← Back to Dashboard

20.120.227.37 Threat Intelligence Report

Risk Level: LOW — 665 abuse reports from 2 sources

Threat Intelligence Summary

IP address 20.120.227.37 has been flagged in 665 abuse reports across 2 independent threat intelligence sources, resulting in a threat score of 35.1/100 (low risk). The primary activity associated with this IP is aggregated threat, along with rdp bruteforce.

This IP is geolocated in United States and belongs to the network Microsoft Corporation (AS8075). Reports span from 2024-07-11 to 2025-12-05.

Assessment: The reports for 20.120.227.37 are limited in volume and severity, suggesting low-level or opportunistic activity rather than a targeted campaign. No immediate action is typically required, but this IP should be monitored if it appears in your server logs.

Data aggregated from 2 independent threat intelligence sources.

Geolocation

Country United States
Region Washington
ISP/ASN Microsoft Corporation
Timezone America/Los_Angeles

Threat Status

Overall Status Low Risk
Threat Score 35.1%
Report Count 665
Sources 2
First Seen 2024-07-11
Last Seen 2025-12-05

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

United States Threat Intelligence → AS8075 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: