AbuseIPDB » 20.65.177.158

20.65.177.158 was found in our database!

This IP was reported 881 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Hostname(s)	azpdsszhqwse.stretchoid.com
Domain Name	microsoft.com
Country	United States of America
City	San Antonio, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 20.65.177.158

Whois 20.65.177.158

IP Abuse Reports for 20.65.177.158:

This IP address has been reported a total of 881 times from 166 distinct sources. 20.65.177.158 was first reported on March 31st 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
rtbh.com.tr	2025-06-13 00:07:06 (8 hours ago)	list.rtbh.com.tr report: tcp/3389, tcp/49152	Brute-Force
urnilxfgbez	2025-06-12 22:45:00 (9 hours ago)	Last 24 Hours suspicious: (DPT=445|DPT=3389|DPT=22|DPT=3306|DPT=8080|DPT=23|DPT=5900|DPT=1433)	Port Scan
shabi	2025-06-12 17:52:46 (14 hours ago)	UFW Blocked [2087/TCP] Source: 20.65.177.158:52767 TTL: 235 Lenth: 44 TOS: 0 ... show moreUFW Blocked [2087/TCP] Source: 20.65.177.158:52767 TTL: 235 Lenth: 44 TOS: 0x08 show less	Port Scan
rtbh.com.tr	2025-06-12 16:07:06 (16 hours ago)	list.rtbh.com.tr report: tcp/445, tcp/9200	Brute-Force
MPL	2025-06-12 15:59:26 (16 hours ago)	tcp/445	Port Scan
el-brujo	2025-06-12 15:16:43 (16 hours ago)	06/12/2025-17:16:42.931979 20.65.177.158 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputa ... show more06/12/2025-17:16:42.931979 20.65.177.158 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 34 show less	Hacking
MPL	2025-06-12 15:05:24 (17 hours ago)	tcp ports: 389,445 (2 or more attempts)	Port Scan
nyuuzyou	2025-06-12 14:41:23 (17 hours ago)	{"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "389", "server": "ldap_server", "src_ip" ... show more{"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "389", "server": "ldap_server", "src_ip": "20.65.177.158", "src_port": "54448", "timestamp": "2025-06-12T14:40:29.817348"} show less	Port Scan Brute-Force
Anonymous	2025-06-12 13:14:12 (19 hours ago)	Web Attack ZGrab Application Layer Scanner Detection	Web App Attack
begou.dev	2025-06-12 12:33:24 (19 hours ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/139	Port Scan
MPL	2025-06-12 12:15:17 (19 hours ago)	tcp/25	Port Scan
Study Bitcoin 🤗	2025-06-12 10:27:05 (21 hours ago)	Port probe to tcp/7473 [ros]	Port Scan
drewf.ink	2025-06-12 08:39:23 (23 hours ago)	[08:39] Port scanning. Port(s) scanned: TCP/873	Port Scan
drewf.ink	2025-06-12 06:27:44 (1 day ago)	[06:27] Port scanning. Port(s) scanned: TCP/2376	Port Scan
LTM	2025-06-12 06:20:02 (1 day ago)	SSH - Attempt to login using invalid or illegal credential	Port Scan Brute-Force SSH

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩