1 month ago)	monitor: on VM-0-7-ubuntu \| port: 6379 \| ttl: 250 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇦🇹 Pingger Shikkoken	2026-04-26 17:02:47 (1 month ago)	2026-04-26T17:02:47+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-04-26T17:02:47+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=20.175.205.56 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=39 ID=12594 DF PROTO=TCP SPT=2434 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Hacking

Showing 1 to 15 of 205 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.68

🇨🇳 121.224.107.247

🇺🇸 108.174.193.66

🇬🇧 35.203.211.249

🇧🇪 34.38.222.50

🇧🇷 181.219.233.85

🇲🇩 176.123.8.39

🇺🇸 136.144.35.147

🇷🇴 92.118.39.236

🇸🇬 47.82.13.55

🇵🇰 39.56.125.224

🇬🇧 35.203.210.15

🇮🇩 2a02:4780:6:1734:0:701:701a:1

🇦🇫 180.94.75.90

🇺🇸 165.140.202.17

🇺🇸 136.144.35.135

🇭🇰 103.81.170.118

🇮🇷 80.191.201.139

🇳🇱 45.154.98.26

🇳🇱 31.59.95.52