AbuseIPDB » 20.161.75.217

20.161.75.217 was found in our database!

This IP was reported 450 times. Confidence of Abuse is 51%: ?

51%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 20.161.75.217

Whois 20.161.75.217

IP Abuse Reports for 20.161.75.217:

This IP address has been reported a total of 450 times from 20 distinct sources. 20.161.75.217 was first reported on May 14th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
hermawan	2025-05-17 02:07:12 (1 day ago)	[Sat May 17 09:04:26.007598 2025] [security2:error] [pid 6023:tid 140057518167744] [client 20.161.75 ... show more[Sat May 17 09:04:26.007598 2025] [security2:error] [pid 6023:tid 140057518167744] [client 20.161.75.217:32353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aCfuqSKjrVJeTUu7w625-AAArho"] [staklim-malang.info] [staklim-malang.info] top=[6050] [8M10UdNrgis] [aCfuqSKjrVJeTUu7w625-AAArho] keep_alive=[1] [2025-05-17 09:04:26.007604] [R:aCfuqSKjrVJeTUu7w625-AAArho] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot' Host:'stakli ... show less	Hacking Web App Attack
Anonymous	2025-05-16 08:50:43 (2 days ago)	Action: Block, Reason: DDOS attack detected	DDoS Attack
Cloudkul Cloudkul	2025-05-16 04:24:44 (2 days ago)	Attempted Not Found (404 status code) requests on our application, more than 30% of their total requ ... show moreAttempted Not Found (404 status code) requests on our application, more than 30% of their total requests. show less	Brute-Force Web App Attack
hermawan	2025-05-16 00:55:07 (2 days ago)	[Fri May 16 07:45:29.634887 2025] [security2:error] [pid 95117:tid 140682375243456] [client 20.161.7 ... show more[Fri May 16 07:45:29.634887 2025] [security2:error] [pid 95117:tid 140682375243456] [client 20.161.75.217:49812] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /b/bulanansurabaya.pdf HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/bulanansurabaya.pdf"] [unique_id "aCaKqUjQoe-kv5egoSFBxAAA5wo"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[95128] [HBxPGe6vRI8] [aCaKqUjQoe-kv5egoSFBxAAA5wo] keep_alive=[1] [2025-05-16 07:45:29.634892] [R:aCaKqUjQoe-kv5egoSFBxAAA5wo] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0 ... show less	Hacking Web App Attack
Anonymous	2025-05-14 11:34:11 (4 days ago)	Action: Block, Reason: DDOS attack detected	DDoS Attack
MAGIC	2025-05-14 09:03:37 (4 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
hermawan	2025-05-14 03:04:26 (4 days ago)	[Wed May 14 08:35:27.972163 2025] [security2:error] [pid 418486:tid 139992917427904] [client 20.161. ... show more[Wed May 14 08:35:27.972163 2025] [security2:error] [pid 418486:tid 139992917427904] [client 20.161.75.217:43453] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561856-prediksi-bulanan-curah-hujan-bulan-mei-tahun-2025-update-dari-analisis-bulan-februari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561856-prediksi-bulanan-curah-hujan-bulan-mei-tahun-2025-update-dari-analisis-bula ... show less	Hacking Web App Attack
hermawan	2025-05-13 10:52:15 (5 days ago)	[Tue May 13 17:48:13.200394 2025] [security2:error] [pid 4198:tid 139997944358592] [client 20.161.75 ... show more[Tue May 13 17:48:13.200394 2025] [security2:error] [pid 4198:tid 139997944358592] [client 20.161.75.217:37608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561857-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bulan-februari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-bulanan/curah-hujan/3-bulan-ke-depan/555561857-prediksi-bulanan-curah-hujan-bulan-juni-tahun-2025-update-dari-analisis-bula ... show less	Hacking Web App Attack
hermawan	2025-05-13 05:19:40 (5 days ago)	[Tue May 13 12:02:24.020817 2025] [security2:error] [pid 69051:tid 140046820685504] [client 20.161.7 ... show more[Tue May 13 12:02:24.020817 2025] [security2:error] [pid 69051:tid 140046820685504] [client 20.161.75.217:46739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-of-all-tags/berita HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-of-all-tags/berita"] [unique_id "aCLSYMuHKurGHtEHrtqvcQAAagQ"] [staklim-malang.info] [staklim-malang.info] top=[69056] [eqmNViVHim0] [aCLSYMuHKurGHtEHrtqvcQAAagQ] keep_alive=[1] [2025-05-13 12:02:24.020831] [R:aCLSYMuHKurGHtEHrtqvcQAAagQ] UA:'Mozilla/5.0 AppleWebKit/537.36 (K ... show less	Hacking Web App Attack
Anonymous	2025-05-12 19:26:36 (5 days ago)	Action: Block, Reason: DDOS attack detected	DDoS Attack
hermawan	2025-05-12 12:06:13 (6 days ago)	[Mon May 12 18:29:22.525282 2025] [security2:error] [pid 29920:tid 140134018504384] [client 20.161.7 ... show more[Mon May 12 18:29:22.525282 2025] [security2:error] [pid 29920:tid 140134018504384] [client 20.161.75.217:17997] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "aCHbknvU8hjgHwcQ3ngZEwABjSo"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[29963] [T7ykoPYGWe4] [aCHbknvU8hjgHwcQ3ngZEwABjSo] keep_alive=[1] [2025-05-12 18:29:22.525288] [R:aCHbknvU8hjgHwcQ3ngZEwABjSo] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/ ... show less	Hacking Web App Attack
hermawan	2025-05-12 01:35:37 (6 days ago)	[Mon May 12 08:22:07.754091 2025] [security2:error] [pid 1599961:tid 139771338794688] [client 20.161 ... show more[Mon May 12 08:22:07.754091 2025] [security2:error] [pid 1599961:tid 139771338794688] [client 20.161.75.217:1281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561746-prakiraan-bulanan-curah-hujan-bulan-mei-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561746-prakiraan-bulanan-curah-hujan-bulan ... show less	Hacking Web App Attack
SCHAPPY	2025-05-10 20:15:30 (1 week ago)	Bad bot identified by user agent	Bad Web Bot
hermawan	2025-05-10 14:27:22 (1 week ago)	[Sat May 10 20:20:42.140129 2025] [security2:error] [pid 563412:tid 140584375912128] [client 20.161. ... show more[Sat May 10 20:20:42.140129 2025] [security2:error] [pid 563412:tid 140584375912128] [client 20.161.75.217:14979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/component/tags/tag/269-prakiraan-curah-hujan-bulanan-di-malang HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/component/tags/tag/269-prakiraan-curah-hujan-bulanan-di-malang"] [unique_id "aB9SqnXHgARja-gJa_jaLAAAwBQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[563433] [2OsY818qd+Y] [aB9SqnXHgARja-gJa_jaLAAAwBQ] keep_alive=[1] [2025-05-10 20:20:42.140132] [R:aB9SqnXHg ... show less	Hacking Web App Attack
hermawan	2025-05-09 13:57:58 (1 week ago)	[Fri May 09 20:30:53.248081 2025] [security2:error] [pid 20199:tid 140586384344768] [client 20.161.7 ... show more[Fri May 09 20:30:53.248081 2025] [security2:error] [pid 20199:tid 140586384344768] [client 20.161.75.217:53287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-bulanan/4261-prakiraan-bulanan-untuk-6-bulan-ke-depan-di-provinsi-jawa-timur/prakiraan-bulanan-curah-hujan-untuk-6-bulan-ke-depan-di-provinsi-jawa-timur/555561127-prakiraan-bulanan-curah-hujan-di-kabupaten-kabupaten-malang-kota-malang-dan-kota-batu-untuk-6-bulan-ke-depan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/4261-prakiraan-bulanan-untuk-6-bulan-k ... show less	Hacking Web App Attack

Showing 1 to 15 of 450 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

81.30.107.199

92.118.39.97

218.92.0.232

83.222.191.10

172.70.230.62

45.84.107.33

173.249.9.142

218.92.0.252

2401:4900:7533:40bc:f33f:3771:b96:e002

20.127.155.231

103.102.230.4

58.59.233.172

80.94.95.15

185.196.220.81

83.222.191.2

218.154.201.128

193.32.162.157

45.135.232.92

193.32.162.90

51.222.253.14