JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 4.216.120.2

4.216.120.2 was found in our database!

This IP was reported 761 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 4.216.120.2

Whois 4.216.120.2

IP Abuse Reports for 4.216.120.2:

This IP address has been reported a total of 761 times from 226 distinct sources. 4.216.120.2 was first reported on July 24th 2025, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2025-08-14 20:08:14 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇮 Kimmo Rieskaniemi	2025-08-13 22:34:39 (10 months ago)	CrowdSec triggered crowdsecurity/http-probing	Hacking Web App Attack
🇹🇷 rtbh.com.tr	2025-08-13 20:08:13 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2025-08-13 19:54:02 (10 months ago)	[13-Aug-2025 15:53:59 America/New_York] Page Not Found: wp_filemanager.php [4.216.120.2] [13-Aug-202 ... show more [13-Aug-2025 15:53:59 America/New_York] Page Not Found: wp_filemanager.php [4.216.120.2] [13-Aug-2025 15:54:00 America/New_York] Page Not Found: ceo.php [4.216.120.2] ... show less	Brute-Force
🇺🇸 agenciahypelab.com.br	2025-08-13 18:19:00 (10 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇺🇸 myagent.site	2025-08-13 17:49:19 (10 months ago)	Blocking for trying to access an exploit file: /11.php	Hacking
🇺🇸 ipblock.com	2025-08-13 13:21:00 (10 months ago)	IPBlock protected site ID [669-fx]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇬🇧 Buster	2025-08-13 12:38:00 (10 months ago)	Continual pointless childish script kiddie DOS & DDOS attack attempts on multiple sites from Perm Bl ... show more Continual pointless childish script kiddie DOS & DDOS attack attempts on multiple sites from Perm Blocked ASN and country: show less	DDoS Attack Open Proxy Hacking Bad Web Bot Web App Attack
🇵🇱 nfsec.pl	2025-08-13 12:12:03 (10 months ago)	4.216.120.2 - - [13/Aug/2025:14:12:00 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 4.216.120.2 - - [13/Aug/2025:14:12:00 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 357 "-" "-" 4.216.120.2 - - [13/Aug/2025:14:12:01 +0200] "GET /ceo.php HTTP/1.1" 403 357 "-" "-" 4.216.120.2 - - [13/Aug/2025:14:12:01 +0200] "GET /article.php HTTP/1.1" 403 357 "-" "-" 4.216.120.2 - - [13/Aug/2025:14:12:02 +0200] "GET /fire.php HTTP/1.1" 403 357 "-" "-" 4.216.120.2 - - [13/Aug/2025:14:12:02 +0200] "GET /boom.php HTTP/1.1" 403 357 "-" "-" ... show less	Exploited Host Web App Attack
🇺🇸 nekoify	2025-08-13 11:01:02 (10 months ago)	IP has triggered Cloudflare WAF. action: managed_challenge source: botFight clientAsn: 8075 clientAS ... show more IP has triggered Cloudflare WAF. action: managed_challenge source: botFight clientAsn: 8075 clientASNDescription: MICROSOFT-CORP-MSN-AS-BLOCK clientCountryName: JP clientIP: 4.216.120.2 clientRequestHTTPMethodName: GET clientRequestHTTPProtocol: HTTP/1.1 clientRequestPath: /schemes.php clientRequestQuery: datetime: 2025-08-13T11:01:02Z rayName: 96e7b6501a50d415 ruleId: bot_fight_mode userAgent: . show less	Open Proxy VPN IP Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
Anonymous	2025-08-13 10:48:17 (10 months ago)	wordpress-trap	Web App Attack
🇩🇪 botreporter	2025-08-13 09:12:07 (10 months ago)	CMS vulnerability/installation scanning	Brute-Force Web App Attack
🇺🇸 Epimetheus	2025-08-13 09:08:12 (10 months ago)	Unauthorized access attempts: From: 4.216.120.2 Method: HTTP GET URI Path: /a4.php UA: ""	Web App Attack
🇳🇱 Site.eu	2025-08-13 06:47:28 (10 months ago)	Excessive multi-domain requests	Brute-Force
🇬🇧 openstrike.co.uk	2025-08-13 05:13:13 (10 months ago)	114 attacks on PHP URLs: GET /goods.php HTTP/1.1	Web App Attack

Showing 1 to 15 of 761 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 218.166.93.191

🇺🇸 162.216.150.192

🇨🇳 122.51.207.60

🇨🇦 20.151.108.150

🇺🇸 2607:f8b0:4002:c0f::126

🇺🇸 205.185.119.227

🇧🇪 198.235.24.169

🇷🇺 185.22.154.163

🇹🇭 165.154.119.20

🇮🇩 103.124.196.101

🇺🇸 91.230.168.236

🇮🇷 80.191.201.103

🇳🇱 45.142.193.70

🇧🇪 34.38.70.156

🇺🇸 18.88.38.205

🇩🇪 5.175.245.145

🇺🇸 216.25.89.84

🇺🇸 162.216.149.217

🇺🇸 147.185.132.30

🇺🇸 147.185.132.12