JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.206.111.203

20.206.111.203 was found in our database!

This IP was reported 180 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.206.111.203

Whois 20.206.111.203

IP Abuse Reports for 20.206.111.203:

This IP address has been reported a total of 180 times from 153 distinct sources. 20.206.111.203 was first reported on May 26th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 andreighitan	2026-06-01 00:00:00 (2 weeks ago)	Coordinated Azure webshell scanning campaign against 84.46.253.134. Active May-Jun 2026. ZAC Bayern ... show more Coordinated Azure webshell scanning campaign against 84.46.253.134. Active May-Jun 2026. ZAC Bayern ref BY0257-500359-26/8. show less	Brute-Force
🇪🇸 Gem	2026-05-29 22:11:14 (2 weeks ago)	Unauthorized web scan.	Web App Attack
🇩🇪 Holger	2026-05-29 19:18:28 (2 weeks ago)	WordPress WebAttack	Brute-Force Web App Attack
🇸🇬 fazar	2026-05-28 23:01:20 (2 weeks ago)	wp-login-scan: 3 attempts from 20.206.111.203 on node: sgp01	Exploited Host Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-27 21:59:29 (2 weeks ago)	Auto-ban: 12 malicious requests on 2026-05-26 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 12 malicious requests on 2026-05-26 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇩🇪 Holger	2026-05-27 18:34:44 (3 weeks ago)	WordPress WebAttack	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-27 18:11:36 (3 weeks ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-05-27 12:05:09 (3 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-05-27 05:13:56 (3 weeks ago)	135 attacks on PHP URLs: GET /xstelth.php HTTP/1.1	Web App Attack
🇧🇪 taivas.nl	2026-05-27 04:32:20 (3 weeks ago)	Many_bad_calls	Web App Attack
Anonymous	2026-05-27 01:41:55 (3 weeks ago)	Portscan: TCP/80 (7x)	Port Scan
🇺🇸 mw	2026-05-27 00:00:43 (3 weeks ago)	GET /wp-admin/js/ HTTP/1.1	Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-26 21:59:28 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-26	Web App Attack SSH Hacking
🇩🇪 Vegascosmetics	2026-05-26 21:51:19 (3 weeks ago)	Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned	Hacking Bad Web Bot Web App Attack
Anonymous	2026-05-26 21:13:40 (3 weeks ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack

Showing 1 to 15 of 180 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.253.31.143

🇧🇷 205.210.31.169

🇺🇸 195.184.76.137

🇵🇪 161.132.39.169

🇺🇸 142.147.177.245

🇩🇪 130.61.56.49

🇰🇷 113.131.200.26

🇨🇳 112.8.100.57

🇺🇸 98.80.207.97

🇺🇸 85.254.65.206

🇹🇼 198.235.24.84

🇲🇾 195.86.192.66

🇧🇷 191.210.73.33

🇳🇱 176.65.139.114

🇻🇳 165.99.16.135

🇫🇮 147.185.133.214

🇺🇸 137.184.217.238

🇨🇳 118.145.238.60

🇷🇺 95.25.184.127

🇨🇿 85.163.141.203