JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.80.52.246

20.80.52.246 was found in our database!

This IP was reported 56 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.80.52.246

Whois 20.80.52.246

IP Abuse Reports for 20.80.52.246:

This IP address has been reported a total of 56 times from 29 distinct sources. 20.80.52.246 was first reported on June 20th 2026, and the most recent report was 47 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Mundo Bueno	2026-06-23 02:16:58 (47 minutes ago)	[ISILIA Protection v2.1] Tentative d'accès: //vendor/phpunit/phpunit/phpunit.xsd \| Pays: US \| UA: Mo ... show more [ISILIA Protection v2.1] Tentative d'accès: //vendor/phpunit/phpunit/phpunit.xsd \| Pays: US \| UA: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0 show less	Hacking Web App Attack
🇫🇮 as211431.net	2026-06-22 17:51:39 (9 hours ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: //vendor/phpunit/phpunit/phpunit.xsd UA: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 pinguin	2026-06-22 17:32:24 (9 hours ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: LOG Protocol: HTTP/1.1 (GET method ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: LOG Protocol: HTTP/1.1 (GET method) Endpoint: //vendor/phpunit/phpunit/phpunit.xsd UA: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇱 ByeByte API	2026-06-22 17:14:18 (9 hours ago)	byebyte.space auth: GET /vendor/phpunit/phpunit/phpunit.xsd at 2026-06-22T17:14:18Z. Honeypot path h ... show more byebyte.space auth: GET /vendor/phpunit/phpunit/phpunit.xsd at 2026-06-22T17:14:18Z. Honeypot path hit; firewall auto-banned the IP for 24h. UA: 'Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0'. Accept-Language: 'en-US,en;q=0.5'. Accept-Encoding: 'gzip, br'. Country (CF): US. TLS info: {"scheme":"https"}. show less	Web App Attack Port Scan
🇩🇪 maxpower	2026-06-22 14:49:42 (12 hours ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.80.52.246 - - [22/Jun/2026:16:49:34 +0200] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 301 304 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=villapardi.it 20.80.52.246 - - [22/Jun/2026:16:49:36 +0200] "GET /vendor/phpunit/phpunit/phpunit.xsd HTTP/2.0" 404 14191 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=villapardi.it show less	Port Scan
🇩🇪 maxpower	2026-06-22 13:07:02 (13 hours ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.80.52.246 - - [22/Jun/2026:15:06:53 +0200] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/2.0" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=olscitaly.com 20.80.52.246 - - [22/Jun/2026:15:06:55 +0200] "GET /vendor/phpunit/phpunit/phpunit.xsd HTTP/2.0" 404 20531 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=olscitaly.com show less	Port Scan
🇫🇷 masterguru	2026-06-22 12:34:20 (14 hours ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-201) show less	Hacking
🇬🇧 gurnip	2026-06-22 10:36:04 (16 hours ago)	Vulnerability probe of page /vendor/phpunit/phpunit/phpunit.xsd, not found on server.	Brute-Force Web App Attack
🇺🇸 rwgomes	2026-06-22 08:32:00 (18 hours ago)	Automated report from Intelligence Finance Tools. IP probed malicious path: /vendor/phpunit/phpunit/ ... show more Automated report from Intelligence Finance Tools. IP probed malicious path: /vendor/phpunit/phpunit/phpunit.xsd. No such resource exists on this server. show less	Web App Attack Hacking
🇩🇪 maxpower	2026-06-22 06:32:07 (20 hours ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.80.52.246 - - [22/Jun/2026:08:31:59 +0200] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=direnzoassicurazioni.it 20.80.52.246 - - [22/Jun/2026:08:32:01 +0200] "GET /vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 404 118032 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=www.direnzoassicurazioni.it show less	Port Scan
🇩🇪 maxpower	2026-06-22 06:13:01 (20 hours ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.80.52.246 - - [22/Jun/2026:08:12:42 +0200] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 301 304 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=villapardi.it 20.80.52.246 - - [22/Jun/2026:08:12:49 +0200] "GET /vendor/phpunit/phpunit/phpunit.xsd HTTP/2.0" 404 14195 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=villapardi.it show less	Port Scan
🇩🇪 maxpower	2026-06-22 05:33:38 (21 hours ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 20.80.52.246 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.80.52.246 - - [22/Jun/2026:07:33:27 +0200] "GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=abruzzotour.it 20.80.52.246 - - [22/Jun/2026:07:33:32 +0200] "GET /vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1" 404 30281 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" "20.80.52.246" host=abruzzotour.it show less	Port Scan
🇩🇪 big-cloud.nl	2026-06-22 05:29:54 (21 hours ago)	Try to access /vendor/phpunit/phpunit/phpunit.xsd	Web App Attack
Anonymous	2026-06-22 05:17:56 (21 hours ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
Anonymous	2026-06-22 05:07:04 (21 hours ago)	Automated web scanner. Requested suspicious paths: /vendor/phpunit/phpunit/phpunit.xsd. UTC: 2026-06 ... show more Automated web scanner. Requested suspicious paths: /vendor/phpunit/phpunit/phpunit.xsd. UTC: 2026-06-22 04:59:51. show less	Web App Attack

Showing 1 to 15 of 56 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.140.214.23

🇸🇬 188.166.215.16

🇩🇪 172.104.241.98

🇺🇸 104.152.52.212

🇸🇬 94.231.206.206

🇫🇷 91.196.152.179

🇩🇪 69.5.169.179

🇺🇸 66.132.148.5

🇵🇭 49.145.171.37

🇯🇵 8.209.231.182

🇺🇸 2a04:c300:400::1b8

🇻🇳 180.93.138.150

🇳🇱 176.65.139.181

🇨🇳 140.255.69.115

🇨🇳 113.89.16.99

🇸🇬 94.231.206.159

🇰🇬 91.247.59.89

🇳🇱 91.92.40.7

🇬🇭 80.87.83.229

🇺🇸 45.55.42.31