JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.221.58.154

20.221.58.154 was found in our database!

This IP was reported 6,663 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Hostname(s)	azpdcslpodwo.stretchoid.com
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.221.58.154

Whois 20.221.58.154

IP Abuse Reports for 20.221.58.154:

This IP address has been reported a total of 6,663 times from 471 distinct sources. 20.221.58.154 was first reported on May 6th 2025, and the most recent report was 6 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-12 06:27:20 (6 minutes ago)	Brute force	Brute-Force
🇧🇷 opastorello	2026-06-12 05:03:17 (1 hour ago)	T-Pot honeypot: 24 hits in 15min on port(s) 3128 (P0f/Suricata/Honeytrap). Port scan / unsolicited c ... show more T-Pot honeypot: 24 hits in 15min on port(s) 3128 (P0f/Suricata/Honeytrap). Port scan / unsolicited connection. Automated report. show less	Port Scan
🇧🇷 diego	2026-06-12 04:24:24 (2 hours ago)	[rede-arem1] 06/12/2026-01:24:23.932418, 20.221.58.154, Protocol: 6, ET CINS Active Threat Intellige ... show more [rede-arem1] 06/12/2026-01:24:23.932418, 20.221.58.154, Protocol: 6, ET CINS Active Threat Intelligence Poor Reputation IP group 27 show less	Hacking
🇺🇸 chronos	2026-06-12 03:14:55 (3 hours ago)	[AUTORAVALT][[12/06/2026 - 00:14:55 -03:00 UTC] Attack from [Microsoft Corporation] [20.221.58.154][ ... show more [AUTORAVALT][[12/06/2026 - 00:14:55 -03:00 UTC] Attack from [Microsoft Corporation] [20.221.58.154][azpdcslpodwo.stretchoid.com] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access the server. Spoofing -> Email sender spoofing. Brute] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇺🇸 MPL	2026-06-12 01:09:08 (5 hours ago)	tcp ports: 6667,995 (3 or more attempts)	Port Scan
🇫🇷 Version Net	2026-06-12 00:42:07 (5 hours ago)	IPS Detection: ZGrab.Scanner	Hacking
🇺🇸 RAP	2026-06-12 00:00:08 (6 hours ago)	2026-06-12 00:00:08 UTC Unauthorized activity to TCP port 9200.	Port Scan
🇦🇹 urnilxfgbez	2026-06-11 22:45:00 (7 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇵🇱 sefinek.net	2026-06-11 20:42:45 (9 hours ago)	Honeypot hit: Empty payload (likely service probe); 2086 [2] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 2086 [2] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-06-11 20:01:28 (10 hours ago)	tcp/47808	Port Scan
🇺🇸 MPL	2026-06-11 17:34:54 (12 hours ago)	tcp/9001	Port Scan
🇦🇹 begou.dev	2026-06-11 15:24:56 (15 hours ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/5901	Port Scan
🇸🇪 NordhTech	2026-06-11 15:15:11 (15 hours ago)	More than 3 malicious connection attempts, trying port(s) 3050/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 RAP	2026-06-11 12:28:09 (18 hours ago)	2026-06-11 12:28:09 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 MPL	2026-06-11 11:38:30 (18 hours ago)	tcp/9200	Port Scan

Showing 1 to 15 of 6663 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.134

🇺🇸 195.184.76.220

🇺🇸 193.56.116.79

🇮🇳 168.144.95.137

🇮🇩 103.169.226.38

🇸🇬 43.172.196.204

🇩🇪 213.209.159.254

🇩🇪 213.209.159.228

🇺🇸 209.50.172.230

🇺🇸 148.153.56.170

🇸🇪 104.23.223.142

🇳🇱 45.153.34.114

🇻🇳 14.248.62.131

🇻🇳 14.191.58.50

🇬🇧 192.250.239.252

🇨🇳 118.196.142.135

🇧🇩 103.251.247.198

🇨🇦 85.217.149.60

🇩🇪 45.8.68.216

🇮🇳 182.95.124.202