AbuseIPDB » 20.168.121.187

20.168.121.187 was found in our database!

This IP was reported 650 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Hostname(s)	azpdwsrtejri.stretchoid.com
Domain Name	microsoft.com
Country	United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 20.168.121.187

Whois 20.168.121.187

IP Abuse Reports for 20.168.121.187:

This IP address has been reported a total of 650 times from 140 distinct sources. 20.168.121.187 was first reported on April 25th 2025, and the most recent report was 37 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
slartybartfast69420blazit	2025-06-18 20:17:52 (37 minutes ago)	Fail2ban picked up 20.168.121.187 attacking nginx	Web App Attack
BlueWire Hosting	2025-06-18 20:10:04 (45 minutes ago)	Detected as a bad bot	Bad Web Bot
MPL	2025-06-18 18:37:01 (2 hours ago)	tcp/28015 (90 or more attempts)	Port Scan
Study Bitcoin 🤗	2025-06-18 17:18:27 (3 hours ago)	Port probe to tcp/1212 (lupa) [ros]	Port Scan
iNetWorker	2025-06-18 14:40:41 (6 hours ago)	trying to access non-authorized port	Port Scan
MPL	2025-06-18 13:47:47 (7 hours ago)	tcp/4840 (45 or more attempts)	Port Scan
MPL	2025-06-18 13:47:47 (7 hours ago)	tcp/4840 (45 or more attempts)	Port Scan
Crxa	2025-06-18 10:04:02 (10 hours ago)	Blocked by UFW on einfachctf [9043/tcp]. Generated by: https://github.com/sefinek/UFW-AbuseIPDB-Repo ... show moreBlocked by UFW on einfachctf [9043/tcp]. Generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Study Bitcoin 🤗	2025-06-18 07:34:49 (13 hours ago)	Port probe to tcp/32400 [srv134]	Port Scan
WhiteShark	2025-06-18 01:21:24 (19 hours ago)	stretchoid.com blocked due to abusive behavior	Email Spam
David Ferneding	2025-06-18 01:17:15 (19 hours ago)	Blocked by UFW (TCP on 25) Source port: 52736 TTL: 240 Packet length: 40 TOS ... show moreBlocked by UFW (TCP on 25) Source port: 52736 TTL: 240 Packet length: 40 TOS: 0x00 This report (for 20.168.121.187) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Email Spam Port Scan
ThreatBook.io	2025-06-17 23:15:22 (21 hours ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/20.168.121.187 2 ... show moreThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/20.168.121.187 2025-06-17 00:15:01 / show less	Web App Attack
drewf.ink	2025-06-17 22:50:21 (22 hours ago)	[22:50] Triggered SMB honeypot on port 139. Type: NetBIOS + SMB2/3. Dialect(s): SMB 2.1	Hacking Exploited Host
iNetWorker	2025-06-17 17:20:04 (1 day ago)	firewall-block, port(s): 443/tcp	Port Scan
rtbh.com.tr	2025-06-17 16:07:12 (1 day ago)	list.rtbh.com.tr report: tcp/2525	Brute-Force

Showing 1 to 15 of 650 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

35.203.211.169

67.210.114.84

::ffff:0:754:d226

14.103.170.154

5.255.99.131

147.182.227.152

128.185.194.62

::ffff:0:9a8c:6167

39.100.237.171

185.242.226.52

182.40.195.233

80.94.95.112

167.94.146.20

66.249.70.49

::ffff:0:3dee:9567

109.198.192.196

91.196.152.72

2a06:4880:c000::f5

211.241.188.20

134.199.153.32