JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.118.209.123

20.118.209.123 was found in our database!

This IP was reported 6,826 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Hostname(s)	azpdcs2xgpkg.stretchoid.com
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.118.209.123

Whois 20.118.209.123

IP Abuse Reports for 20.118.209.123:

This IP address has been reported a total of 6,826 times from 494 distinct sources. 20.118.209.123 was first reported on May 6th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-25 01:50:56 (1 hour ago)	tcp/3000	Port Scan
🇫🇮 Maxetow	2026-06-24 23:33:43 (3 hours ago)	Scan port: 555 \| 2 total \| size=52B	Port Scan
🇩🇪 EinfxchFinn	2026-06-24 22:44:26 (4 hours ago)	Unauthorized connection attempt to port 2379 from 20.118.209.123	Port Scan
🇺🇸 MPL	2026-06-24 22:35:28 (4 hours ago)	tcp/443	Port Scan
🇺🇸 MPL	2026-06-24 20:15:56 (6 hours ago)	tcp/8192	Port Scan
🇧🇬 MazenHost	2026-06-24 17:43:48 (9 hours ago)	1782323028 - 06/24/2026 20:43:48 Host: 20.118.209.123/20.118.209.123 Port: 119 TCP Blocked ...	Port Scan
🇦🇹 Pingger Shikkoken	2026-06-24 17:37:58 (9 hours ago)	2026-06-24T17:37:58+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-06-24T17:37:58+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=20.118.209.123 DST=152.53.50.28 LEN=52 TOS=0x00 PREC=0x00 TTL=39 ID=13075 PROTO=TCP SPT=50943 DPT=28015 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Hacking
🇺🇸 MPL	2026-06-24 16:28:08 (10 hours ago)	tcp/587 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-24 12:41:20 (14 hours ago)	tcp/7474 (2 or more attempts)	Port Scan
Anonymous	2026-06-24 10:07:54 (17 hours ago)	2026-06-24T11:07:53.722971+01:00 vps kernel: [44035820.440250] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-24T11:07:53.722971+01:00 vps kernel: [44035820.440250] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.118.209.123 DST=54.37.14.118 LEN=52 TOS=0x00 PREC=0x00 TTL=38 ID=52880 PROTO=TCP SPT=36149 DPT=4200 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 RAP	2026-06-24 07:52:09 (19 hours ago)	2026-06-24 07:52:09 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 RAP	2026-06-24 04:12:33 (23 hours ago)	2026-06-24 04:12:33 UTC Unauthorized activity to TCP port 5900.	Port Scan
🇺🇸 MPL	2026-06-24 03:26:47 (23 hours ago)	tcp/5660	Port Scan
🇩🇪 genokrad	2026-06-24 02:30:33 (1 day ago)	Unauthorized connection attempt on TCP/3389 (RDP)	Port Scan
Anonymous	2026-06-24 00:01:11 (1 day ago)	Repeated unauthorized connection attempts to restricted service observed.	Port Scan Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 6826 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 34.77.237.15

🇳🇱 5.61.209.92

🇨🇦 2a09:bac5:18ea:1ed2::312:9d

🇮🇳 206.1.62.130

🇺🇸 205.210.31.46

🇨🇳 117.72.195.41

🇨🇳 114.234.101.12

🇮🇩 103.105.55.46

🇮🇳 103.86.180.10

🇷🇺 95.188.91.101

🇺🇸 91.230.168.24

🇫🇷 89.84.41.104

🇫🇷 51.68.107.142

🇮🇳 49.207.243.175

🇬🇧 31.14.254.122

🇨🇦 2a09:bac5:18ec:1ed2::312:9d

🇬🇧 195.140.214.19

🇳🇱 185.189.182.234

🇺🇸 162.216.150.194

🇭🇰 152.32.215.244