JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.227.140.176

20.227.140.176 was found in our database!

This IP was reported 367 times. Confidence of Abuse is 67%: ?

67%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇦🇺 Australia
City	Canberra, Australian Capital Territory

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.227.140.176

Whois 20.227.140.176

IP Abuse Reports for 20.227.140.176:

This IP address has been reported a total of 367 times from 157 distinct sources. 20.227.140.176 was first reported on November 26th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-17 16:16:23 (2 days ago)	2026-06-17T18:16:22.560112+02:00 soli-gate postfix/smtpd[1687529]: NOQUEUE: reject: RCPT from unknow ... show more 2026-06-17T18:16:22.560112+02:00 soli-gate postfix/smtpd[1687529]: NOQUEUE: reject: RCPT from unknown[20.227.140.176]: 554 5.7.25 Client host rejected: cannot find your hostname, [20.227.140.176]; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[127.0.0.1]> ... show less	Brute-Force
🇺🇸 micropedro	2026-06-16 10:30:23 (3 days ago)	3 incidents: malicious activity. First: 2026-06-09 06:19, Last: 2026-06-16 06:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-06-09 06:19, Last: 2026-06-16 06:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-06-09 10:19:08 (1 week ago)	3 incidents: malicious activity. First: 2026-05-27 13:31, Last: 2026-06-09 06:19 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-27 13:31, Last: 2026-06-09 06:19 UTC. Triggers: ufw-repeater. show less	Port Scan
Anonymous	2026-06-08 16:33:02 (1 week ago)	Unauthorized SSH login attempts	Brute-Force SSH
Anonymous	2026-06-06 19:56:49 (1 week ago)	unsolicited connect TCP dport 25565 (sport 32768)	Hacking
🇯🇵 SentinalX by uzumaru	2026-06-06 05:31:56 (1 week ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: 128.116.115.3:443 show less	Open Proxy Port Scan
🇺🇸 micropedro	2026-06-03 18:31:19 (2 weeks ago)	3 incidents: malicious activity. First: 2026-05-27 13:31, Last: 2026-06-03 14:31 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-27 13:31, Last: 2026-06-03 14:31 UTC. Triggers: ufw-repeater. show less	Port Scan
🇯🇵 SentinalX by uzumaru	2026-06-01 01:51:11 (2 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: 128.116.51.3:443 show less	Open Proxy Port Scan
Anonymous	2026-05-30 13:45:02 (2 weeks ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇺🇸 LSPCCU	2026-05-26 12:35:26 (3 weeks ago)	TSEC Honeypot Network report. Threat score: 100/100. Categories: DDoS Attack, Port Scan, Hacking, Br ... show more TSEC Honeypot Network report. Threat score: 100/100. Categories: DDoS Attack, Port Scan, Hacking, Brute-Force, Web App Attack, SSH, IoT Targeted. Honeypot: ssh-telnet, cowrie. Context: 20. show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack SSH IoT Targeted
🇳🇱 knock	2026-05-26 12:30:20 (3 weeks ago)	Knock-Knock honeypot brute-force: proto8 (5 total hits)	Brute-Force
🇫🇷 Petre 21_ip	2026-05-22 18:56:59 (3 weeks ago)	2026-05-22T20:56:57.837729+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-05-22T20:56:57.837729+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=20.227.140.176 DST=155.133.26.57 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=54321 PROTO=TCP SPT=63488 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 security.rdmc.fr	2026-05-22 18:44:20 (3 weeks ago)	Port Scan Attack proto:TCP src:63488 dst:23	Port Scan
Anonymous	2026-05-22 18:16:25 (3 weeks ago)	Unauthorized connection to Telnet port 23	Port Scan
🇵🇱 Yachiyo Runami	2026-05-22 18:06:28 (3 weeks ago)	Port Scan on Honeypot \| Ports: 23/Telnet \| Proto: TCP(1) \| Flags: all SYN \| TTL: 230 \| Len: 40B \| Wi ... show more Port Scan on Honeypot \| Ports: 23/Telnet \| Proto: TCP(1) \| Flags: all SYN \| TTL: 230 \| Len: 40B \| Win: 65535(1) \| F2B/ufw-honeypot@2026-05-22T18:06:28Z show less	Port Scan Hacking

Showing 1 to 15 of 367 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 106.75.154.218

🇧🇬 79.124.40.190

🇨🇳 218.75.165.74

🇺🇸 149.13.10.213

🇩🇪 139.162.150.63

🇩🇪 135.125.254.174

🇫🇷 135.125.29.132

🇺🇸 107.172.250.235

🇺🇸 20.168.7.3

🇺🇸 209.141.41.212

🇩🇪 167.94.146.42

🇸🇬 146.190.104.85

🇮🇳 125.23.255.134

🇮🇳 122.176.21.104

🇳🇱 45.148.10.183

🇬🇧 35.203.210.142

🇸🇬 8.219.57.172

🇺🇸 209.85.214.174

🇸🇪 193.189.100.200

🇺🇸 162.216.150.20