JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.196.208.72

20.196.208.72 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.196.208.72

Whois 20.196.208.72

IP Abuse Reports for 20.196.208.72:

This IP address has been reported a total of 19 times from 13 distinct sources. 20.196.208.72 was first reported on August 17th 2022, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2022-08-27 01:06:02 (3 years ago)	57 attacks on PHP URLs: 20.196.208.72 - - [27/Aug/2022:01:43:51 +0100] "GET /haxor.php HTTP/1.1" 404 ... show more 57 attacks on PHP URLs: 20.196.208.72 - - [27/Aug/2022:01:43:51 +0100] "GET /haxor.php HTTP/1.1" 404 1120 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" show less	Web App Attack
🇬🇧 findlab	2022-08-26 03:16:21 (3 years ago)	Backdrop CMS module - Request: /x.php	Bad Web Bot Web App Attack
🇬🇧 yvoictra	2022-08-26 02:10:39 (3 years ago)	20.196.208.72 - - [26/Aug/2022:08:10:03 +0200] "GET /shell4.php HTTP/1.1" 404 162 "https://www.googl ... show more 20.196.208.72 - - [26/Aug/2022:08:10:03 +0200] "GET /shell4.php HTTP/1.1" 404 162 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 20.196.208.72 - - [26/Aug/2022:08:10:05 +0200] "GET /ups.php HTTP/1.1" 404 162 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 20.196.208.72 - - [26/Aug/2022:08:10:07 +0200] "GET /ru.php HTTP/1.1" 404 162 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 20.196.208.72 - - [26/Aug/2022:08:10:09 +0200] "GET /if.php HTTP/1.1" 404 162 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 20.196.208.72 - - [26/Aug/2022:08:10:11 +0200] "GET /vuln.php HTTP/1.1" 404 162 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 20.196.208.72 - - [26/Aug/2022:08:10:12 +0200] "GET /fw.php HTTP/1.1" 404 162 "https://www.google. ... show less	Brute-Force Web App Attack
🇧🇷 AC - Team	2022-08-25 19:48:36 (3 years ago)	20.196.208.72 - - [25/Aug/2022:20:48:34 -0300] "GET /ups.php HTTP/1.1" 404 20117 "https://www.google ... show more 20.196.208.72 - - [25/Aug/2022:20:48:34 -0300] "GET /ups.php HTTP/1.1" 404 20117 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Exploited Host Web App Attack
🇧🇷 AC - Team	2022-08-25 08:45:21 (3 years ago)	20.196.208.72 - - [25/Aug/2022:09:45:21 -0300] "GET /ups.php HTTP/1.1" 301 584 "https://www.google.c ... show more 20.196.208.72 - - [25/Aug/2022:09:45:21 -0300] "GET /ups.php HTTP/1.1" 301 584 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Exploited Host Web App Attack
🇸🇪 Lemmy	2022-08-25 06:52:07 (3 years ago)	apache-noscript	Web App Attack
🇨🇦 Mediashaker	2022-08-25 03:26:46 (3 years ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 20.196.208.72 (KR/South ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 20.196.208.72 (KR/South Korea/-) show less	Port Scan
🇧🇷 AC - Team	2022-08-24 18:02:19 (3 years ago)	20.196.208.72 - - [24/Aug/2022:19:02:18 -0300] "GET /ups.php HTTP/1.1" 301 604 "https://www.google.c ... show more 20.196.208.72 - - [24/Aug/2022:19:02:18 -0300] "GET /ups.php HTTP/1.1" 301 604 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Exploited Host Web App Attack
🇨🇭 zynex	2022-08-20 23:01:04 (3 years ago)	URL Probing: /ups.php	Web App Attack
🇺🇸 Paul Riedesel	2022-08-20 10:50:52 (3 years ago)	many repeated 404 errors which occur in a relatively short space of time and from the same IP addres ... show more many repeated 404 errors which occur in a relatively short space of time and from the same IP address which are all attempting to access a variety of non-existent page URLs. show less	Brute-Force
🇧🇪 taivas.nl	2022-08-20 01:32:03 (3 years ago)	Wordpress_Attack	Web App Attack
🇪🇸 10dencehispahard SL	2022-08-19 01:19:06 (3 years ago)	Abusive use detected	Brute-Force
Anonymous	2022-08-18 19:07:17 (3 years ago)	Hacking activity detected	Hacking Brute-Force
🇧🇪 Ivo Vynckier	2022-08-18 11:03:34 (3 years ago)	Brute-force PHP attack. Obscene amount of requests.	Brute-Force Web App Attack
🇧🇷 AC - Team	2022-08-18 04:34:42 (3 years ago)	20.196.208.72 - - [18/Aug/2022:05:34:48 -0300] "GET /ups.php HTTP/1.1" 301 590 "https://www.google.c ... show more 20.196.208.72 - - [18/Aug/2022:05:34:48 -0300] "GET /ups.php HTTP/1.1" 301 590 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Exploited Host Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.4.156.254

🇮🇶 185.244.155.166

🇦🇱 185.80.226.189

🇳🇱 91.92.42.61

🇫🇷 85.204.70.96

🇺🇸 68.237.32.186

🇳🇱 68.183.12.160

🇺🇸 216.8.222.67

🇺🇬 196.0.34.106

🇨🇦 192.40.185.77

🇺🇸 185.198.240.72

🇪🇸 185.9.193.111

🇮🇳 117.211.15.93

🇮🇩 110.232.64.169

🇨🇦 64.29.18.48

🇨🇦 64.29.18.41

🇺🇿 31.148.160.42

🇮🇳 163.223.254.67

🇺🇸 146.190.112.200

🇦🇱 141.98.143.13