JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.102.47.196

20.102.47.196 was found in our database!

This IP was reported 72 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.102.47.196

Whois 20.102.47.196

IP Abuse Reports for 20.102.47.196:

This IP address has been reported a total of 72 times from 53 distinct sources. 20.102.47.196 was first reported on July 24th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-18 16:56:11 (1 day ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-18 15:34:51 (1 day ago)	20 hits, proto=tcp, ports=2077,2078,2082,2083,2086,2087,2095,2096,443,80	Port Scan Hacking
Anonymous	2026-06-18 12:32:56 (1 day ago)	Repeated unauthorized connection attempts to restricted service observed.	Port Scan Hacking Bad Web Bot
🇹🇭 Sawasdee	2026-06-18 11:24:10 (1 day ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇳🇱 Selckie	2026-06-06 19:06:53 (1 week ago)	fail2ban: NGINX unusual impact	Web App Attack
Anonymous	2026-06-01 04:59:50 (2 weeks ago)	2026-06-01T05:59:49.291017+01:00 vps kernel: [42030158.615303] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-01T05:59:49.291017+01:00 vps kernel: [42030158.615303] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.102.47.196 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=49035 DF PROTO=TCP SPT=24600 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇸🇬 drewf.ink	2026-06-01 03:59:16 (2 weeks ago)	[03:59] Port scanning. Port(s) scanned: TCP/2086, TCP/2087	Port Scan
🇨🇦 Blinker73	2026-06-01 02:46:31 (2 weeks ago)	2026-05-31T22:46 kernel: OUT= SRC=20.102.47.196 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=26929 DF P ... show more 2026-05-31T22:46 kernel: OUT= SRC=20.102.47.196 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=26929 DF PROTO=TCP SPT=24601 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-31T22:46 kernel: OUT= SRC=20.102.47.196 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=15003 DF PROTO=TCP SPT=24600 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-31T22:46 kernel: OUT= SRC=20.102.47.196 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=62063 DF PROTO=TCP SPT=24601 DPT=2082 WINDOW=64240 RES=0x00 SYN URGP= show less	Port Scan
🇩🇪 Tamsweb	2026-06-01 02:41:01 (2 weeks ago)	Unauthorized connection attempt or scan from 20.102.47.196 on port 24600 ...	Port Scan
🇩🇪 iNetWorker	2026-06-01 01:42:07 (2 weeks ago)	trying to access non-authorized port	Port Scan
🇩🇪 joschuak	2026-05-26 05:52:37 (3 weeks ago)	SSH brute force attack detected from [20.102.47.196]	SSH Brute-Force
🇩🇪 sbajic	2026-05-26 05:41:51 (3 weeks ago)	2026-05-26T05:34:24.171891+00:00 nyx sshd[2016734]: pam_unix(sshd:auth): authentication failure; log ... show more 2026-05-26T05:34:24.171891+00:00 nyx sshd[2016734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.102.47.196 2026-05-26T05:34:26.170718+00:00 nyx sshd[2016734]: Failed password for invalid user r00t from 20.102.47.196 port 16409 ssh2 2026-05-26T05:41:50.491115+00:00 nyx sshd[2016903]: Invalid user r00t from 20.102.47.196 port 16409 ... show less	Brute-Force SSH
🇩🇪 marcel-knorr.de	2026-05-26 05:39:02 (3 weeks ago)	[MK-VM6] SSH login failed	Brute-Force SSH
🇩🇪 KeksGauner	2026-05-26 05:30:51 (3 weeks ago)	2026-05-26T05:21:03.923880+00:00 NBG-VS01-WebServer sshd-session[492433]: pam_unix(sshd:auth): authe ... show more 2026-05-26T05:21:03.923880+00:00 NBG-VS01-WebServer sshd-session[492433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.102.47.196 2026-05-26T05:21:05.743701+00:00 NBG-VS01-WebServer sshd-session[492433]: Failed password for invalid user r00t from 20.102.47.196 port 16409 ssh2 2026-05-26T05:30:50.504256+00:00 NBG-VS01-WebServer sshd-session[495360]: Invalid user r00t from 20.102.47.196 port 16409 ... show less	Brute-Force SSH
🇩🇪 moretrix	2026-05-26 05:18:52 (3 weeks ago)	2026-05-26T06:35:06.751586+02:00 ieyasu.moretrix.com sshd-session[1135023]: Invalid user r00t from 2 ... show more 2026-05-26T06:35:06.751586+02:00 ieyasu.moretrix.com sshd-session[1135023]: Invalid user r00t from 20.102.47.196 port 16409 2026-05-26T07:18:50.705420+02:00 ieyasu.moretrix.com sshd-session[1137779]: Connection from 20.102.47.196 port 16409 on 176.9.64.17 port 22 rdomain "" 2026-05-26T07:18:51.283059+02:00 ieyasu.moretrix.com sshd-session[1137779]: Invalid user r00t from 20.102.47.196 port 16409 ... show less	Brute-Force SSH

Showing 1 to 15 of 72 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 194.5.82.99

🇪🇨 191.99.34.75

🇺🇸 162.216.149.127

🇫🇮 147.185.133.198

🇫🇷 91.231.89.150

🇺🇸 18.234.82.246

🇧🇷 200.241.65.251

🇩🇪 142.251.20.139

🇮🇩 103.154.77.48

🇳🇱 80.82.77.139

🇻🇪 38.61.198.90

🇮🇷 31.130.179.156

🇺🇸 174.175.75.53

🇺🇸 162.216.149.105

🇰🇷 118.194.249.72

🇳🇱 91.92.40.231

🇧🇬 78.128.112.30

🇺🇸 32.196.175.27

🇮🇳 209.38.120.71

🇧🇷 201.131.182.0