AbuseIPDB » 20.58.6.132

20.58.6.132 was found in our database!

This IP was reported 81 times. Confidence of Abuse is 0%: ?

0%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.58.6.132

Whois 20.58.6.132

IP Abuse Reports for 20.58.6.132:

This IP address has been reported a total of 81 times from 39 distinct sources. 20.58.6.132 was first reported on September 25th 2022, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
hermawan	30 Sep 2022	[Sat Oct 01 05:30:17.512613 2022] [-:error] [pid 306088:tid 139701683734080] [client 20.58.6.132:543 ... show more[Sat Oct 01 05:30:17.512613 2022] [-:error] [pid 306088:tid 139701683734080] [client 20.58.6.132:54392] [client 20.58.6.132] ModSecurity: Access denied with code 403 (phase 1). Match of "pm karangploso.jatim.bmkg.go.id search.brave.com staklim-jatim.bmkg.go.id staklim-malang.info matomo.staklim-malang.info" against "REQUEST_HEADERS:Host" required. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "10"] [id "440217"] [msg "Not Current Hostname"] [data "Matched Data: found within REQUEST_HEADERS:Host: 103.166.156.58 request_line = GET /.env HTTP/1.1"] [severity "NOTICE"] [hostname "103.166.156.58"] [uri "/.env"] [unique_id "Yzdt-caG5edRBgZc4x0UqAAAAEc"] [103.166.156.58] [karangploso.jatim.bmkg.go.id] top=[306156] [AnzUiRQCICE] [Yzdt-caG5edRBgZc4x0UqAAAAEc] keep_alive=[0] [2022-10-01 05:30:17.512619] [R:Yzdt-caG5edRBgZc4x0UqAAAAEc] UA:'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36' ... show less	Hacking Web App Attack
kolya	30 Sep 2022	[30/09/2022 19:27:29] Unauthorized connection attempt to port 80, server 90988ed6.	Port Scan
Odyssey346	30 Sep 2022	This IP accessed a banned URI/path. (ListenCaddy)	Bad Web Bot Web App Attack
HeliJP	30 Sep 2022	2022-09-30 02:33:38 - Recognized attacks\bad behavior from IP address 20.58.6.132 on port 443\80 (6 ... show more2022-09-30 02:33:38 - Recognized attacks\bad behavior from IP address 20.58.6.132 on port 443\80 (6 daily hits): Host header is a numeric IP address, Restricted File Access Attempt show less	Hacking Web App Attack
FEWA	30 Sep 2022	Fail2Ban Ban Triggered	Hacking Bad Web Bot Web App Attack
Anonymous	30 Sep 2022	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
Anonymous	29 Sep 2022	Invalid POST request	Hacking
Vaction	29 Sep 2022	20.58.6.132 - - [30/Sep/2022:03:11:11 +0200] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (X11; Lin ... show more20.58.6.132 - - [30/Sep/2022:03:11:11 +0200] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Hacking Bad Web Bot Web App Attack
kumiko	29 Sep 2022	[2022-09-30 04:00:53] Probing for dotfiles "GET /.env HTTP/1.1" 403	Bad Web Bot Web App Attack
Anonymous	29 Sep 2022	ModSecurity detections (a)	Bad Web Bot Web App Attack
hermawan	29 Sep 2022	[Fri Sep 30 06:11:39.419523 2022] [-:error] [pid 313222:tid 140655045842496] [client 20.58.6.132:632 ... show more[Fri Sep 30 06:11:39.419523 2022] [-:error] [pid 313222:tid 140655045842496] [client 20.58.6.132:63209] [client 20.58.6.132] ModSecurity: Access denied with code 403 (phase 1). Match of "pm karangploso.jatim.bmkg.go.id search.brave.com staklim-jatim.bmkg.go.id staklim-malang.info matomo.staklim-malang.info" against "REQUEST_HEADERS:Host" required. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "10"] [id "440217"] [msg "Not Current Hostname"] [data "Matched Data: found within REQUEST_HEADERS:Host: 103.166.156.58 request_line = GET /.env HTTP/1.1"] [severity "NOTICE"] [hostname "103.166.156.58"] [uri "/.env"] [unique_id "YzYmK-X92sBXPWarZa78CgAAAOM"] [103.166.156.58] [karangploso.jatim.bmkg.go.id] top=[313316] [+wLs/6ClZCs] [YzYmK-X92sBXPWarZa78CgAAAOM] keep_alive=[0] [2022-09-30 06:11:39.419528] [R:YzYmK-X92sBXPWarZa78CgAAAOM] UA:'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36' ... show less	Hacking Web App Attack
Anonymous	29 Sep 2022	The IP has been banned due to the violation / illegal of the use. Filter: nginx-webattack	Hacking Web App Attack
networknoise.xyz	29 Sep 2022	PORT : 80 | https://networknoise.xyz/?filter=IP:Hx12eHVEUBdWRQY%3D	Port Scan
Kraften	29 Sep 2022	Try to find web path ...	Web App Attack
Anonymous	29 Sep 2022	bot search	Port Scan Bad Web Bot

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩