JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.169.72.5

20.169.72.5 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.169.72.5

Whois 20.169.72.5

IP Abuse Reports for 20.169.72.5:

This IP address has been reported a total of 28 times from 25 distinct sources. 20.169.72.5 was first reported on November 10th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2026-06-03 07:33:20 (1 day ago)	Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-02 2 ... show more Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-02 22:56:47 - Source Port 26735 show less	Port Scan Hacking
Anonymous	2026-06-03 04:17:30 (1 day ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇧🇾 lns.bz	2026-06-03 03:07:29 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇩🇪 kexol	2026-06-03 02:51:38 (1 day ago)	multiport scan, 3 ports scanned: 443, 8080, 8443	Port Scan
Anonymous	2026-06-03 02:42:53 (1 day ago)	[Tue Jun 02 22:42:46.405013 2026] [php7:error] [pid 1469717] [client 20.169.72.5:27600] script '/var ... show more [Tue Jun 02 22:42:46.405013 2026] [php7:error] [pid 1469717] [client 20.169.72.5:27600] script '/var/www/html/phpinfo.php' not found or unable to stat [Tue Jun 02 22:42:53.332702 2026] [php7:error] [pid 1469764] [client 20.169.72.5:28536] script '/var/www/html/config.php' not found or unable to stat ... show less	Brute-Force Web App Attack SSH
🇷🇸 Scan	2026-06-03 01:15:20 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 RAP	2026-06-03 00:55:15 (1 day ago)	2026-06-03 00:55:15 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 Rip	2026-06-03 00:41:19 (1 day ago)	Automated recon attempt targeting restricted and sensitive paths.	Web App Attack
🇩🇪 ghostwarriors	2026-06-03 00:20:06 (1 day ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
Anonymous	2026-06-03 00:13:07 (1 day ago)	Fail2Ban triggered	Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-02 23:55:48 (2 days ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-iad5-2)	Hacking Bad Web Bot
🇺🇸 RAP	2026-06-02 23:33:59 (2 days ago)	2026-06-02 23:33:59 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 MPL	2026-06-02 22:34:30 (2 days ago)	tcp/2087	Port Scan
🇫🇷 dynamix	2026-06-02 21:52:55 (2 days ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.87

🇷🇴 193.32.162.201

🇺🇸 192.178.66.93

🇧🇷 187.7.166.150

🇩🇪 69.5.169.110

🇬🇧 35.203.210.103

🇬🇧 35.203.210.15

🇹🇼 210.209.145.81

🇺🇸 207.90.244.17

🇺🇸 205.210.31.99

🇺🇸 174.35.25.178

🇨🇳 119.179.128.14

🇨🇳 119.120.225.143

🇨🇳 117.50.89.245

🇨🇳 115.236.53.198

🇨🇳 115.190.150.8

🇨🇳 106.75.224.165

🇸🇬 104.233.38.97

🇺🇸 91.230.168.139

🇮🇳 49.207.248.152