JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.55.2.7

20.55.2.7 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 87%: ?

87%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.55.2.7

Whois 20.55.2.7

IP Abuse Reports for 20.55.2.7:

This IP address has been reported a total of 24 times from 17 distinct sources. 20.55.2.7 was first reported on June 22nd 2026, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 SOC [GOLINE SA]	2026-06-29 18:01:48 (19 hours ago)	FortiGate detected IPS attack from IPv4 address 20.55.2.7	Hacking
🇺🇸 mnsf	2026-06-28 23:05:39 (1 day ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇳🇿 Antinson	2026-06-28 19:45:21 (1 day ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇨🇭 SOC [GOLINE SA]	2026-06-28 18:01:46 (1 day ago)	FortiGate detected IPS attack from IPv4 address 20.55.2.7	Hacking
🇨🇭 SOC [GOLINE SA]	2026-06-27 17:03:00 (2 days ago)	FortiGate detected IPS attack from IPv4 address 20.55.2.7	Hacking
🇨🇿 Prcek	2026-06-26 19:48:29 (3 days ago)	PortScan:HOST=20.55.2.7,DPORTS=80	Port Scan
🇨🇭 SOC [GOLINE SA]	2026-06-26 16:02:33 (3 days ago)	FortiGate detected IPS attack from IPv4 address 20.55.2.7	Hacking
🇺🇸 gu-alvareza	2026-06-26 07:05:13 (4 days ago)	AndroxGh0st.Malware	Hacking Exploited Host
🇺🇸 ShadowWhisperer	2026-06-25 19:38:09 (4 days ago)	HTTP GET /.env UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like	Web App Attack
🇳🇿 Antinson	2026-06-25 17:02:00 (4 days ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 16:35:44 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 20.55.2.7 (-): 1 in the last 300 secs; Ports: * ... show more (mod_security) mod_security (id:210492) triggered by 20.55.2.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:35:37.488610 2026] [security2:error] [pid 27433:tid 27433] [client 20.55.2.7:38754] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trafficstopper.com"] [uri "/.env"] [unique_id "aj1Y2TsFaZOLwuafN9n_UAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 SOC [GOLINE SA]	2026-06-25 16:02:19 (4 days ago)	FortiGate detected IPS attack from IPv4 address 20.55.2.7	Hacking
🇲🇾 Rizzy	2026-06-25 15:36:46 (4 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇬🇧 gurnip	2026-06-25 15:22:58 (4 days ago)	Vulnerability probe of page /.env, not found on server.	Brute-Force Web App Attack
🇫🇷 GoodOldTOS	2026-06-25 14:55:11 (4 days ago)	Bad keywords detected in request: /.env	Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 110.44.3.130

🇺🇸 66.132.172.145

🇳🇱 45.148.10.141

🇧🇷 143.95.214.121

🇮🇳 130.250.191.134

🇨🇳 106.53.27.250

🇮🇩 165.154.48.160

🇻🇳 103.159.51.70

🇷🇺 81.195.152.10

🇳🇱 45.142.193.53

🇺🇸 44.33.20.63

🇳🇱 40.126.32.72

🇬🇧 185.213.245.59

🇮🇳 183.82.102.98

🇺🇸 172.238.188.122

🇺🇸 170.23.30.185

🇺🇸 165.154.134.203

🇱🇰 112.135.206.250

🇱🇹 81.30.98.62

🇺🇸 2600:1f16:140f:e800:22a:4ea6:f113:690