JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.48.56.245

20.48.56.245 was found in our database!

This IP was reported 112 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.48.56.245

Whois 20.48.56.245

IP Abuse Reports for 20.48.56.245:

This IP address has been reported a total of 112 times from 83 distinct sources. 20.48.56.245 was first reported on March 26th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-04-30 13:04:29 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇩🇪 ghostwarriors	2026-04-01 01:02:11 (2 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2026-03-29 20:12:19 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 SpaceHost-Server	2026-03-28 23:41:43 (2 months ago)		Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-03-28 06:14:11 (2 months ago)	146 attacks on site downloads, PHP URLs, env grabbing URLs, Alfa URLs: GET /backup.sql HTTP/1.1 GET ... show more 146 attacks on site downloads, PHP URLs, env grabbing URLs, Alfa URLs: GET /backup.sql HTTP/1.1 GET /bootstrap.php HTTP/1.1 GET /app/.env HTTP/1.1 GET /alfacgiapi/perl.alfa.php HTTP/1.1 show less	Hacking Web App Attack
🇮🇹 mauri64	2026-03-28 00:31:28 (2 months ago)	Troppi errori Apache (141)	Hacking
Anonymous	2026-03-28 00:06:23 (2 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: WordPress scanning show less	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-03-27 23:00:51 (2 months ago)	Auto-ban: 215 malicious requests on 2026-03-26 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 215 malicious requests on 2026-03-26 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇳🇱 Site.eu	2026-03-27 21:37:58 (2 months ago)	Excessive multi-domain requests	Brute-Force
🇹🇷 rtbh.com.tr	2026-03-27 20:12:17 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 rsa	2026-03-27 17:32:00 (2 months ago)	GET /aks.php HTTP/1.1	DDoS Attack Brute-Force Exploited Host Web App Attack Hacking
🇺🇸 VanKoh	2026-03-27 15:06:32 (2 months ago)	20.48.56.245 - - [27/Mar/2026:09:06:30 -0600] "GET /3.php HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (Wind ... show more 20.48.56.245 - - [27/Mar/2026:09:06:30 -0600] "GET /3.php HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.48.56.245 - - [27/Mar/2026:09:06:30 -0600] "GET /403.php HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.48.56.245 - - [27/Mar/2026:09:06:30 -0600] "GET /404.php HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	DDoS Attack Web App Attack
🇩🇪 macrob	2026-03-27 14:45:06 (2 months ago)	2026/03/27 14:45:01 [error] 2072273#2072273: 106805122 access forbidden by rule, client: 20.48.56.2 ... show more 2026/03/27 14:45:01 [error] 2072273#2072273: 106805122 access forbidden by rule, client: 20.48.56.245, server: behemoti.com, request: "GET /WordPressCore/ HTTP/2.0", host: "behemoti.com" 2026/03/27 14:45:02 [error] 2072273#2072273: 106805137 access forbidden by rule, client: 20.48.56.245, server: behemoti.com, request: "GET /WordPressCore/cong.php HTTP/2.0", host: "behemoti.com" 2026/03/27 14:45:02 [error] 2072272#2072272: 106805260 access forbidden by rule, client: 20.48.56.245, server: behemoti.com, request: "GET /WordPressCore/include.php HTTP/2.0", host: "behemoti.com" ... show less	Web App Attack
🇫🇷 LRNP	2026-03-27 14:39:12 (2 months ago)	_:443 20.48.56.245 - - [27/Mar/2026:14:39:09 +0000] "GET /3.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 ( ... show more _:443 20.48.56.245 - - [27/Mar/2026:14:39:09 +0000] "GET /3.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" _:443 20.48.56.245 - - [27/Mar/2026:14:39:09 +0000] "GET /403.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" _:443 20.48.56.245 - - [27/Mar/2026:14:39:09 +0000] "GET /404.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" _:443 20.48.56.245 - - [27/Mar/2026:14:39:10 +0000] "GET /87.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" _:443 20.48.56.245 - - [27/Mar/2026:14:39:10 +0000] "GET /Auth/index.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 S ... show less	Bad Web Bot Web App Attack
🇫🇷 ✨	2026-03-27 14:23:03 (2 months ago)	Domain : MailEnable WebMail Rule : hack 2026-03-27 14:22:02 *hidden-privacy* GET /BrutalShell/ - ... show more Domain : MailEnable WebMail Rule : hack 2026-03-27 14:22:02 *hidden-privacy* GET /BrutalShell/ - 443 - 20.48.56.245 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 - 404 0 2 1539 715 418 - - show less	Hacking SQL Injection Brute-Force

Showing 1 to 15 of 112 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 178.216.165.187

🇰🇷 121.189.226.81

🇨🇦 20.104.248.142

🇮🇷 5.115.210.178

🇰🇷 222.116.47.157

🇺🇸 216.25.89.77

🇭🇰 193.176.211.42

🇨🇳 134.175.168.62

🇺🇸 66.132.172.103

🇺🇸 47.251.74.190

🇯🇵 47.245.10.150

🇱🇹 45.227.254.170

🇻🇳 27.79.46.126

🇷🇴 2.57.122.238

🇨🇳 218.9.233.236

🇵🇱 185.16.38.36

🇭🇰 165.154.23.177

🇵🇰 154.208.48.171

🇯🇵 133.18.167.64

🇳🇱 91.92.40.35