JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.106.183.50

20.106.183.50 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 78%: ?

78%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.106.183.50

Whois 20.106.183.50

IP Abuse Reports for 20.106.183.50:

This IP address has been reported a total of 15 times from 14 distinct sources. 20.106.183.50 was first reported on June 9th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-06-17 06:50:11 (2 days ago)	Suspicious Connection Attempts	Brute-Force
🇫🇷 pm33	2026-06-16 09:18:15 (2 days ago)	Unauthorized connections HTTP 403	Web App Attack
🇺🇸 Axel	2026-06-16 09:16:21 (2 days ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 35843 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 35843 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2026-06-16 08:53:13 (2 days ago)	FW-PortScan: Traffic Blocked srcport=35843 dstport=2096	Port Scan
Anonymous	2026-06-16 08:25:33 (2 days ago)	Port Scan	Port Scan
🇺🇸 cwytech	2026-06-16 08:07:17 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
Anonymous	2026-06-16 06:01:47 (3 days ago)	Jun 16 02:01:47 localhost kernel: [109934996.456240] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 16 02:01:47 localhost kernel: [109934996.456240] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=20.106.183.50 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=42 ID=43290 DF PROTO=TCP SPT=35777 DPT=2078 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 16 02:01:47 localhost kernel: [109934996.456265] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=20.106.183.50 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=42 ID=43290 DF PROTO=TCP SPT=35777 DPT=2078 SEQ=3273074530 ACK=0 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405A00402080A25C556B7000000000103030A) Jun 16 02:01:47 localhost kernel: [109934996.461281] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=20.106.183.50 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=46 ID=58638 DF PROTO=TCP SPT=35778 DPT=2086 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 16 02:01:47 localhost kernel: [109934996.462645] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0 show less	Port Scan
🇺🇸 RAP	2026-06-09 22:13:55 (1 week ago)	2026-06-09 22:13:55 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇨🇭 Kepler-1649c	2026-06-09 22:05:14 (1 week ago)	Detected Attack: HTPasswd.Access	Hacking
🇺🇸 TPI-Abuse	2026-06-09 21:47:43 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 20.106.183.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.106.183.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 17:47:36.266652 2026] [security2:error] [pid 12767:tid 12767] [client 20.106.183.50:34841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.214"] [uri "/.git/HEAD"] [unique_id "aiiJ-LvLK0pha_DqpqrenAAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 clapper	2026-06-09 21:34:15 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 20.106.183.50 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:949110) triggered by 20.106.183.50 (US/United States/-): 5 in the last 600 secs; ID: rub show less	Brute-Force Bad Web Bot
🇺🇸 RAP	2026-06-09 20:22:14 (1 week ago)	2026-06-09 20:22:14 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇩🇪 jeannelboutique	2026-06-09 19:54:09 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 20.106.183.50 (US/United States/-)	SQL Injection
🇫🇷 sbocquet	2026-06-09 17:37:59 (1 week ago)	Port 443 scanned from 20.106.183.50:34248.	Port Scan
Anonymous	2026-06-09 17:22:46 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 130.12.180.196

🇯🇵 8.216.13.201

🇩🇪 8.211.46.182

🇺🇸 216.73.216.143

🇲🇿 196.28.226.66

🇧🇷 187.17.224.139

🇺🇸 167.148.85.83

🇮🇩 157.66.56.155

🇺🇸 147.185.132.80

🇮🇳 103.182.132.154

🇳🇬 102.88.137.145

🇬🇧 92.207.4.157

🇱🇹 77.90.185.80

🇩🇪 65.111.26.131

🇳🇱 45.148.10.147

🇺🇸 23.95.20.168

🇺🇸 20.169.107.188

🇺🇸 18.221.179.104

🇳🇱 193.39.208.26

🇻🇳 160.187.146.79