JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.25.34.34

20.25.34.34 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 71%: ?

71%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.25.34.34

Whois 20.25.34.34

IP Abuse Reports for 20.25.34.34:

This IP address has been reported a total of 20 times from 18 distinct sources. 20.25.34.34 was first reported on May 3rd 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 demonsword	2026-06-19 11:23:50 (3 days ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.binance.com:443 show less	Open Proxy Port Scan
🇷🇸 Scan	2026-06-15 00:47:21 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 ISPLtd	2026-06-14 23:28:11 (1 week ago)	Jun 14 20:28:10 20.25.34.34 TCP SPT=11474 DPT=2078 SYN Jun 14 20:28:10 20.25.34.34 TCP SPT=12556 DPT ... show more Jun 14 20:28:10 20.25.34.34 TCP SPT=11474 DPT=2078 SYN Jun 14 20:28:10 20.25.34.34 TCP SPT=12556 DPT=2096 SYN Jun 14 20:28:10 20.25.34.34 TCP SPT=12544 DPT=2077 ... show less	Port Scan
🇺🇸 MPL	2026-06-14 23:04:51 (1 week ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 Axel	2026-06-14 21:35:10 (1 week ago)	Blocked by UFW on MVI [2086/tcp] \| SPT: 12645 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2086/tcp] \| SPT: 12645 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Sandro	2026-06-14 21:32:56 (1 week ago)	Honeypot [tpot]: Empty payload (likely service probe); 2078 [1], 2086 [1], 2082 [1], 2083 [1] TCP Re ... show more Honeypot [tpot]: Empty payload (likely service probe); 2078 [1], 2086 [1], 2082 [1], 2083 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
Anonymous	2026-06-14 21:03:32 (1 week ago)	Port Scan detected from 20.25.34.34 (US/United States/-). 5 hits in the last 0 seconds	Brute-Force Port Scan
🇺🇸 TPI-Abuse	2026-06-14 20:35:25 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 20.25.34.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 20.25.34.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 16:35:20.189324 2026] [security2:error] [pid 28909:tid 28913] [client 20.25.34.34:12214] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.124"] [uri "/.git/HEAD"] [unique_id "ai8QiCdAHvVtKVk59lrK1QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 SOC Blue Team	2026-06-02 03:25:56 (2 weeks ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇺🇸 SSP	2026-06-02 00:50:02 (3 weeks ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇷🇸 Scan	2026-06-02 00:46:00 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 vincent_EUDIER	2026-06-01 22:40:01 (3 weeks ago)	SURICATA HTTP unable to match response to request	Hacking
🇺🇸 MPL	2026-06-01 21:23:50 (3 weeks ago)	tcp port scan (8 or more attempts)	Port Scan
🇹🇷 Threat.live	2026-06-01 21:20:02 (3 weeks ago)	Suspicious Connection Attempts	Brute-Force
Anonymous	2026-06-01 21:19:45 (3 weeks ago)	Hit honeypot r.	Port Scan Hacking Exploited Host

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.225.139.200

🇺🇸 205.210.31.11

🇵🇱 194.180.48.33

🇧🇷 190.89.136.160

🇮🇹 185.221.175.68

🇨🇳 183.212.153.123

🇰🇷 121.131.220.153

🇫🇷 91.231.89.187

🇺🇸 64.62.197.119

🇭🇰 58.152.111.179

🇺🇸 35.169.206.177

🇨🇦 24.84.30.89

🇺🇸 20.64.105.121

🇷🇴 2.57.121.25

🇰🇷 211.220.156.232

🇲🇾 183.171.49.144

🇵🇰 182.180.55.16

🇰🇷 152.32.139.9

🇭🇰 152.32.131.245

🇮🇳 117.216.33.31