JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.226.165.221

20.226.165.221 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.226.165.221

Whois 20.226.165.221

IP Abuse Reports for 20.226.165.221:

This IP address has been reported a total of 33 times from 28 distinct sources. 20.226.165.221 was first reported on January 23rd 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 _ArminS_	2026-03-10 13:22:51 (3 months ago)	SP-Scan 23361:6379 detected 2026.03.10 14:22:51 blocked until 2026.04.29 08:25:38	Port Scan
🇩🇪 NxtGenIT	2026-03-10 07:49:18 (3 months ago)	Redishoneypot Honeypot hit, Action: info	IoT Targeted
🇨🇦 Slackin' Jack	2026-03-10 04:54:32 (3 months ago)	Triggered honeypot on port 6379. (20.226.165.221)	Port Scan
🇹🇷 rtbh.com.tr	2026-03-10 00:11:57 (3 months ago)	list.rtbh.com.tr report: tcp/6379	Brute-Force
🇬🇧 wiredalter	2026-03-09 23:56:30 (3 months ago)	Blocked by fail2ban on cVPS [6379/tcp] Source Port: 20173 TTL: 51 Packet Length: 60 TOS: 0x00 Analy ... show more Blocked by fail2ban on cVPS [6379/tcp] Source Port: 20173 TTL: 51 Packet Length: 60 TOS: 0x00 Analyzed by https://ip.wiredalter.com show less	Brute-Force SSH
🇦🇹 urnilxfgbez	2026-03-09 23:45:00 (3 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇨🇭 Elysium Security	2026-03-09 22:15:38 (3 months ago)	Mass port scanning on a whole network	Port Scan
🇹🇭 Sawasdee	2026-03-09 22:12:05 (3 months ago)	Port Scan ...	Port Scan
🇬🇧 wiredalter	2026-03-09 19:25:30 (3 months ago)	Blocked by fail2ban on cVPS [6379/tcp] Source Port: 32900 TTL: 51 Packet Length: 60 TOS: 0x00 Analy ... show more Blocked by fail2ban on cVPS [6379/tcp] Source Port: 32900 TTL: 51 Packet Length: 60 TOS: 0x00 Analyzed by https://ip.wiredalter.com show less	Brute-Force SSH
🇨🇦 polycoda	2026-03-09 16:33:38 (3 months ago)	📡 Port scan	Hacking Web App Attack
🇬🇧 wiredalter	2026-03-09 13:16:16 (3 months ago)	Blocked by fail2ban on cVPS [6379/tcp] Source Port: 21250 TTL: 51 Packet Length: 60 TOS: 0x00 Analy ... show more Blocked by fail2ban on cVPS [6379/tcp] Source Port: 21250 TTL: 51 Packet Length: 60 TOS: 0x00 Analyzed by https://ip.wiredalter.com show less	Brute-Force SSH
🇬🇧 OptimusGO	2026-03-09 07:22:33 (3 months ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-03-09 07:22:23 UTC Log evidence: 03/09/2026-07:22:22.012524 [] [1:1000090:1] POLICY Unauthorized Management Port Access [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 20.226.165.221:12490 -> 185.127.18.66:6379 03/09/2026-07:22:22.012524 [] [1:1000103:1] SECURITY Management Port Probe - CRITICAL [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 20.226.165.221:12490 -> 185.127.18.66:6379 show less	Port Scan Brute-Force
🇨🇭 SOC [GOLINE SA]	2026-03-09 07:16:24 (3 months ago)	RoutePulse CyberSecurity detection: port scan horizontal. Severity: warning. Port: 6379. Distinct ta ... show more RoutePulse CyberSecurity detection: port scan horizontal. Severity: warning. Port: 6379. Distinct targets: 1024. Flow count: 1027. Target subnets: 185.54.83.0/24, 185.54.81.0/24, 185.54.80.0/24, 185.54.82.0/24 show less	Port Scan
🇫🇷 security.rdmc.fr	2026-03-08 15:24:46 (3 months ago)	Port Scan Attack proto:TCP src:23368 dst:23	Port Scan
🇺🇸 RAP	2026-03-07 21:10:59 (3 months ago)	2026-03-07 21:10:59 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 167.71.130.42

🇮🇳 154.84.216.147

🇫🇮 147.185.133.187

🇨🇦 134.122.34.65

🇸🇬 45.194.17.43

🇳🇱 45.148.10.183

🇺🇸 20.65.194.66

🇮🇳 2405:201:1028:20da:fccf:fa0f:b432:3e2c

🇰🇷 175.201.203.181

🇺🇸 167.99.5.1

🇳🇱 45.148.10.152

🇨🇳 42.123.122.110

🇨🇳 36.26.116.135

🇸🇦 34.166.5.230

🇬🇧 31.14.254.29

🇳🇱 195.211.191.112

🇯🇵 195.172.211.73

🇵🇱 178.183.125.51

🇮🇳 139.59.62.227

🇩🇪 103.14.32.224