Sh4mefulIP Address: 2a01:111:f403:c400::3 โ IP Confounder
โ IP Confounder Detected: Microsoft 365 Exchange Online Protection (EOP)
Exchange Online Protection (EOP) is a cloud-based email filtering service included with all Microsoft 365 subscriptions to protect against spam, malware, and phishing attacks. It automatically secures mailboxes by filtering incoming and outgoing messages in real-time using anti-spam, anti-malware, and content filters. During periods of active campaign activity, these can largely be ignored (esp. when recipients are on Exchange). However, forged emails have been observed from Microsoft infrastructure that have this signature too.
Exchange Online Protection (EOP) is a cloud-based email filtering service included with all Microsoft 365 subscriptions to protect against spam, malware, and phishing attacks. It automatically secures mailboxes by filtering incoming and outgoing messages in real-time using anti-spam, anti-malware, and content filters. During periods of active campaign activity, these can largely be ignored (esp. when recipients are on Exchange). However, forged emails have been observed from Microsoft infrastructure that have this signature too.
This page shows DMARC authentication failure data for this IP address. Learn more about this data.
Geolocation Information
- Country:
- HK Hong Kong
- City:
- Hong Kong
- Coordinates:
- 22.2842, 114.1759
WHOIS Information
- Network Name:
- UK-MICROSOFT-20060601
- Owner:
- ORG-MA42-RIPE
Analysis
This IP was observed on a single date: May 7, 2024. It has been associated with 1 failed authentication event affecting 1 message โ a single isolated event. The IP belongs to UK-MICROSOFT-20060601 (ORG-MA42-RIPE), a network with activity associated with Hong Kong.
External Reputation Lookups
Look up this IP in external threat intelligence and reputation databases (opens in new tab):