JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.215.59.107

20.215.59.107 was found in our database!

This IP was reported 214 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.215.59.107

Whois 20.215.59.107

IP Abuse Reports for 20.215.59.107:

This IP address has been reported a total of 214 times from 170 distinct sources. 20.215.59.107 was first reported on March 26th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-04-29 18:28:29 (1 month ago)	Confirmed malicious by STILWaters CTI (score=100)	Hacking Brute-Force SSH
🇫🇮 nNordic	2026-04-26 09:24:36 (2 months ago)	Connection attempt blocked by IDS/IPS from 20.215.59.107/32	Hacking
🇬🇧 sc user	2026-04-02 06:03:58 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇬🇧 sc user	2026-04-01 04:40:50 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇩🇪 ghostwarriors	2026-04-01 00:55:53 (2 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇬🇧 sc user	2026-03-31 03:39:05 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇭🇺 DumaNet	2026-03-28 11:12:00 (2 months ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Mar 26. 18:38:12 Source IP: 20.215 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Mar 26. 18:38:12 Source IP: 20.215.59.107 Portion of the log(s): 20.215.59.107 - [26/Mar/2026:18:38:10 +0100] "GET /wp-kd4xalrg7m.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:10 +0100] "GET /read.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:10 +0100] "GET /zample.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:10 +0100] "GET /fine.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:10 +0100] "GET /north1.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:09 +0100] "GET /sace.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:09 +0100] "GET /torsa.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:09 +0100] "GET /bm.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:09 +0100] "GET /lupo.php HTTP/1.1" 404 153 "-" "-" 20.215.59.107 - [26/Mar/2026:18:38:09 +0100] "GET /zaz.php HTTP/1.1" 404 153 "-" "-" show less	Web App Attack
🇬🇧 sc user	2026-03-28 06:47:11 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇳🇱 homeshowdomain.nl	2026-03-27 22:59:24 (2 months ago)	Auto-ban: 227 malicious requests on 2026-03-26 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 227 malicious requests on 2026-03-26 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇹🇷 rtbh.com.tr	2026-03-27 20:12:17 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 IRISIO	2026-03-27 10:45:30 (2 months ago)	scans/SQL injection/spam posts : 661 queries	Web App Attack SQL Injection
🇬🇧 openstrike.co.uk	2026-03-27 06:15:40 (3 months ago)	314 attacks on PHP URLs: GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php HTTP/1.1	Web App Attack
Anonymous	2026-03-27 06:03:45 (3 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: PL, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: PL, Attack patterns: WordPress scanning, Cloud secrets probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2026-03-27 04:06:43 (3 months ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇬🇧 andypiper	2026-03-27 02:00:45 (3 months ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack

Showing 1 to 15 of 214 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.134

🇳🇱 93.123.72.183

🇳🇱 212.8.243.20

🇩🇪 193.174.89.19

🇧🇷 189.85.172.4

🇮🇳 106.76.160.48

🇩🇪 69.5.169.244

🇩🇪 69.5.169.175

🇩🇪 69.5.169.171

🇩🇪 69.5.169.160

🇺🇸 66.132.172.126

🇫🇮 62.60.251.50

🇰🇷 47.80.62.251

🇺🇸 44.222.115.246

🇮🇪 2a05:d018:bb5:3300:c212:a7fb:4798:6f02

🇵🇰 202.63.205.3

🇿🇦 197.185.168.52

🇮🇩 182.8.178.79

🇮🇱 130.185.96.113

🇬🇧 81.16.177.200