JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.39.131.79

20.39.131.79 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 39%: ?

39%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.39.131.79

Whois 20.39.131.79

IP Abuse Reports for 20.39.131.79:

This IP address has been reported a total of 15 times from 13 distinct sources. 20.39.131.79 was first reported on May 19th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-25 16:31:05 (3 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇺🇸 welm	2026-05-20 05:16:21 (4 weeks ago)	(PERMBLOCK) 20.39.131.79 (CA/Canada/-) has had more than 4 temp blocks in the last 86400 secs; Ports ... show more (PERMBLOCK) 20.39.131.79 (CA/Canada/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇳🇱 EGP Abuse Dept	2026-05-20 04:15:12 (4 weeks ago)	Unsolicited connection to port 465	Port Scan Hacking
🇺🇸 DiodeDave	2026-05-20 03:53:45 (4 weeks ago)	Attempted access after blacklisting	Email Spam
🇧🇷 SvrAdmin	2026-05-20 03:33:20 (4 weeks ago)	[101] (smtpauth) Failed SMTP AUTH login from 20.39.131.79 (CA/Canada/-): 5 in the last 3600 secs; Po ... show more [101] (smtpauth) Failed SMTP AUTH login from 20.39.131.79 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-05-20 00:18:34 dovecot_login authenticator failed for H=(ADMIN) [20.39.131.79]:53822: 535 Incorrect authentication data ([email protected]) 2026-05-20 00:20:55 dovecot_login authenticator failed for H=(ADMIN) [20.39.131.79]:59616: 535 Incorrect authentication data ([email protected]) 2026-05-20 00:21:52 dovecot_login authenticator failed for H=(ADMIN) [20.39.131.79]:42766: 535 Incorrect authentication data ([email protected]) 2026-05-20 00:27:08 dovecot_login authenticator failed for H=(ADMIN) [20.39.131.79]:44844: 535 Incorrect authentication data ([email protected]) 2026-05-20 00:33:16 dovecot_login authenticator failed for H=(ADMIN) [20.39.131.79]:59232: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇺🇸 Ghost Rider	2026-05-19 18:10:25 (4 weeks ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
Anonymous	2026-05-19 17:49:43 (4 weeks ago)	(smtpauth) Failed SMTP AUTH login from 20.39.131.79 (CA/Canada/-)	Brute-Force
Anonymous	2026-05-19 16:30:25 (4 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇩🇪 BlueWire Hosting	2026-05-19 05:39:56 (4 weeks ago)	SMTP brute force attempt	Brute-Force
🇹🇭 thaizone.com	2026-05-19 05:33:58 (4 weeks ago)	Mail credential brute-force attack (SM5) #1	Email Spam Brute-Force
🇸🇪 konseptit	2026-05-19 05:22:48 (4 weeks ago)	(smtpauth) Failed SMTP AUTH login from 20.39.131.79 (CA/Canada/-)	Brute-Force
🇧🇷 SvrAdmin	2026-05-19 05:08:04 (4 weeks ago)	[138] (smtpauth) Failed SMTP AUTH login from 20.39.131.79 (CA/Canada/-): 5 in the last 3600 secs; Po ... show more [138] (smtpauth) Failed SMTP AUTH login from 20.39.131.79 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: May 19 01:19:02 cwp postfix/smtpd[1274]: warning: unknown[20.39.131.79]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 19 02:01:47 cwp postfix/smtpd[30518]: warning: unknown[20.39.131.79]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 19 02:05:42 cwp postfix/smtpd[399]: warning: unknown[20.39.131.79]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 19 02:07:05 cwp postfix/smtpd[399]: warning: unknown[20.39.131.79]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 19 02:07:59 cwp postfix/smtpd[399]: warning: unknown[20.39.131.79]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 show less	Port Scan Hacking Brute-Force Exploited Host
Anonymous	2026-05-19 05:05:32 (4 weeks ago)	Authentication failure	Brute-Force
🇧🇷 hostseries	2026-05-19 04:58:47 (4 weeks ago)	Trigger: LF_SMTPAUTH	Brute-Force
Anonymous	2026-05-19 03:20:03 (1 month ago)	BruteForce IMAP/POP3/SMTP	Brute-Force

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇩 85.120.81.241

🇺🇸 205.210.31.69

🇩🇪 150.241.77.28

🇺🇸 147.182.246.240

🇳🇱 91.92.40.11

🇺🇸 66.132.186.227

🇮🇳 43.241.65.101

🇺🇸 34.138.198.0

🇳🇴 20.251.117.149

🇺🇸 20.106.186.90

🇨🇳 221.228.10.71

🇷🇺 185.40.30.168

🇩🇪 178.27.90.142

🇬🇧 89.37.172.157

🇺🇸 66.132.186.131

🇰🇷 49.173.65.19

🇮🇳 47.15.16.112

🇬🇧 45.198.224.141

🇳🇱 45.148.10.157

🇳🇱 45.148.10.62