AbuseIPDB » 20.101.106.180

Check an IP Address, Domain Name, or Subnet

e.g. 3.235.176.80, microsoft.com, or 5.188.10.0/24

20.101.106.180 was found in our database!

This IP was reported 688 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	Netherlands
City	Amsterdam, Noord-Holland

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.101.106.180

Whois 20.101.106.180

IP Abuse Reports for 20.101.106.180:

This IP address has been reported a total of 688 times from 177 distinct sources. 20.101.106.180 was first reported on December 2nd 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
syokadmin	14 Feb 2022	(mod_security) mod_security (id:225170) triggered by 20.101.106.180 (NL/Netherlands/-): 1 in the las ... show more(mod_security) mod_security (id:225170) triggered by 20.101.106.180 (NL/Netherlands/-): 1 in the last 3600 secs show less	Brute-Force
iNetWorker	13 Feb 2022	trolling for resource vulnerabilities	Web App Attack
Hirte	13 Feb 2022	C1,WP GET //wp-includes/wlwmanifest.xml	Web Spam Bad Web Bot Web App Attack
UKFast Security	13 Feb 2022	Multiple web server 503 error code (Service unavailable).	Web App Attack
expandmade.com	13 Feb 2022	Wordpress - user enumeration [13/Feb/2022:12:52:09 "GET //?author=1"]	Web App Attack
Steve	13 Feb 2022	Abuse of XMLRPC	Brute-Force Web App Attack
jormaster3k	13 Feb 2022	Attack against WordPress	Web App Attack
openstrike.co.uk	13 Feb 2022	51 attacks on Wordpress URLs like: 20.101.106.180 - - [13/Feb/2022:00:21:10 +0000] "GET /domai ... show more51 attacks on Wordpress URLs like: 20.101.106.180 - - [13/Feb/2022:00:21:10 +0000] "GET /domain.cgi?id=33/sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 2298 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Web App Attack
applemooz	12 Feb 2022	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
Anonymous	12 Feb 2022	www.ktl-events.de 20.101.106.180 [13/Feb/2022:04:55:57 +0100] "POST //xmlrpc.php HTTP/1.1" 200 727 " ... show morewww.ktl-events.de 20.101.106.180 [13/Feb/2022:04:55:57 +0100] "POST //xmlrpc.php HTTP/1.1" 200 727 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" www.ktl-events.de 20.101.106.180 [13/Feb/2022:04:55:58 +0100] "POST //xmlrpc.php HTTP/1.1" 200 5970 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Web App Attack
bittiguru.fi	12 Feb 2022	20.101.106.180 - - \[13/Feb/2022:00:11:06 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5 ... show more20.101.106.180 - - \[13/Feb/2022:00:11:06 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/78.0.3904.108 Safari/537.36" "-" 20.101.106.180 - - \[13/Feb/2022:00:11:06 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/78.0.3904.108 Safari/537.36" "-" ... show less	Hacking Brute-Force Web App Attack
eminovic.ba	12 Feb 2022	Wordpress attack ...	Hacking Brute-Force Web App Attack
ManagedStack	12 Feb 2022	Unauthorized path/IP Access (full log not revealed as it contains sensitive data)	Hacking Web App Attack
Hirte	12 Feb 2022	BURG,WP GET /wp-includes/wlwmanifest.xml GET /blog/wp-includes/wlwmanifest.xml GET /web/ ... show moreBURG,WP GET /wp-includes/wlwmanifest.xml GET /blog/wp-includes/wlwmanifest.xml GET /web/wp-includes/wlwmanifest.xml show less	Web Spam Bad Web Bot Web App Attack
10dencehispahard SL	12 Feb 2022	Multiple failed login attempts on various servers [wordpress-xmlrpc]	Brute-Force Web App Attack