JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.168.115.113

20.168.115.113 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.168.115.113

Whois 20.168.115.113

IP Abuse Reports for 20.168.115.113:

This IP address has been reported a total of 40 times from 37 distinct sources. 20.168.115.113 was first reported on March 29th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 XICTRON	2026-06-25 11:00:07 (5 hours ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇩🇪 initsol	2026-06-25 10:31:05 (5 hours ago)	[Thu Jun 25 12:30:47.273412 2026] [php:error] [pid 3703379:tid 3703379] [client 20.168.115.113:12900 ... show more [Thu Jun 25 12:30:47.273412 2026] [php:error] [pid 3703379:tid 3703379] [client 20.168.115.113:12900] script '/var/www/html/wp-config.php' not found or unable to stat [Thu Jun 25 12:31:01.257152 2026] [php:error] [pid 3739782:tid 3739782] [client 20.168.115.113:12871] script '/var/www/html/phpinfo.php' not found or unable to stat [Thu Jun 25 12:31:05.249047 2026] [php:error] [pid 3710600:tid 3710600] [client 20.168.115.113:12876] script '/var/www/html/info.php' not found or unable to stat ... show less	Brute-Force
🇹🇭 Sawasdee	2026-06-25 09:33:05 (6 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
Anonymous	2026-06-25 08:43:41 (7 hours ago)	Port Scan	Port Scan
Anonymous	2026-06-25 07:13:13 (8 hours ago)	20.168.115.113 - - [25/Jun/2026:07:13:10 +0000] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Ma ... show more 20.168.115.113 - - [25/Jun/2026:07:13:10 +0000] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "-" 20.168.115.113 - - [25/Jun/2026:07:13:11 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" "-" 20.168.115.113 - - [25/Jun/2026:07:13:11 +0000] "GET /.git/logs/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "-" 20.168.115.113 - - [25/Jun/2026:07:13:11 +0000] "GET /.git/refs/heads/master HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" "-" 20.168.115.113 - - [25/Jun/2026:07:13:12 +0000] "GET /.git/refs/heads/main HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) Ap ... show less	Port Scan Brute-Force
🇺🇸 alecj.com	2026-06-25 07:08:36 (8 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
Anonymous	2026-06-16 21:43:51 (1 week ago)	Port Scan detected from 20.168.115.113 (US/United States/-). 5 hits in the last 20 seconds	Brute-Force Port Scan
Anonymous	2026-06-16 21:07:06 (1 week ago)	Jun 16 17:07:06 localhost kernel: [109989314.240396] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 16 17:07:06 localhost kernel: [109989314.240396] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=20.168.115.113 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=44 ID=15237 DF PROTO=TCP SPT=5631 DPT=2078 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 16 17:07:06 localhost kernel: [109989314.240413] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=20.168.115.113 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=44 ID=15237 DF PROTO=TCP SPT=5631 DPT=2078 SEQ=3222630505 ACK=0 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405A00402080A4E7D4D49000000000103030A) Jun 16 17:07:06 localhost kernel: [109989314.248529] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=20.168.115.113 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=48 ID=35855 DF PROTO=TCP SPT=5612 DPT=2083 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 16 17:07:06 localhost kernel: [109989314.248535] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0 show less	Port Scan
🇩🇪 bescared	2026-06-16 19:27:40 (1 week ago)	F2B - Malicious activity detected. Excessive port scans. -151302cd-	Port Scan
🇩🇪 ghostwarriors	2026-06-16 18:50:12 (1 week ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇯🇵 demonsword	2026-06-12 08:27:52 (1 week ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: proof.ovh.net:443 show less	Open Proxy Port Scan
🇲🇽 octageeks.com	2026-06-03 04:12:15 (3 weeks ago)	Wordpress malicious attack:[octablocked]	Web App Attack
Anonymous	2026-06-02 12:46:02 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 MarKup	2026-06-02 12:14:00 (3 weeks ago)	Multiple invalid 404 HTTP requests - Fail2Ban	Hacking Web App Attack
🇹🇷 Threat.live	2026-06-02 12:00:03 (3 weeks ago)	Suspicious Connection Attempts	Brute-Force

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.232.145.76

🇺🇸 154.26.184.99

🇭🇰 101.79.165.43

🇰🇿 95.58.255.251

🇳🇱 45.148.10.157

🇳🇱 45.148.10.141

🇸🇳 41.82.50.218

🇸🇪 31.208.220.217

🇺🇸 152.32.205.153

🇮🇹 136.234.245.165

🇨🇳 118.196.92.141

🇹🇭 118.194.250.232

🇺🇸 91.230.168.233

🇳🇱 34.178.21.247

🇬🇧 217.146.80.106

🇷🇺 194.143.151.52

🇨🇳 180.137.151.93

🇮🇳 152.56.2.100

🇺🇸 151.186.215.156

🇫🇷 45.81.243.62