JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.106.231.33

20.106.231.33 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 51%: ?

51%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.106.231.33

Whois 20.106.231.33

IP Abuse Reports for 20.106.231.33:

This IP address has been reported a total of 22 times from 15 distinct sources. 20.106.231.33 was first reported on June 2nd 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇰 mutebot.net	2026-06-11 08:10:47 (2 weeks ago)	SRC=20.106.231.33, PROTO=TCP, SPT=14344, DPT=8080	Port Scan
🇺🇸 MPL	2026-06-11 08:02:40 (2 weeks ago)	tcp/8880 (2 or more attempts)	Port Scan
🇧🇷 Peregrine	2026-06-09 03:13:08 (2 weeks ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET /.git/HEAD HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:29 -0300] "GET /.git/config HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:31 -0300] "GET /.env.local HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:33 -0300] "GET /.env.backup HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:34 -0300] "GET /.env.save HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:35 -0300] "GET /wp-config.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-07 03:13:14 (3 weeks ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET /.git/HEAD HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:29 -0300] "GET /.git/config HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:31 -0300] "GET /.env.local HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:33 -0300] "GET /.env.backup HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:34 -0300] "GET /.env.save HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:35 -0300] "GET /wp-config.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-05 03:13:25 (3 weeks ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET /.git/HEAD HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:29 -0300] "GET /.git/config HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:31 -0300] "GET /.env.local HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:33 -0300] "GET /.env.backup HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:34 -0300] "GET /.env.save HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:35 -0300] "GET /wp-config.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-04 03:13:10 (3 weeks ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET /.git/HEAD HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:29 -0300] "GET /.git/config HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:31 -0300] "GET /.env.local HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:33 -0300] "GET /.env.backup HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:34 -0300] "GET /.env.save HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:35 -0300] "GET /wp-config.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇬🇧 sonot	2026-06-03 22:02:15 (3 weeks ago)	Blocked by UFW on tunneluk01 [9848/tcp] Source port: 8449 TTL: 238 Packet length: 40 TOS: 0x00 This ... show more Blocked by UFW on tunneluk01 [9848/tcp] Source port: 8449 TTL: 238 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-06-03 00:30:52 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-06-02 21:52:46 (3 weeks ago)	Reported from Nginx log analysis 11. Log: 20.106.231.33 - - [02/Jun/2026:xx:xx:xx 0200] "GET /.git/ ... show more Reported from Nginx log analysis 11. Log: 20.106.231.33 - - [02/Jun/2026:xx:xx:xx 0200] "GET /.git/HEAD HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" "-" "US United States Washington" "AS8075" "Microsoft Corporation" show less	Port Scan Brute-Force SSH
Anonymous	2026-06-02 21:16:45 (3 weeks ago)	Repeated unauthorized connection attempts to restricted service observed.	Port Scan Hacking Bad Web Bot
🇩🇪 s@ch@	2026-06-02 21:15:01 (3 weeks ago)	Jail: plesk-modsecurity \| Web application attack (Plesk ModSecurity)	Web App Attack
Anonymous	2026-06-02 21:12:08 (3 weeks ago)	20.106.231.33 - - [02/Jun/2026:18:12:08 -0300] "GET /.git/config HTTP/1.1" 404 125 "-" "Mozilla/5.0 ... show more 20.106.231.33 - - [02/Jun/2026:18:12:08 -0300] "GET /.git/config HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" ... show less	Port Scan Hacking SQL Injection Brute-Force Bad Web Bot Exploited Host
🇧🇷 Peregrine	2026-06-02 20:52:37 (3 weeks ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 20.106.231.33 - - [02/Jun/2026:17:52:28 -0300] "GET /.git/HEAD HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:29 -0300] "GET /.git/config HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:31 -0300] "GET /.env.local HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:33 -0300] "GET /.env.backup HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:34 -0300] "GET /.env.save HTTP/1.1" 404 414 - 20.106.231.33 - - [02/Jun/2026:17:52:35 -0300] "GET /wp-config.php HTTP/1.1" 404 414 show less	Bad Web Bot
Anonymous	2026-06-02 20:38:18 (3 weeks ago)	apache-auth	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 20:29:45 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.106.231.33 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.106.231.33 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 16:29:38.308025 2026] [security2:error] [pid 21838:tid 21838] [client 20.106.231.33:6890] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.233"] [uri "/.git/HEAD"] [unique_id "ah89Mu3BnDN5aPpwcZgB1wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.224.27

🇱🇹 62.60.130.219

🇧🇷 45.205.1.42

🇺🇸 35.175.245.189

🇧🇷 205.210.31.142

🇺🇸 192.3.145.26

🇨🇳 182.61.35.204

🇩🇪 167.94.146.70

🇮🇩 163.7.14.251

🇺🇸 162.216.149.196

🇯🇵 152.32.202.250

🇵🇰 103.166.150.146

🇸🇮 102.220.160.39

🇱🇹 91.224.92.82

🇺🇸 65.49.20.111

🇺🇸 47.251.121.130

🇳🇱 45.148.10.141

🇳🇱 45.148.10.121

🇪🇬 41.35.200.31

🇺🇸 2607:f8b0:4004:1001::12a