JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.221.204.54

20.221.204.54 was found in our database!

This IP was reported 179 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.221.204.54

Whois 20.221.204.54

IP Abuse Reports for 20.221.204.54:

This IP address has been reported a total of 179 times from 88 distinct sources. 20.221.204.54 was first reported on December 24th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 rshict	2024-08-01 13:03:21 (1 year ago)	Hacking, Brute-Force, Web App Attack	Hacking Brute-Force Web App Attack
🇳🇱 Linuxmalwarehuntingnl	2024-07-01 10:38:11 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇺🇸 spaceduck	2024-05-11 19:09:47 (2 years ago)	20.221.204.54 - - [10/Feb/2024:10:39:43 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 ... show more 20.221.204.54 - - [10/Feb/2024:10:39:43 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [10/Feb/2024:12:43:45 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2024-04-18 13:47:44 (2 years ago)	20.221.204.54 - - [10/Feb/2024:10:39:43 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 ... show more 20.221.204.54 - - [10/Feb/2024:10:39:43 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [10/Feb/2024:12:43:45 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2024-03-09 17:52:02 (2 years ago)	20.221.204.54 - - [10/Feb/2024:10:39:43 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 ... show more 20.221.204.54 - - [10/Feb/2024:10:39:43 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [10/Feb/2024:12:43:45 -0800] "GET /cgi-bin/.env HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" show less	Bad Web Bot Web App Attack
🇳🇱 kumiko	2024-03-01 09:31:00 (2 years ago)	[2024-03-01 09:30:59] Probing for dotfiles "GET /.env HTTP/1.1" 403	Bad Web Bot Web App Attack
🇦🇺 FEWA	2024-03-01 09:14:38 (2 years ago)	Fail2Ban Ban Triggered	Hacking Bad Web Bot Web App Attack
🇺🇸 BSG Webmaster	2024-03-01 08:35:19 (2 years ago)	Port scanning (Port 80)	Port Scan Hacking
🇭🇺 whitehoodie	2024-03-01 07:57:08 (2 years ago)	AUTOMATED REPORT: Tried to access .env file	Hacking Bad Web Bot Web App Attack
🇩🇪 Stefan Dreher	2024-03-01 03:55:45 (2 years ago)	20.221.204.54 - - [01/Mar/2024:04:55:42 +0100] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Window ... show more 20.221.204.54 - - [01/Mar/2024:04:55:42 +0100] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [01/Mar/2024:04:55:43 +0100] "GET /conf/.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [01/Mar/2024:04:55:43 +0100] "GET /wp-content/.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [01/Mar/2024:04:55:44 +0100] "GET /wp-admin/.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" 20.221.204.54 - - [01/Mar/2024:04:55:44 +0100] "GET /library/.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36" ... show less	Hacking Brute-Force
🇩🇪 sdos.es	2024-03-01 02:29:54 (2 years ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack
🇩🇪 ps-center	2024-03-01 02:22:55 (2 years ago)	ABV: Web Attack GET /wp-content/.env	Web Spam Hacking Bad Web Bot Web App Attack
🇧🇪 sid3windr	2024-03-01 02:21:58 (2 years ago)	GET /.env (Tarpitted for 1d14h3m56s, wasted 7.84MB)	Web App Attack
🇦🇺 MAGIC	2024-03-01 01:05:07 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Hazzard	2024-03-01 00:23:32 (2 years ago)	(mod_security) mod_security triggered on hostname [redacted]): (CF_ENABLE)	SQL Injection

Showing 1 to 15 of 179 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 172.70.243.213

🇬🇧 216.226.76.30

🇺🇸 205.210.31.86

🇧🇷 186.219.238.51

🇺🇸 172.174.250.151

🇳🇱 45.156.87.216

🇧🇪 45.83.20.230

🇧🇷 45.5.242.211

🇺🇸 34.125.148.17

🇺🇸 207.90.244.15

🇲🇽 187.191.48.4

🇫🇮 147.185.133.145

🇸🇬 94.231.206.129

🇳🇱 77.83.39.233

🇺🇸 44.251.230.224

🇵🇰 39.34.149.167

🇧🇷 205.210.31.212

🇱🇻 185.113.139.51

🇺🇸 162.216.150.141

🇺🇸 147.185.132.108