JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.199.161.175

20.199.161.175 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.199.161.175

Whois 20.199.161.175

IP Abuse Reports for 20.199.161.175:

This IP address has been reported a total of 126 times from 75 distinct sources. 20.199.161.175 was first reported on May 14th 2026, and the most recent report was 53 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 securejdprop	2026-06-04 03:00:07 (53 minutes ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇦🇺 2000cn.com.au	2026-06-04 00:50:38 (3 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 big-cloud.nl	2026-06-04 00:06:08 (3 hours ago)	Try to access /.env	Web App Attack
Anonymous	2026-06-03 19:07:53 (8 hours ago)	20.199.161.175 - - [04/Jun/2026:03:07:51 +0800] "GET /.env HTTP/1.1" 404 300911 "-" "Mozilla/5.0 (Wi ... show more 20.199.161.175 - - [04/Jun/2026:03:07:51 +0800] "GET /.env HTTP/1.1" 404 300911 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇪🇸 loadsoporte	2026-06-03 12:06:15 (15 hours ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇮🇹 www.tana.it	2026-05-31 23:16:56 (3 days ago)	PHP scan	Web App Attack
🇫🇷 geot	2026-05-31 15:43:42 (3 days ago)	GET /.env HTTP/1.1	Hacking Web App Attack
🇺🇸 technojoe99	2026-05-31 06:22:45 (3 days ago)	Exploit scan from 20.199.161.175. GET /.env HTTP/1.1.	Web App Attack
🇩🇪 Didier Lagaert	2026-05-31 03:43:09 (4 days ago)	lie-17 : Block hidden directories=>/consultations-gratuites/.env(/)	Hacking
Anonymous	2026-05-30 19:40:16 (4 days ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇩🇪 Dominik Lysiak	2026-05-30 18:56:08 (4 days ago)	20.199.161.175 - - [30/May/2026:20:56:08 +0200] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windo ... show more 20.199.161.175 - - [30/May/2026:20:56:08 +0200] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.199.161.175 - - [30/May/2026:20:56:08 +0200] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇳🇱 WinnieHoneypots	2026-05-30 13:08:00 (4 days ago)	Crappy bot probing nonexistent /.env	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-30 10:58:09 (4 days ago)	(caddyscan) Scanner path probe from 20.199.161.175 (CH/Switzerland/-): 5 in the last 3600 secs; Port ... show more (caddyscan) Scanner path probe from 20.199.161.175 (CH/Switzerland/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 20.199.161.175 - - [30/May/2026:10:57:34 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 20.199.161.175 - - [30/May/2026:10:57:54 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 20.199.161.175 - - [30/May/2026:10:58:07 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 20.199.161.175 - - [30/May/2026:10:58:07 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 20.199.161.175 - - [30/May/2026:10:58:07 +0000] "GET /.env HTTP/1.1" show less	Port Scan
🇳🇱 ParaBug	2026-05-30 03:51:19 (5 days ago)	20.199.161.175 - - [30/May/2026:05:51:19 +0200] "GET /.env HTTP/1.1" 301 477 "-" "Mozilla/5.0 (Windo ... show more 20.199.161.175 - - [30/May/2026:05:51:19 +0200] "GET /.env HTTP/1.1" 301 477 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Phishing Brute-Force Web App Attack
🇪🇸 alferez	2026-05-30 02:58:20 (5 days ago)	Searching .(env\|sql\|zip\|tar\|rar) files	Hacking Exploited Host Web App Attack

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.102.21.104

🇩🇪 213.209.159.228

🇺🇸 194.113.195.96

🇷🇴 194.102.185.109

🇨🇭 172.71.141.8

🇺🇸 107.175.195.204

🇮🇩 103.191.14.210

🇳🇬 102.88.137.213

🇨🇦 69.49.112.65

🇺🇸 47.251.71.112

🇳🇱 45.142.193.10

🇸🇬 43.156.136.152

🇳🇱 23.254.226.10

🇸🇦 5.111.79.234

🇧🇷 205.210.31.156

🇫🇷 193.70.0.241

🇨🇭 172.71.141.9

🇺🇸 165.154.134.117

🇺🇸 162.240.172.16

🇬🇷 141.237.174.102