JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.169.75.197

20.169.75.197 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 61%: ?

61%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.169.75.197

Whois 20.169.75.197

IP Abuse Reports for 20.169.75.197:

This IP address has been reported a total of 22 times from 18 distinct sources. 20.169.75.197 was first reported on March 18th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-07 17:39:33 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇺🇸 xmission.com	2026-06-07 17:36:08 (2 weeks ago)	Blocked by UFW (TCP on 80) Source port: 10346 TTL: 53 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 10346 TTL: 53 Packet length: 60 TOS: 0x00 This report (for 20.169.75.197) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 17:17:48 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.169.75.197 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.169.75.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:17:43.266956 2026] [security2:error] [pid 25820:tid 25820] [client 20.169.75.197:13436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.192"] [uri "/.git/HEAD"] [unique_id "aiWntwtUUYq07F-Wvw844QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 RAP	2026-06-07 17:12:14 (2 weeks ago)	2026-06-07 17:12:14 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-07 16:46:17 (2 weeks ago)	2026-06-07T17:46:16.680104+01:00 vps kernel: [42590939.865378] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-07T17:46:16.680104+01:00 vps kernel: [42590939.865378] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.169.75.197 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=40 ID=22777 DF PROTO=TCP SPT=10494 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇩🇪 Tamsy	2026-06-07 16:35:05 (2 weeks ago)	HTTPD - Web Application scripting attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 15:23:12 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.169.75.197 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.169.75.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 11:23:05.791966 2026] [security2:error] [pid 9474:tid 9474] [client 20.169.75.197:13366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.153"] [uri "/.git/HEAD"] [unique_id "aiWM2bMOwQDjRy2A33rCNQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 Halux	2026-06-07 14:51:29 (2 weeks ago)	20.169.75.197 Probing protected path or service	Web App Attack
🇵🇱 Wepted	2026-06-07 14:25:50 (2 weeks ago)	Port scan detected by honeypot	Port Scan Hacking
🇩🇪 XICTRON	2026-06-07 14:15:05 (2 weeks ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
Anonymous	2026-06-07 13:47:03 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /.env.local HTTP/1.1, GET /dump.sql HTTP/1.1, GET /___pr ... show more Bot / scanning and/or hacking attempts: GET /.env.local HTTP/1.1, GET /dump.sql HTTP/1.1, GET /___proxy_subdomain_whm/login/ HTTP/1.1, GET /.git/config HTTP/1.1, GET /.env HTTP/1.1, GET /.env.production HTTP/1.1, GET /wp-config.php HTTP/1.1, GET /wp-config.php.bak HTTP/1.1, GET /.env.save HTTP/1.1, GET /.aws/credentials HTTP/1.1, POST /___proxy_subdomain_whm/login/?login_only=1 HTTP/1.1, GET /backup.sql HTTP/1.1, GET /.git/HEAD HTTP/1.1, GET /phpinfo.php HTTP/1.1, GET /server-status HTTP/1.1, GET /.DS_Store HTTP/1.1, GET /actuator/env HTTP/1.1, GET /app/config/parameters.yml HTTP/1.1, GET /config.php HTTP/1.1, GET /.htpasswd HTTP/1.1, GET /.env.backup HTTP/1.1 show less	Hacking Web App Attack
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇯🇵 VXG-NET	2026-06-02 20:44:13 (3 weeks ago)	port=80, indicator_type=info-leak	Hacking
🇺🇸 LSPCCU	2026-06-02 20:12:11 (3 weeks ago)	TSEC Honeypot Network report. Threat score: 65/100. Categories: Port Scan, Hacking, Brute-Force, Web ... show more TSEC Honeypot Network report. Threat score: 65/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: ssh-telnet, cowrie. Context: 20. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇯🇵 S.O.B.A. Dev.	2026-06-02 20:12:07 (3 weeks ago)	Persistent port scanning or vulnerability scanning	Port Scan

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 209.38.120.71

🇹🇭 202.183.141.189

🇧🇼 168.167.228.123

🇨🇴 161.18.234.168

🇿🇦 102.66.181.242

🇳🇱 91.92.40.240

🇨🇦 85.217.149.71

🇸🇬 43.128.81.242

🇧🇪 198.235.24.231

🇺🇸 172.184.219.219

🇸🇬 158.178.228.72

🇨🇳 119.45.119.171

🇺🇸 66.93.12.77

🇸🇬 62.146.232.73

🇦🇺 34.40.145.110

🇩🇪 213.209.159.227

🇺🇸 195.184.76.90

🇧🇴 186.121.222.66

🇦🇷 181.165.59.13

🇺🇸 147.185.132.139