JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.44.177.173

20.44.177.173 was found in our database!

This IP was reported 1,807 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.44.177.173

Whois 20.44.177.173

IP Abuse Reports for 20.44.177.173:

This IP address has been reported a total of 1,807 times from 393 distinct sources. 20.44.177.173 was first reported on April 27th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 dtorrer	2026-04-28 10:58:22 (1 month ago)	General vulnerability scan.	Port Scan
🇺🇸 antlac1	2026-04-28 10:15:30 (1 month ago)	crowdsecurity/http-wordpress-scan	Brute-Force Web App Attack
Anonymous	2026-04-28 10:14:15 (1 month ago)	20.44.177.173 - - [28/Apr/2026:12:13:47 +0200] "GET /1.php HTTP/1.1" 404 32749 20.44.177.173 - - [28 ... show more 20.44.177.173 - - [28/Apr/2026:12:13:47 +0200] "GET /1.php HTTP/1.1" 404 32749 20.44.177.173 - - [28/Apr/2026:12:13:50 +0200] "GET /wp-content/uploads/2024/ HTTP/1.1" 404 30506 20.44.177.173 - - [28/Apr/2026:12:13:52 +0200] "GET /wp-corn-sample.php HTTP/1.1" 404 29143 20.44.177.173 - - [28/Apr/2026:12:13:56 +0200] "GET /server.php HTTP/1.1" 404 29144 20.44.177.173 - - [28/Apr/2026:12:13:58 +0200] "GET /wso.php HTTP/1.1" 404 29146 20.44.177.173 - - [28/Apr/2026:12:14:00 +0200] "GET /wp-file.php HTTP/1.1" 404 29145 20.44.177.173 - - [28/Apr/2026:12:14:03 +0200] "GET /adminfuns.php HTTP/1.1" 404 29144 20.44.177.173 - - [28/Apr/2026:12:14:07 +0200] "GET /wp-admin.php HTTP/1.1" 404 29144 20.44.177.173 - - [28/Apr/2026:12:14:09 +0200] "GET /wp-content/themes/admin.php HTTP/1.1" 404 29144 20.44.177.173 - - [28/Apr/2026:12:14:11 +0200] "GET /xmrlpc.php HTTP/1.1" 404 29146 ... show less	Web Spam Web App Attack
🇦🇺 paulshipley.com.au	2026-04-28 10:08:22 (1 month ago)	valueaddedpromotions.com.au:443 20.44.177.173 - - [28/Apr/2026:20:07:36 +1000] "GET /1.php HTTP/1.1" ... show more valueaddedpromotions.com.au:443 20.44.177.173 - - [28/Apr/2026:20:07:36 +1000] "GET /1.php HTTP/1.1" 404 161270 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" valueaddedpromotions.com.au:443 20.44.177.173 - - [28/Apr/2026:20:07:38 +1000] "GET /wp-corn-sample.php HTTP/1.1" 404 158289 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" valueaddedpromotions.com.au:443 20.44.177.173 - - [28/Apr/2026:20:07:41 +1000] "GET /server.php HTTP/1.1" 404 158281 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" valueaddedpromotions.com.au:443 20.44.177.173 - - [28/Apr/2026:20:07:43 +1000] "GET /wp-includes/Requests/library/ HTTP/1.1" 403 785 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" valueaddedpromotions.com.au:443 20.44.177 ... show less	Web App Attack
🇳🇱 CryptoYakari	2026-04-28 10:03:05 (1 month ago)	[Tue Apr 28 13:03:01.554187 2026] [proxy_fcgi:error] [pid 871443:tid 871451] [client 20.44.177.173:0 ... show more [Tue Apr 28 13:03:01.554187 2026] [proxy_fcgi:error] [pid 871443:tid 871451] [client 20.44.177.173:0] AH01071: Got error 'Primary script unknown' [Tue Apr 28 13:03:01.834413 2026] [proxy_fcgi:error] [pid 871443:tid 871492] [client 20.44.177.173:0] AH01071: Got error 'Primary script unknown' [Tue Apr 28 13:03:02.106733 2026] [proxy_fcgi:error] [pid 871443:tid 871465] [client 20.44.177.173:0] AH01071: Got error 'Primary script unknown' ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇺🇸 mashamal	2026-04-28 09:51:20 (1 month ago)	Vulnerability Probe ...	Web App Attack
🇫🇮 Christopher Hughes	2026-04-28 09:05:49 (1 month ago)	[Tue Apr 28 10:05:47.496615 2026] [proxy_fcgi:error] [pid 2723803:tid 140446118417984] [client 20.44 ... show more [Tue Apr 28 10:05:47.496615 2026] [proxy_fcgi:error] [pid 2723803:tid 140446118417984] [client 20.44.177.173:15556] AH01071: Got error 'Primary script unknown' [Tue Apr 28 10:05:47.760035 2026] [proxy_fcgi:error] [pid 2723803:tid 140446151988800] [client 20.44.177.173:15556] AH01071: Got error 'Primary script unknown' [Tue Apr 28 10:05:48.023738 2026] [proxy_fcgi:error] [pid 2723803:tid 140447523268160] [client 20.44.177.173:15556] AH01071: Got error 'Primary script unknown' [Tue Apr 28 10:05:48.287196 2026] [proxy_fcgi:error] [pid 2723803:tid 140447284446784] [client 20.44.177.173:15556] AH01071: Got error 'Primary script unknown' [Tue Apr 28 10:05:48.557298 2026] [proxy_fcgi:error] [pid 2723803:tid 140446160381504] [client 20.44.177.173:15556] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇬🇧 Steve	2026-04-28 08:53:07 (1 month ago)	SQL Injection Attempts	Brute-Force SQL Injection
🇺🇸 brightenfield	2026-04-28 08:22:55 (1 month ago)	Web App Attack	Web App Attack
🇹🇭 thaizone.com	2026-04-28 08:09:10 (1 month ago)	Hacking attempts against websites (D1) #2	Web App Attack Hacking
🇬🇧 Smish	2026-04-28 07:41:24 (1 month ago)	HONEYPOT HIT --> Fail2ban time=1777362082 log=2026-04-28T08:41:22+01:00 ip=20.44.177.173 host=as2106 ... show more HONEYPOT HIT --> Fail2ban time=1777362082 log=2026-04-28T08:41:22+01:00 ip=20.44.177.173 host=as210667.net method=GET uri="/wp-admin/js/index.php" status=404 ua="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ref="-" rid=929925cc336a9429d089225b8f9cf791 show less	Web App Attack
🇺🇸 n2nguyenn2nguyen	2026-04-28 07:33:52 (1 month ago)	Blocked by YFC Security on https://fencingforward.com — type: rapid_scan_attempts	Web App Attack
🇫🇷 solution.it	2026-04-28 07:32:39 (1 month ago)	[Tue Apr 28 09:32:38.486337 2026] [php7:error] [pid 3256532:tid 3256532] [client 20.44.177.173:7142] ... show more [Tue Apr 28 09:32:38.486337 2026] [php7:error] [pid 3256532:tid 3256532] [client 20.44.177.173:7142] script '/var/www/html/six.solution.it/admin.php' not found or unable to stat show less	Web App Attack
🇳🇱 ParaBug	2026-04-28 07:18:12 (1 month ago)	20.44.177.173 - - [28/Apr/2026:09:18:11 +0200] "GET /admin.php HTTP/1.1" 403 3072 "-" "Mozilla/5.0 ( ... show more 20.44.177.173 - - [28/Apr/2026:09:18:11 +0200] "GET /admin.php HTTP/1.1" 403 3072 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Phishing Brute-Force Web App Attack
🇦🇺 2000cn.com.au	2026-04-28 06:47:12 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking

Showing 1636 to 1650 of 1807 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 194.12.78.83

🇧🇴 181.188.176.242

🇵🇹 176.79.103.149

🇺🇸 172.236.127.133

🇺🇸 172.70.126.216

🇺🇸 165.154.235.9

🇫🇮 147.185.133.193

🇫🇮 147.185.133.85

🇵🇱 134.112.56.47

🇺🇸 104.22.20.228

🇺🇸 96.127.152.236

🇺🇸 65.49.1.186

🇨🇦 16.54.222.2

🇨🇳 8.152.209.0

🇱🇰 220.247.224.226

🇷🇺 188.113.168.133

🇳🇱 185.136.15.12

🇨🇳 183.230.141.155

🇫🇷 145.239.65.226

🇨🇳 121.26.28.26