JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.243.179.13

20.243.179.13 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 55%: ?

55%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.243.179.13

Whois 20.243.179.13

IP Abuse Reports for 20.243.179.13:

This IP address has been reported a total of 9 times from 9 distinct sources. 20.243.179.13 was first reported on June 27th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 CTK	2026-06-28 18:01:00 (3 hours ago)	Customer Site (Grieskirchen FP)	Brute-Force
🇨🇭 SOC [GOLINE SA]	2026-06-28 11:59:06 (9 hours ago)	[RoutePulse \| 2026-06-28T11:59:05Z] ATTACK: Port Scan Horizontal (port 5985) TARGET: 4 subnets: 185. ... show more [RoutePulse \| 2026-06-28T11:59:05Z] ATTACK: Port Scan Horizontal (port 5985) TARGET: 4 subnets: 185.54.81.0/24, 185.54.83.0/24, 185.54.80.0/24 SOURCE: 20.243.179.13 EVIDENCE: severity=warning · 1026 flows · 102 KB · 1024 distinct targets · port 5985 MITRE: T1018 Remote System Discovery, T1046 Network Service Scanning DETECTION: sFlow/IPFIX flow analysis + 14-detector ML stack (6-model weighted ensemble) + threat-intel correlation ACTION: Pre-blackhole intelligence report (live monitoring continues) show less	Port Scan
🇩🇪 SMi-Web	2026-06-28 10:05:26 (11 hours ago)	Blocked by firewall on hugin [5985/tcp] \| Rule: UFW \| SPT: 45385 \| TTL: 114 \| LEN: 52 \| TOS: 0x02 • ... show more Blocked by firewall on hugin [5985/tcp] \| Rule: UFW \| SPT: 45385 \| TTL: 114 \| LEN: 52 \| TOS: 0x02 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 Hiigara	2026-06-28 10:00:38 (11 hours ago)	connection attempt : 20.243.179.13 on port : tcp/5985 (WinRM HTTP)	Port Scan
🇳🇱 Yachiyo Runami	2026-06-27 22:08:10 (23 hours ago)	Port Scan on Honeypot \| Ports: 3389/RDP \| Proto: TCP(1) \| Flags: all SYN \| TTL: 105 \| Len: 52B \| Win ... show more Port Scan on Honeypot \| Ports: 3389/RDP \| Proto: TCP(1) \| Flags: all SYN \| TTL: 105 \| Len: 52B \| Win: 64240(1) \| F2B/ufw-honeypot@2026-06-27T22:08:10Z show less	Port Scan Hacking
🇩🇪 Admins@FBN	2026-06-27 18:55:39 (1 day ago)	IPS:drop <match> dstport=3389	Brute-Force Exploited Host
🇩🇪 iNetWorker	2026-06-27 18:52:44 (1 day ago)	trying to access non-authorized port	Port Scan
🇩🇪 Mailguard-FRD	2026-06-27 18:38:51 (1 day ago)	1782585530 - 06/27/2026 20:38:50 Host: 20.243.179.13/20.243.179.13 Port: 3389 TCP Blocked ...	Port Scan
🇺🇸 [email protected]	2026-06-27 14:58:57 (1 day ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.233.78.232

🇧🇷 186.220.102.58

🇨🇳 182.61.14.89

🇳🇱 88.210.63.69

🇧🇬 79.124.56.146

🇺🇸 45.131.194.201

🇮🇳 43.224.136.18

🇨🇳 1.28.103.42

🇺🇸 203.88.119.100

🇨🇱 186.10.86.130

🇺🇸 143.42.173.101

🇨🇳 116.233.92.89

🇫🇷 82.102.18.116

🇱🇻 81.30.98.144

🇨🇳 47.113.100.24

🇬🇧 213.166.84.55

🇺🇸 207.90.244.26

🇺🇸 206.81.14.205

🇺🇸 147.185.132.213

🇨🇳 120.244.0.177