JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.109.38.179

20.109.38.179 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 49%: ?

49%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.109.38.179

Whois 20.109.38.179

IP Abuse Reports for 20.109.38.179:

This IP address has been reported a total of 21 times from 16 distinct sources. 20.109.38.179 was first reported on October 28th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-23 03:31:32 (3 days ago)	3 incidents: malicious activity. First: 2026-06-08 21:30, Last: 2026-06-22 23:31 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-06-08 21:30, Last: 2026-06-22 23:31 UTC. Triggers: ufw-repeater. show less	Port Scan
🇷🇸 Scan	2026-06-17 03:05:41 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 Axel	2026-06-17 02:40:06 (1 week ago)	Blocked by UFW on MVI [80/tcp] \| SPT: 26180 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.co ... show more Blocked by UFW on MVI [80/tcp] \| SPT: 26180 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Rayulcifer	2026-06-16 15:10:44 (1 week ago)	[Thu Jun 11 21:48:06.935627 2026] [access_compat:error] [pid 3549868:tid 135749714290368] [client 20 ... show more [Thu Jun 11 21:48:06.935627 2026] [access_compat:error] [pid 3549868:tid 135749714290368] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:05:44.284355 2026] [access_compat:error] [pid 3639502:tid 135749655574208] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:18:23.636867 2026] [access_compat:error] [pid 3690165:tid 135746971219648] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:29:41.944923 2026] [access_compat:error] [pid 3720627:tid 135746979612352] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:43:34.696355 2026] [access_compat:error] [pid 3790578:tid 135748070139584] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ ... show less	Brute-Force SSH
🇺🇸 micropedro	2026-06-16 02:30:59 (1 week ago)	3 incidents: malicious activity. Ports: 2082/TCP(1), 2083/TCP(1), 2086/TCP(1), 8080/TCP(1), 8443/TCP ... show more 3 incidents: malicious activity. Ports: 2082/TCP(1), 2083/TCP(1), 2086/TCP(1), 8080/TCP(1), 8443/TCP(1). First: 2026-06-08 21:30, Last: 2026-06-15 22:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 Rayulcifer	2026-06-12 03:43:34 (2 weeks ago)	[Thu Jun 11 21:48:06.935627 2026] [access_compat:error] [pid 3549868:tid 135749714290368] [client 20 ... show more [Thu Jun 11 21:48:06.935627 2026] [access_compat:error] [pid 3549868:tid 135749714290368] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:05:44.284355 2026] [access_compat:error] [pid 3639502:tid 135749655574208] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:18:23.636867 2026] [access_compat:error] [pid 3690165:tid 135746971219648] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:29:41.944923 2026] [access_compat:error] [pid 3720627:tid 135746979612352] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ [Thu Jun 11 22:43:34.696355 2026] [access_compat:error] [pid 3790578:tid 135748070139584] [client 20.109.38.179:33920] AH01797: client denied by server configuration: proxy:http://localhost:4000/ ... show less	Brute-Force SSH
🇯🇵 demonsword	2026-06-11 10:30:50 (2 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: ptlogin.4399.com:443 show less	Open Proxy Port Scan
🇺🇸 RAP	2026-06-02 01:02:08 (3 weeks ago)	2026-06-02 01:02:08 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
Anonymous	2026-06-02 00:37:51 (3 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2086 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 2086 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 micropedro	2026-06-02 00:30:02 (3 weeks ago)	6 incidents: web scanning/attack, port scanning. Ports: 2082/TCP(1), 2083/TCP(1), 2086/TCP(1), 8080/ ... show more 6 incidents: web scanning/attack, port scanning. Ports: 2082/TCP(1), 2083/TCP(1), 2086/TCP(1), 8080/TCP(1), 8443/TCP(1). First: 2026-06-01 20:30, Last: 2026-06-01 20:30 UTC. Triggers: port-trap,ufw-repeater,non-public-port,recidive,firewall-http,firewall-tcp. show less	Port Scan Brute-Force Web App Attack
🇷🇸 Scan	2026-06-02 00:16:04 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 ✨	2026-06-01 23:53:08 (3 weeks ago)	Rule : Security Rule: Security Event: Security 0 - %592 20.109.38.179 52288 77.90.37.147 8080 6 S ... show more Rule : Security Rule: Security Event: Security 0 - %592 20.109.38.179 52288 77.90.37.147 8080 6 Stealth 240164 %597 13 show less	Port Scan Hacking Brute-Force
🇧🇷 SOCBR	2026-06-01 23:35:59 (3 weeks ago)	IPS: Web Server Enforcement Violation.	Hacking
🇺🇸 Rip	2026-06-01 23:07:48 (3 weeks ago)	Restricted File Access Attempts	Port Scan Web App Attack
🇺🇸 RAP	2026-06-01 20:52:22 (3 weeks ago)	2026-06-01 20:52:22 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.104.205.207

🇳🇱 192.42.116.13

🇮🇱 46.210.51.179

🇺🇸 23.21.204.95

🇬🇧 195.206.182.218

🇬🇧 193.163.125.136

🇲🇽 187.148.41.50

🇻🇳 103.110.85.89

🇩🇪 91.63.236.95

🇺🇸 74.125.17.253

🇺🇸 65.49.1.136

🇯🇲 63.143.95.50

🇺🇸 52.224.243.154

🇿🇦 41.135.23.70

🇺🇸 2001:470:1:c84::1c7

🇵🇾 190.128.236.2

🇦🇷 186.22.13.169

🇮🇳 182.95.106.102

🇦🇷 148.227.74.132

🇺🇸 108.181.23.83