AbuseIPDB » 20.96.122.134

20.96.122.134 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.96.122.134

Whois 20.96.122.134

IP Abuse Reports for 20.96.122.134:

This IP address has been reported a total of 151 times from 105 distinct sources. 20.96.122.134 was first reported on August 18th 2023, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
SvrAdmin	29 Aug 2023	Time: Tue Aug 22 16:13:30 2023 -0300 IP: 20.96.122.134 (US/United States/-) ... show moreTime: Tue Aug 22 16:13:30 2023 -0300 IP: 20.96.122.134 (US/United States/-) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block [LF_SMTPAUTH] Log entries: 2023-08-22 16:12:26 dovecot_login authenticator failed for (rRe3Po6) [20.96.122.134]:59804: 535 Incorrect authentication data (set_id=noticiad) 2023-08-22 16:12:33 dovecot_login authenticator failed for (gN1DNFcZHs) [20.96.122.134]:60335: 535 Incorrect authentication data ([email protected]) 2023-08-22 16:12:57 dovecot_login authenticator failed for (vncypCK) [20.96.122.134]:65505: 535 Incorrect authentication data (set_id=noticiad) 2023-08-22 16:13:01 dovecot_login authenticator failed for (puTuenR) [20.96.122.134]:1561: 535 Incorrect authentication data ([email protected]) 2023-08-22 16:13:25 dovecot_login authenticator failed for (MLcej435T) [20.96.122.134]:58 [ TRUNCATED ] show less	Hacking Brute-Force
SvrAdmin	29 Aug 2023	Time: Sat Aug 19 00:50:34 2023 -0300 IP: 20.96.122.134 (US/United States/-) ... show moreTime: Sat Aug 19 00:50:34 2023 -0300 IP: 20.96.122.134 (US/United States/-) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block [LF_SMTPAUTH] Log entries: Aug 19 00:50:01 cwp01 postfix/smtpd[3599]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 00:50:08 cwp01 postfix/smtpd[3599]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 00:50:19 cwp01 postfix/smtpd[4751]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 00:50:30 cwp01 postfix/smtpd[3599]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 19 00:50:34 cwp01 postfix/smtpd[4751]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 show less	Hacking Brute-Force
pestctrl	24 Aug 2023	Postfix Brute Force	Brute-Force
openstrike.co.uk	24 Aug 2023	9 packets to ports 465 587 2525	Brute-Force
Honzas	24 Aug 2023	Automatic report:23.08.2023 0:35:44. Ports:465,587	Email Spam
AndCycle	24 Aug 2023	Aug 24 09:04:59 bacztwo courieresmtpd[1581]: error,relay=::ffff:20.96.122.134,port=41060,msg="535 Au ... show moreAug 24 09:04:59 bacztwo courieresmtpd[1581]: error,relay=::ffff:20.96.122.134,port=41060,msg="535 Authentication failed.",cmd: AUTH LOGIN andcycle-w7club Aug 24 09:05:01 bacztwo courieresmtpd[1696]: error,relay=::ffff:20.96.122.134,port=41395,msg="535 Authentication failed.",cmd: AUTH LOGIN [email protected] Aug 24 09:05:05 bacztwo courieresmtpd[1891]: error,relay=::ffff:20.96.122.134,port=42040,msg="535 Authentication failed.",cmd: AUTH LOGIN andcycle-w7club Aug 24 09:05:07 bacztwo courieresmtpd[1926]: error,relay=::ffff:20.96.122.134,port=42374,msg="535 Authentication failed.",cmd: AUTH LOGIN [email protected] Aug 24 09:05:11 bacztwo courieresmtpd[2252]: error,relay=::ffff:20.96.122.134,port=42971,msg="535 Authentication failed.",cmd: AUTH LOGIN andcycle-w7club ... show less	Email Spam Brute-Force
stom	24 Aug 2023	2023-08-24T00:14:40.311419ls1.tom2.co.uk postfix/smtpd[12839]: warning: unknown[20.96.122.134]: SASL ... show more2023-08-24T00:14:40.311419ls1.tom2.co.uk postfix/smtpd[12839]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure ... show less	Email Spam Brute-Force
Thomas Anderson	23 Aug 2023		Hacking Brute-Force Web App Attack
chrisw	23 Aug 2023	Aug 23 23:38:06 l03 postfix/smtpd[27932]: warning: unknown[20.96.122.134]: SASL LOGIN authentication ... show moreAug 23 23:38:06 l03 postfix/smtpd[27932]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 23:38:09 l03 postfix/smtpd[27932]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 23:38:12 l03 postfix/smtpd[29407]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 23:38:14 l03 postfix/smtpd[27932]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure ... show less	Web Spam Brute-Force Exploited Host
basing	23 Aug 2023	2023-08-23 00:14:01 bs SASL PLAIN auth failed: rhost=20.96.122.134...	Brute-Force
reigo	23 Aug 2023	SSH invalid-user multiple login try	Brute-Force SSH
ASPAN	23 Aug 2023	Unsolicited connection attempt(s), port:2525.	Port Scan
xortex	23 Aug 2023	sent several mails to non existent mailboxes, brute force attack	Email Spam Brute-Force
INTEQ	23 Aug 2023	Brute force attack from 20.96.122.134	Brute-Force
SpaceHost-Server	23 Aug 2023	Aug 23 19:18:35 pegasus postfix/smtpd[2628824]: warning: unknown[20.96.122.134]: SASL LOGIN authenti ... show moreAug 23 19:18:35 pegasus postfix/smtpd[2628824]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 19:18:36 pegasus postfix/smtpd[2628824]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 19:18:39 pegasus postfix/smtpd[2628824]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 19:18:39 pegasus postfix/smtpd[2628824]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure Aug 23 19:18:42 pegasus postfix/smtpd[2628824]: warning: unknown[20.96.122.134]: SASL LOGIN authentication failed: authentication failure show less	Hacking Brute-Force

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩