JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.49.13.176

20.49.13.176 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.49.13.176

Whois 20.49.13.176

IP Abuse Reports for 20.49.13.176:

This IP address has been reported a total of 51 times from 41 distinct sources. 20.49.13.176 was first reported on July 15th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 lns.bz	2026-06-07 00:01:25 (1 day ago)	.env scanning [BY]	Web App Attack
🇺🇦 RatCommander	2026-06-06 19:52:28 (1 day ago)	CrowdSec: crowdsecurity/http-probing	Port Scan Web App Attack
🇨🇦 Blinker73	2026-06-06 19:42:13 (1 day ago)	2026-06-06T15:42 kernel: OUT= SRC=20.49.13.176 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=1431 DF PRO ... show more 2026-06-06T15:42 kernel: OUT= SRC=20.49.13.176 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=1431 DF PROTO=TCP SPT=16839 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-06T15:42 kernel: OUT= SRC=20.49.13.176 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=218 DF PROTO=TCP SPT=16849 DPT=8080 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-06T15:42 kernel: OUT= SRC=20.49.13.176 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=29767 DF PROTO=TCP SPT=16869 DPT=2083 WINDOW=64240 RES=0x00 SYN URGP= show less	Port Scan
🇹🇷 Threat.live	2026-06-06 19:25:03 (1 day ago)	Suspicious Connection Attempts	Brute-Force
🇧🇾 lns.bz	2026-06-06 19:20:53 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇮🇳 Starburst SysOp Team	2026-06-06 18:25:12 (1 day ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-bom2-2)	Hacking Bad Web Bot
🇯🇵 Kinsei Engineering Inc.	2026-06-06 17:28:55 (1 day ago)	UFW:High-frequency access to unused ports	Port Scan
🇺🇸 RAP	2026-06-06 16:30:31 (1 day ago)	2026-06-06 16:30:31 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇳🇱 lns.bz	2026-06-03 21:00:08 (4 days ago)	.env scanning [DOPP]	Web App Attack
🇺🇸 Mark--	2026-06-03 11:15:42 (4 days ago)	Unauthorized connection attempt detected port 8080	Hacking
Anonymous	2026-06-03 11:06:27 (4 days ago)	Portscan: TCP/2087, TCP/80, TCP/2083, TCP/8080, TCP/8443, TCP/2086, TCP/443	Port Scan
Anonymous	2026-06-03 08:00:00 (4 days ago)	SSH Brute-Force	DDoS Attack Port Scan Hacking Brute-Force SSH
🇳🇱 lns.bz	2026-06-03 06:45:30 (4 days ago)	Too many 404 requests [DOPP]	Web App Attack
Anonymous	2026-06-03 06:40:44 (4 days ago)	Hit honeypot r.	Port Scan Hacking Exploited Host
🇺🇸 SSP	2026-06-03 06:00:01 (4 days ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 194.5.53.35

🇮🇳 104.22.48.179

🇬🇧 31.14.254.38

🇺🇸 2604:a880:400:d1:0:4:8bf7:e001

🇺🇸 198.98.62.211

🇺🇸 185.117.225.64

🇮🇩 103.94.191.78

🇮🇹 91.80.179.109

🇹🇿 41.59.111.101

🇮🇩 180.243.254.154

🇯🇵 164.52.120.4

🇰🇷 140.245.67.111

🇲🇲 103.154.241.42

🇷🇴 92.118.39.236

🇮🇹 83.224.154.108

🇱🇹 81.30.98.225

🇷🇴 80.94.95.211

🇧🇷 34.151.216.178

🇺🇸 18.118.107.8

🇷🇴 2.57.121.25