AbuseIPDB » 20.101.106.180

Check an IP Address, Domain Name, or Subnet

e.g. 3.236.234.223, microsoft.com, or 5.188.10.0/24

20.101.106.180 was found in our database!

This IP was reported 688 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	Netherlands
City	Amsterdam, Noord-Holland

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.101.106.180

Whois 20.101.106.180

IP Abuse Reports for 20.101.106.180:

This IP address has been reported a total of 688 times from 177 distinct sources. 20.101.106.180 was first reported on December 2nd 2021, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
pusathosting.com	14 Apr 2022	ang 20.101.106.180 {beritainformasi.com} "POST /xmlrpc.php 200 20.101.106.180 {beritainformasi ... show moreang 20.101.106.180 {beritainformasi.com} "POST /xmlrpc.php 200 20.101.106.180 {beritainformasi.com} "POST /xmlrpc.php 200 20.101.106.180 {beritainformasi.com} "POST /xmlrpc.php 200 show less	Brute-Force Web App Attack
nextweb	14 Apr 2022	(mod_security) mod_security (id:210410) triggered by 20.101.106.180 (NL/Netherlands/North Holland/Am ... show more(mod_security) mod_security (id:210410) triggered by 20.101.106.180 (NL/Netherlands/North Holland/Amsterdam/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 5 in the last 3600 secs (CF_ENABLE) show less	Brute-Force
nextweb	12 Apr 2022	(mod_security) mod_security (id:210410) triggered by 20.101.106.180 (NL/Netherlands/North Holland/Am ... show more(mod_security) mod_security (id:210410) triggered by 20.101.106.180 (NL/Netherlands/North Holland/Amsterdam/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 5 in the last 3600 secs (CF_ENABLE) show less	Brute-Force
AntiBot	12 Apr 2022	[12/Apr/2022:11:23:16 +0300] GET //wp-includes/wlwmanifest.xml	Hacking Web App Attack
vfinder	12 Apr 2022	Backdrop CMS module - Request: //wp-includes/wlwmanifest.xml	Bad Web Bot Web App Attack
Major Hostility	11 Apr 2022	"GET /?author=2 HTTP/1.1" 404 "POST /xmlrpc.php HTTP/1.1" 403	Web App Attack
synotio	11 Apr 2022	15 attacks reported by wp-fail2ban in 15 minutes	Brute-Force Web App Attack
nextweb	11 Apr 2022	(mod_security) mod_security (id:210410) triggered by 20.101.106.180 (NL/Netherlands/North Holland/Am ... show more(mod_security) mod_security (id:210410) triggered by 20.101.106.180 (NL/Netherlands/North Holland/Amsterdam/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 5 in the last 3600 secs (CF_ENABLE) show less	Brute-Force
pusathosting.com	11 Apr 2022	uvcm 20.101.106.180 [11/Apr/2022:13:23:22 "-" "GET /xmlrpc.php?rsd 404 529 20.101.106.180 [11/ ... show moreuvcm 20.101.106.180 [11/Apr/2022:13:23:22 "-" "GET /xmlrpc.php?rsd 404 529 20.101.106.180 [11/Apr/2022:15:10:38 "-" "POST //xmlrpc.php 500 748 20.101.106.180 [11/Apr/2022:22:18:37 "-" "POST //xmlrpc.php 500 747 show less	Brute-Force Web App Attack
NoAbuseforU	11 Apr 2022	"HTTP Parser Attack"	Web App Attack
syokadmin	11 Apr 2022	(PERMBLOCK) 20.101.106.180 (NL/Netherlands/-) has had more than 2 temp blocks in the last 86400 secs	Brute-Force
syokadmin	11 Apr 2022	(mod_security) mod_security (id:225170) triggered by 20.101.106.180 (NL/Netherlands/-): 1 in the las ... show more(mod_security) mod_security (id:225170) triggered by 20.101.106.180 (NL/Netherlands/-): 1 in the last 3600 secs show less	Brute-Force
HJ5Ss4Ju	10 Apr 2022	Blocked by Wordfence (SID 4)	Web App Attack
syokadmin	10 Apr 2022	(CT) IP 20.101.106.180 (NL/Netherlands/-) found to have 102 connections	Brute-Force
pusathosting.com	10 Apr 2022	ang 20.101.106.180 {kronika.id} "POST /xmlrpc.php 200 20.101.106.180 {kronika.id} "POST /xmlrp ... show moreang 20.101.106.180 {kronika.id} "POST /xmlrpc.php 200 20.101.106.180 {kronika.id} "POST /xmlrpc.php 200 20.101.106.180 {kronika.id} "POST /xmlrpc.php 200 show less	Brute-Force Web App Attack