JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.166.18.164

20.166.18.164 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇪 Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.166.18.164

Whois 20.166.18.164

IP Abuse Reports for 20.166.18.164:

This IP address has been reported a total of 13 times from 13 distinct sources. 20.166.18.164 was first reported on July 28th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 MeduzaCTI	2026-04-20 18:49:10 (1 month ago)	Indicator Report Indicator: 20.166.18.164 Reporter: HeatherM Description: Cobaltstrike C2 Found Tag ... show more Indicator Report Indicator: 20.166.18.164 Reporter: HeatherM Description: Cobaltstrike C2 Found Tags: Cobaltstrike,C2 Source: MeduzaCTI Platform Reference: https://meduzacti.com show less	Hacking
🇺🇸 RLDD	2024-07-29 02:00:01 (1 year ago)	High volume WP login attempts -cou	Brute-Force
🇦🇺 advena	2024-07-29 01:30:58 (1 year ago)	20.166.18.164 (AS8075 MICROSOFT-CORP-MSN-AS-BLOCK) was intercepted at 2024-07-29T01:27:55Z after vio ... show more 20.166.18.164 (AS8075 MICROSOFT-CORP-MSN-AS-BLOCK) was intercepted at 2024-07-29T01:27:55Z after violating WAF directive: 7deac62381044a1a91c2dd4a4d048ece. Pre-cautionary/corrective action applied: managed_challenge. show less	Web Spam Hacking Brute-Force Web App Attack
Anonymous	2024-07-29 00:10:36 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇲🇾 Rizzy	2024-07-29 00:03:24 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 hostseries	2024-07-28 23:37:11 (1 year ago)	Trigger: LF_MODSEC	Brute-Force
🇩🇪 MarkGGN	2024-07-28 23:07:02 (1 year ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Hacking Web App Attack
🇬🇧 Apache	2024-07-28 21:55:35 (1 year ago)	(mod_security) mod_security (id:20000010) triggered by 20.166.18.164 (IE/Ireland/-): 5 in the last 3 ... show more (mod_security) mod_security (id:20000010) triggered by 20.166.18.164 (IE/Ireland/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
Anonymous	2024-07-28 20:19:00 (1 year ago)	suspicious behavior	Brute-Force Web App Attack
Anonymous	2024-07-28 19:30:36 (1 year ago)	(mod_security) mod_security triggered on hostname [redacted] 20.166.18.164 (IE/Ireland/-)	SQL Injection
🇺🇸 mnsf	2024-07-28 19:10:15 (1 year ago)	Too many Status 40X (358) Scanning/Probing (32) Request Overload (817)	Brute-Force Web App Attack
🇧🇪 cmbplf	2024-07-28 16:22:15 (1 year ago)	213 requests to /.well-known/pki-validation/.php 209 requests to /.well-known/acme-challenge/. ... show more 213 requests to /.well-known/pki-validation/.php 209 requests to /.well-known/acme-challenge/.php show less	Brute-Force Bad Web Bot
🇺🇸 WeekendWeb	2024-07-28 16:20:39 (1 year ago)	Wordpress Vunerability attack	Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.249.115.101

🇻🇳 113.177.27.200

🇷🇺 77.37.162.117

🇱🇹 45.227.254.170

🇳🇱 45.148.10.141

🇺🇸 2604:a880:400:d1:0:4:8bf5:1001

🇸🇬 101.47.158.137

🇩🇪 89.163.206.178

🇩🇪 82.198.228.166

🇨🇳 60.208.125.156

🇧🇪 35.187.13.22

🇳🇱 20.190.160.65

🇿🇦 20.87.219.67

10.10.163.71

🇺🇸 146.88.241.35

🇨🇳 115.190.52.176

🇨🇳 60.16.212.43

🇷🇺 5.44.169.107

🇩🇪 2a01:4f8:120:735d::2

🇮🇳 2409:40e3:1f1:818c:7d13:3cbd:c901:a891