JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.216.165.110

20.216.165.110 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.216.165.110

Whois 20.216.165.110

IP Abuse Reports for 20.216.165.110:

This IP address has been reported a total of 27 times from 17 distinct sources. 20.216.165.110 was first reported on January 7th 2023, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 www.Examensfragen.de	2023-01-17 23:22:15 (3 years ago)		Web Spam Bad Web Bot
🇷🇺 ITShelter Security	2023-01-17 07:21:48 (3 years ago)	2023/01/17 05:21:48 +03:00 req: GET /.env HTTP/1.1, host: ***.pro	Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2023-01-17 07:06:56 (3 years ago)	20.216.165.110 - - [17/Jan/2023:09:06:55 +0200] "GET /.env HTTP/1.1" 404 278 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [17/Jan/2023:09:06:55 +0200] "GET /.env HTTP/1.1" 404 278 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Web App Attack
🇵🇱 get-money.pl	2023-01-17 05:43:46 (3 years ago)	20.216.165.110 - - [17/Jan/2023:06:39:08 +0100] "GET /.env HTTP/1.1" 404	Hacking Web App Attack
🇧🇷 AC - Team	2023-01-17 05:08:22 (3 years ago)	20.216.165.110 - - [17/Jan/2023:02:08:22 -0300] "GET /.env HTTP/1.1" 403 433 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [17/Jan/2023:02:08:22 -0300] "GET /.env HTTP/1.1" 403 433 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Hacking Web App Attack
🇮🇩 hermawan	2023-01-17 04:51:20 (3 years ago)	[Tue Jan 17 11:48:17.790284 2023] [security2:error] [pid 45188:tid 139760082937408] [client 20.216.1 ... show more [Tue Jan 17 11:48:17.790284 2023] [security2:error] [pid 45188:tid 139760082937408] [client 20.216.165.110:58810] [client 20.216.165.110] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-3.3.4/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "137"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/.env"] [unique_id "Y8YokRMiXANruHwhwWs7TwAAA_4"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[45302] [9+eGaIajq74] [Y8YokRMiXANruHwhwWs7TwAAA_4] keep_alive=[0] [2023-01-17 11:48:17.790288] [R:Y8YokRMiXANruHwhwWs7TwAAA_4] UA:'Mozilla/5.0 (X11; L ... show less	Hacking Web App Attack
🇺🇦 URAN Publishing Service	2023-01-17 04:45:36 (3 years ago)	20.216.165.110 - - [17/Jan/2023:06:45:35 +0200] "GET /.env HTTP/1.1" 404 275 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [17/Jan/2023:06:45:35 +0200] "GET /.env HTTP/1.1" 404 275 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Web App Attack
🇬🇧 sdos.es	2023-01-17 04:07:10 (3 years ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack
🇺🇸 ANTI SCANNER	2023-01-17 03:53:50 (3 years ago)	Scanner : /.env	Web Spam
🇺🇦 URAN Publishing Service	2023-01-17 02:19:53 (3 years ago)	20.216.165.110 - - [17/Jan/2023:04:13:00 +0200] "GET /.env HTTP/1.1" 404 274 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [17/Jan/2023:04:13:00 +0200] "GET /.env HTTP/1.1" 404 274 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 20.216.165.110 - - [17/Jan/2023:04:19:52 +0200] "GET /.env HTTP/1.1" 404 276 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Web App Attack
🇧🇷 AC - Team	2023-01-17 01:48:12 (3 years ago)	20.216.165.110 - - [16/Jan/2023:22:48:08 -0300] "GET /.env HTTP/1.1" 403 3381 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [16/Jan/2023:22:48:08 -0300] "GET /.env HTTP/1.1" 403 3381 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Hacking Web App Attack
Anonymous	2023-01-17 01:39:24 (3 years ago)	Restricted File Access Requests	Hacking Brute-Force
🇧🇷 AC - Team	2023-01-17 01:28:27 (3 years ago)	20.216.165.110 - - [16/Jan/2023:22:28:35 -0300] "GET /.env HTTP/1.1" 403 4265 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [16/Jan/2023:22:28:35 -0300] "GET /.env HTTP/1.1" 403 4265 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Hacking Web App Attack
🇧🇷 AC - Team	2023-01-15 11:45:23 (3 years ago)	20.216.165.110 - - [15/Jan/2023:08:45:37 -0300] "GET /.env HTTP/1.1" 403 4299 "-" "Mozilla/5.0 (X11; ... show more 20.216.165.110 - - [15/Jan/2023:08:45:37 -0300] "GET /.env HTTP/1.1" 403 4299 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Hacking Web App Attack
🇷🇺 ITShelter Security	2023-01-14 02:51:34 (3 years ago)	2023/01/14 00:51:34 +03:00 req: GET /.env HTTP/1.1, host: *.pro 2023/01/14 02:44:27 +03:00 req: GE ... show more 2023/01/14 00:51:34 +03:00 req: GET /.env HTTP/1.1, host: .pro 2023/01/14 02:44:27 +03:00 req: GET /.env HTTP/1.1, host: **.pro show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.178.118.147

🇺🇸 184.105.139.72

🇧🇷 177.61.176.110

🇺🇸 143.42.173.101

🇮🇳 120.62.8.17

🇳🇱 91.92.40.12

🇨🇳 58.209.82.167

🇳🇱 45.148.10.147

🇬🇧 35.203.211.203

🇮🇳 2404:6800:4000:100e::128

🇸🇬 193.37.32.225

🇬🇧 193.163.125.167

🇨🇦 144.217.161.208

🇻🇳 116.99.168.214

🇳🇱 93.123.72.183

🇫🇷 91.196.152.115

🇨🇳 27.24.141.95

🇻🇳 180.93.172.213

🇶🇦 178.152.95.131

🇿🇦 168.253.192.138