AbuseIPDB » 20.58.6.132

Check an IP Address, Domain Name, or Subnet

e.g. 3.235.186.94, microsoft.com, or 5.188.10.0/24

20.58.6.132 was found in our database!

This IP was reported 81 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.58.6.132

Whois 20.58.6.132

IP Abuse Reports for 20.58.6.132:

This IP address has been reported a total of 81 times from 39 distinct sources. 20.58.6.132 was first reported on September 25th 2022, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
nyclee.net	29 Sep 2022	WebServer Vunerability Probe ...	Hacking Web App Attack
Anonymous	29 Sep 2022	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
Little Iguana	28 Sep 2022	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
alliance	28 Sep 2022	28.09.2022 15:54:58 HTTP access blocked by firewall	Port Scan Web App Attack
Anonymous	28 Sep 2022	Invalid POST request	Hacking
nextweb	28 Sep 2022	(mod_security) mod_security (id:210492) triggered by 20.58.6.132 (GB/United Kingdom/England/London/- ... show more(mod_security) mod_security (id:210492) triggered by 20.58.6.132 (GB/United Kingdom/England/London/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 5 in the last 3600 secs (CF_ENABLE) show less	Brute-Force
Anonymous	28 Sep 2022	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
HeliJP	27 Sep 2022	2022-09-27 20:27:51 - Recognized attacks\bad behavior from IP address 20.58.6.132 on port 443\80 (6 ... show more2022-09-27 20:27:51 - Recognized attacks\bad behavior from IP address 20.58.6.132 on port 443\80 (6 daily hits): Host header is a numeric IP address, Restricted File Access Attempt show less	Hacking Web App Attack
sebaro11	27 Sep 2022	Portscan on 80/TCP blocked by UFW	Port Scan
Vaction	27 Sep 2022	20.58.6.132 - - [28/Sep/2022:02:02:59 +0200] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (X11; Lin ... show more20.58.6.132 - - [28/Sep/2022:02:02:59 +0200] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Hacking Bad Web Bot Web App Attack
Anonymous	27 Sep 2022	Probing using IP address rather than domain name Attempting to access restricted files A ... show moreProbing using IP address rather than domain name Attempting to access restricted files Attempting to access restricted file types show less	Hacking Brute-Force Web App Attack
4server	27 Sep 2022	[TueSep2723:24:43.8380662022][:error][pid13440:tid47240498415360][client20.58.6.132:55389][client20. ... show more[TueSep2723:24:43.8380662022][:error][pid13440:tid47240498415360][client20.58.6.132:55389][client20.58.6.132]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"189\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"136.243.224.50\"][uri\"/.env\"][unique_id\"YzNqG23sQ3SeM0YbqD_emAAAAJE\"][TueSep2723:24:44.0086222022][:error][pid13499:tid47240487909120][client20.58.6.132:57371][client20.58.6.132]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\ show less	Port Scan Brute-Force Web App Attack
Anonymous	27 Sep 2022	The IP has been banned due to the violation / illegal of the use. Filter: nginx-webattack	Hacking Web App Attack
Anonymous	27 Sep 2022	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
nyclee.net	27 Sep 2022	WebServer Vunerability Probe ...	Hacking Web App Attack