AbuseIPDB » 20.122.1.236

20.122.1.236 was found in our database!

This IP was reported 232 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.122.1.236

Whois 20.122.1.236

IP Abuse Reports for 20.122.1.236:

This IP address has been reported a total of 232 times from 102 distinct sources. 20.122.1.236 was first reported on March 24th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
John Critchley	25 Jun 2022	$f2bV_matches	Brute-Force Web App Attack
John Critchley	16 Jun 2022	$f2bV_matches	Brute-Force Web App Attack
John Critchley	14 Jun 2022	$f2bV_matches	Brute-Force Web App Attack
Little Iguana	08 Jun 2022	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
John Critchley	03 Jun 2022	$f2bV_matches	Brute-Force Web App Attack
John Critchley	01 Jun 2022	$f2bV_matches	Brute-Force Web App Attack
percboris	31 May 2022	2022-05-29 20:35:55,985 fail2ban.actions [700]: NOTICE [malwarenetworks] Ban 20.122.1.236<br ... show more2022-05-29 20:35:55,985 fail2ban.actions [700]: NOTICE [malwarenetworks] Ban 20.122.1.236 2022-05-29 20:35:57,058 fail2ban.actions [700]: NOTICE [apache-custom] Ban 20.122.1.236 2022-05-31 13:07:09,844 fail2ban.actions [700]: NOTICE [apache-custom] Ban 20.122.1.236 ... show less	Web Spam Port Scan Spoofing Brute-Force Bad Web Bot
DumaNet	30 May 2022	Web app attack attempts, scanning for vulnerability. Date: 2022 May 30. 11:27:06 Sourc ... show moreWeb app attack attempts, scanning for vulnerability. Date: 2022 May 30. 11:27:06 Source IP: 20.122.1.236 Portion of the log(s): 20.122.1.236 - [30/May/2022:11:27:05 +0200] "POST /vendor/.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 20.122.1.236 - [30/May/2022:11:27:04 +0200] "GET /vendor/.env 20.122.1.236 - [30/May/2022:11:27:04 +0200] "POST /new/.env 20.122.1.236 - [30/May/2022:11:27:04 +0200] "GET /new/.env 20.122.1.236 - [30/May/2022:11:27:03 +0200] "POST /library/.env 20.122.1.236 - [30/May/2022:11:27:03 +0200] "GET /library/.env 20.122.1.236 - [30/May/2022:11:27:02 +0200] "POST /wp-admin/.env 20.122.1.236 - [30/May/2022:11:27:02 +0200] "GET /wp-admin/.env 20.122.1.236 - [30/May/2022:11:27:01 +0200] "POST /wp-content/.env 20.122.1.236 - [30/May/2022:11:27:01 +0200] "GET /wp-content/.env 20.122.1.236 - [30/May/2022:11:27:01 +0200] "POST /conf/.env 20.122.1.236 - [30/May/2022:11:27:01 +0200] "GET /conf/ show less	Web App Attack
John Critchley	30 May 2022	$f2bV_matches	Brute-Force Web App Attack
sid3windr	30 May 2022	GET /.env (Tarpitted for 16h28m2s, wasted 3.39MB)	Web App Attack
Daniel Tlamka	29 May 2022	Blacklisted HONEYDB_BAD_BOTS	Bad Web Bot
LTM	29 May 2022	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
Anonymous	28 May 2022	/wp-content/	Web App Attack
kolya	28 May 2022	[29/05/2022 01:36:09] Unauthorized connection attempt to port 80, server 98ca3b5a.	Port Scan
A D	28 May 2022	IP address blocked for multiple malicious exploit attemps	Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩