JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 128.24.162.180

128.24.162.180 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Cheyenne, Wyoming

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 128.24.162.180

Whois 128.24.162.180

IP Abuse Reports for 128.24.162.180:

This IP address has been reported a total of 50 times from 38 distinct sources. 128.24.162.180 was first reported on January 5th 2026, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇭 Sawasdee	2026-06-14 04:36:10 (16 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇩🇪 acadeova	2026-06-14 00:46:17 (20 hours ago)	🚨 Recon detected (nft drop) SRC=128.24.162.180 Observed=TCP dpt=2095 in=enp0s6 ttl=39 Time=recent(jo ... show more 🚨 Recon detected (nft drop) SRC=128.24.162.180 Observed=TCP dpt=2095 in=enp0s6 ttl=39 Time=recent(journalctl: 10 minutes ago) Assessment=Generic scanning / reconnaissance (PORT_SCAN) show less	Port Scan
🇺🇸 xmission.com	2026-06-14 00:44:37 (20 hours ago)	Blocked by UFW (TCP on 8880) Source port: 4235 TTL: 53 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 8880) Source port: 4235 TTL: 53 Packet length: 60 TOS: 0x00 This report (for 128.24.162.180) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-06-14 00:43:04 (20 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 pm33	2026-06-10 05:58:36 (4 days ago)	Unsolicited connection attempts or aggressive port scan.	Port Scan
Anonymous	2026-06-10 05:38:43 (4 days ago)	SIEM ALERT AUTO REPORT	Email Spam
🇸🇬 drewf.ink	2026-06-10 05:16:19 (4 days ago)	[05:16] Port scanning. Port(s) scanned: TCP/8080, TCP/2082, TCP/2083, TCP/8443	Port Scan
🇦🇷 Bruno	2026-06-10 04:30:12 (4 days ago)	Port Scanner: 128.24.162.180	Port Scan
🇺🇸 Floofie	2026-06-10 03:44:11 (4 days ago)	128.24.162.180 - - [09/Jun/2026:23:44:08 -0400] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (co ... show more 128.24.162.180 - - [09/Jun/2026:23:44:08 -0400] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 128.24.162.180 - - [09/Jun/2026:23:44:10 -0400] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 128.24.162.180 - - [09/Jun/2026:23:44:11 -0400] "GET /.env.local HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Little Iguana	2026-06-10 01:46:37 (4 days ago)	trying to access non-authorized port	Port Scan
🇮🇪 AutosOnShow	2026-06-10 01:22:05 (4 days ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-10 01:21:14.289 \|	Web App Attack
🇩🇪 anycast_ac	2026-06-10 01:17:25 (4 days ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/8080 (http). Commands captured: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/8080 (http). Commands captured: $ show less	DDoS Attack IoT Targeted Brute-Force
🇺🇸 MPL	2026-06-10 01:15:20 (4 days ago)	tcp port scan (8 or more attempts)	Port Scan
🇺🇸 MakoWish	2026-06-10 00:34:31 (4 days ago)	Fuzzing for misconfigured web servers.	Hacking Web App Attack
🇷🇸 Scan	2026-06-10 00:21:39 (4 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.131

🇧🇷 205.210.31.214

🇲🇩 188.214.144.172

🇨🇳 183.200.28.67

🇸🇬 101.47.141.35

🇸🇬 101.47.141.25

🇹🇷 89.252.131.17

🇺🇦 45.130.81.57

🇫🇷 35.181.60.164

🇺🇸 205.210.31.97

🇧🇪 198.235.24.179

🇹🇼 198.235.24.54

🇺🇦 185.254.196.141

🇵🇹 149.88.20.96

🇺🇸 135.237.127.54

🇳🇬 102.88.137.145

🇸🇬 101.47.141.246

🇸🇬 101.47.141.239

🇸🇬 101.47.141.215

🇺🇸 98.113.185.247