AbuseIPDB » 20.187.85.139

20.187.85.139 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 90%: ?

90%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	Hong Kong
City	Hong Kong, Hong Kong

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.187.85.139

Whois 20.187.85.139

IP Abuse Reports for 20.187.85.139:

This IP address has been reported a total of 40 times from 29 distinct sources. 20.187.85.139 was first reported on May 21st 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
r$	26 May 2022		Brute-Force SSH
vmsimple.com	26 May 2022	May 26 11:17:39 corp sshd[19814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ... show moreMay 26 11:17:39 corp sshd[19814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.187.85.139 May 26 11:17:41 corp sshd[19814]: Failed password for invalid user guest from 20.187.85.139 port 50060 ssh2 May 26 11:23:35 corp sshd[22981]: Invalid user guest from 20.187.85.139 port 44238 ... show less	Brute-Force SSH
SANYALnet Labs	26 May 2022	2022-05-26T10:18:54.098198sanyalnet-cloud-vps.freeddns.org sshd[7586]: pam_unix(sshd:auth): authenti ... show more2022-05-26T10:18:54.098198sanyalnet-cloud-vps.freeddns.org sshd[7586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.187.85.139 user=root 2022-05-26T10:18:55.772830sanyalnet-cloud-vps.freeddns.org sshd[7586]: Failed password for invalid user root from 20.187.85.139 port 45254 ssh2 2022-05-26T10:18:55.997271sanyalnet-cloud-vps.freeddns.org sshd[7586]: Disconnected from 20.187.85.139 port 45254 [preauth] ... show less	Brute-Force
InfinitzHost	26 May 2022	Unauthorized connection attempt detected from IP address 20.187.85.139 to port 22 [C]	Brute-Force Exploited Host
bittiguru.fi	25 May 2022	May 26 02:59:12 pkdns2 sshd\[304\]: Invalid user trade from 20.187.85.139May 26 02:59:14 pkdns2 sshd ... show moreMay 26 02:59:12 pkdns2 sshd\[304\]: Invalid user trade from 20.187.85.139May 26 02:59:14 pkdns2 sshd\[304\]: Failed password for invalid user trade from 20.187.85.139 port 51402 ssh2May 26 03:01:45 pkdns2 sshd\[458\]: Invalid user admin from 20.187.85.139May 26 03:01:47 pkdns2 sshd\[458\]: Failed password for invalid user admin from 20.187.85.139 port 59612 ssh2May 26 03:04:19 pkdns2 sshd\[542\]: Invalid user admin from 20.187.85.139May 26 03:04:22 pkdns2 sshd\[542\]: Failed password for invalid user admin from 20.187.85.139 port 39732 ssh2 ... show less	Brute-Force SSH
Vasili Sviridov	25 May 2022	2022-05-26T01:33:02.170492rus.vasi.li sshd[2644651]: pam_unix(sshd:auth): authentication failure; lo ... show more2022-05-26T01:33:02.170492rus.vasi.li sshd[2644651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.187.85.139 2022-05-26T01:33:04.535879rus.vasi.li sshd[2644651]: Failed password for invalid user run from 20.187.85.139 port 45722 ssh2 2022-05-26T01:45:12.111935rus.vasi.li sshd[2645653]: Invalid user postmaster from 20.187.85.139 port 58414 ... show less	Brute-Force SSH
bittiguru.fi	25 May 2022	May 26 02:37:28 pkdns2 sshd\[31859\]: Invalid user run from 20.187.85.139May 26 02:37:31 pkdns2 sshd ... show moreMay 26 02:37:28 pkdns2 sshd\[31859\]: Invalid user run from 20.187.85.139May 26 02:37:31 pkdns2 sshd\[31859\]: Failed password for invalid user run from 20.187.85.139 port 38478 ssh2May 26 02:40:56 pkdns2 sshd\[32017\]: Invalid user test from 20.187.85.139May 26 02:40:58 pkdns2 sshd\[32017\]: Failed password for invalid user test from 20.187.85.139 port 49748 ssh2May 26 02:43:32 pkdns2 sshd\[32118\]: Invalid user adele from 20.187.85.139May 26 02:43:33 pkdns2 sshd\[32118\]: Failed password for invalid user adele from 20.187.85.139 port 58094 ssh2 ... show less	Brute-Force SSH
Parth Maniar	25 May 2022	SSH login attempts (SSH bruteforce attack). For more information, or to report interesting/incorrect ... show moreSSH login attempts (SSH bruteforce attack). For more information, or to report interesting/incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
woutvde	25 May 2022		Brute-Force SSH
Anonymous	25 May 2022	(sshd) Failed SSH login from 20.187.85.139 (HK/Hong Kong/-): 5 in the last 3600 secs; Ports: *; Dire ... show more(sshd) Failed SSH login from 20.187.85.139 (HK/Hong Kong/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 25 03:15:10 server2 sshd[17438]: Invalid user elissa from 20.187.85.139 port 54228 May 25 03:15:10 server2 sshd[17438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.187.85.139 May 25 03:15:11 server2 sshd[17438]: Failed password for invalid user elissa from 20.187.85.139 port 54228 ssh2 May 25 03:33:54 server2 sshd[29073]: Invalid user h from 20.187.85.139 port 37110 May 25 03:33:54 server2 sshd[29073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.187.85.139 show less	Brute-Force
uestueno	25 May 2022	<abuseipdb_comment>	Brute-Force SSH
jk jk	25 May 2022	WAF_blocked	Hacking Web App Attack
Anonymous	24 May 2022	May 25 05:01:59 mx1 sshd[3788136]: Invalid user admin from 20.187.85.139 port 36200	Brute-Force SSH
Ian's HP	24 May 2022	SSH bruteforce	Brute-Force SSH
Lat31320	24 May 2022	ddbx2 - SSH brute force	Brute-Force SSH

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩