JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.106.183.52

20.106.183.52 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 86%: ?

86%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.106.183.52

Whois 20.106.183.52

IP Abuse Reports for 20.106.183.52:

This IP address has been reported a total of 19 times from 18 distinct sources. 20.106.183.52 was first reported on May 30th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-05 13:47:09 (1 week ago)	tcp port scan (8 or more attempts)	Port Scan
🇩🇪 SCHAPPY	2026-06-05 13:37:40 (1 week ago)	Malicious activity from IP detected: crowdsecurity/http-sensitive-files.	Web App Attack Hacking
🇺🇸 xmission.com	2026-06-05 10:14:21 (1 week ago)	Blocked by UFW (TCP on 2087) Source port: 3269 TTL: 47 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 2087) Source port: 3269 TTL: 47 Packet length: 60 TOS: 0x00 This report (for 20.106.183.52) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-05 09:40:58 (1 week ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 MBombeck	2026-06-03 04:09:58 (1 week ago)	Fail2Ban/traefik-botsearch on ops-01.bombeck.io: banned after 5 failures	Web App Attack
🇺🇸 xmission.com	2026-06-03 03:32:28 (1 week ago)	Blocked by UFW (TCP on 2087) Source port: 10484 TTL: 50 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2087) Source port: 10484 TTL: 50 Packet length: 60 TOS: 0x00 This report (for 20.106.183.52) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2026-06-03 02:47:27 (1 week ago)	FW-PortScan: Traffic Blocked srcport=9364 dstport=2087	Port Scan
🇺🇸 TPI-Abuse	2026-06-03 02:44:27 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 20.106.183.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.106.183.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:44:19.504236 2026] [security2:error] [pid 25375:tid 25375] [client 20.106.183.52:10452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.205"] [uri "/.git/HEAD"] [unique_id "ah-VA0f0VBms3XoETm922gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 KIDOS	2026-06-03 01:57:12 (1 week ago)	CrowdSec detected malicious activity	DDoS Attack
🇫🇷 ✨	2026-06-03 01:17:12 (1 week ago)	Domain : redirect.netenergy.uk Rule : env 2026-06-03 01:16:02 217.194.210.152 GET /.env.production - ... show more Domain : redirect.netenergy.uk Rule : env 2026-06-03 01:16:02 217.194.210.152 GET /.env.production - 80 - 20.106.183.52 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15 - 217.194.210.152 404 0 2 1491 228 105 - - show less	Hacking SQL Injection
🇨🇦 DRI	2026-06-03 01:00:56 (1 week ago)	Unsolicited TCP traffic on Honeypot, srcport=9783 dstport=2083	Port Scan Hacking
🇫🇷 dynamix	2026-06-03 00:32:14 (1 week ago)	Multiple WAF Violations	Web App Attack
🇬🇧 PeravixGroup	2026-06-03 00:30:21 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇷🇸 Scan	2026-06-03 00:27:35 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.90.218.194

🇳🇱 204.76.203.219

🇺🇸 203.166.153.89

🇺🇸 198.23.200.239

🇺🇸 162.0.228.101

🇪🇸 139.47.67.189

🇵🇱 104.164.44.254

🇺🇸 64.62.156.66

🇺🇸 49.51.199.112

🇬🇧 18.134.14.114

🇷🇸 188.120.100.141

🇧🇷 187.51.208.158

🇨🇳 182.244.0.150

🇮🇳 182.95.40.26

🇻🇳 165.99.16.135

🇺🇸 162.216.150.96

🇸🇬 152.42.202.161

🇨🇳 120.233.240.39

🇮🇳 103.165.29.202

🇺🇸 66.132.172.63