JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.100.171.63

20.100.171.63 was found in our database!

This IP was reported 211 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇳🇴 Norway
City	Oslo, Oslo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.100.171.63

Whois 20.100.171.63

IP Abuse Reports for 20.100.171.63:

This IP address has been reported a total of 211 times from 179 distinct sources. 20.100.171.63 was first reported on June 29th 2026, and the most recent report was 5 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Philister11	2026-06-30 00:12:22 (5 minutes ago)	CrowdSec: crowdsecurity/http-crawl-non_statics (NO/AS8075)	Bad Web Bot Web App Attack
🇨🇭 lufi	2026-06-30 00:10:24 (7 minutes ago)	2026-06-30 02:10:24 20.100.171.63: blacklisted Pattern: wp-content/ ...	Web Spam Brute-Force Hacking Web App Attack
🇩🇪 LRob.fr	2026-06-30 00:01:23 (16 minutes ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
Anonymous	2026-06-30 00:00:08 (17 minutes ago)	20.100.171.63 - sliver85.eu - [30/Jun/2026:01:12:42 +0200] "GET /wp-content/plugins/hellopress/wp_fi ... show more 20.100.171.63 - sliver85.eu - [30/Jun/2026:01:12:42 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 "-" 20.100.171.63 - sliver85.eu - [30/Jun/2026:01:12:43 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 "-" 20.100.171.63 - sliver85.eu - [30/Jun/2026:01:12:45 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 "-" ... show less	Brute-Force Web App Attack
🇫🇷 pm33	2026-06-29 23:39:41 (37 minutes ago)	Unauthorized connections HTTP 403	Web App Attack
🇩🇪 jasperedv.de	2026-06-29 23:38:04 (39 minutes ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇫🇷 MatStef132	2026-06-29 23:26:58 (50 minutes ago)	MatShield L7: blocked on wiki.mathost.eu (suspicious behaviour)	DDoS Attack
Anonymous	2026-06-29 23:05:01 (1 hour ago)	Blocked by os-abuseipdb; 5 hits, proto=tcp, ports=80	Port Scan Hacking
🇩🇪 4server	2026-06-29 22:45:49 (1 hour ago)	[TueJun3000:45:46.2161322026][security2:error][pid3594046:tid3594139][client20.100.171.63:0]ModSecur ... show more [TueJun3000:45:46.2161322026][security2:error][pid3594046:tid3594139][client20.100.171.63:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"\^/wp-content/uploads/.\*\\\\\\\\.$php\\|phtml\\|phar\\|php3\\|php4\\|php5\\|php7$\$\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"395\"][id\"1101018\"][msg\"PHPexecutionfromuploads\"][hostname\"cpanel.danielasilvia.ch\"][uri\"/wp-content/uploads/2021/02/index.php\"][unique_id\"akL1mrj7ttTXhpj6CLXn0wAAAJg\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 n2nguyenn2nguyen	2026-06-29 22:44:13 (1 hour ago)	Blocked by YFC Security on https://fencingforward.com — type: rapid_scan_attempts	Web App Attack
🇩🇪 itsolon	2026-06-29 22:40:19 (1 hour ago)	[30/Jun/2026:00:40:18 +0200] 178277281854.463881 20.100.171.63 51410 217.154.7.177 80 [30/Jun/2026:0 ... show more [30/Jun/2026:00:40:18 +0200] 178277281854.463881 20.100.171.63 51410 217.154.7.177 80 [30/Jun/2026:00:40:18 +0200] 17827728185.975883 20.100.171.63 51410 217.154.7.177 80 [30/Jun/2026:00:40:19 +0200] 178277281995.270797 20.100.171.63 51410 217.154.7.177 80 [30/Jun/2026:00:40:19 +0200] 178277281978.743775 20.100.171.63 51410 217.154.7.177 80 [30/Jun/2026:00:40:19 +0200] 178277281945.232734 20.100.171.63 51410 217.154.7.177 80 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇫🇮 spirttm	2026-06-29 22:37:39 (1 hour ago)	{"level":"error","ts":1782772600.091048,"logger":"http.log.access.log4","msg":"handled request","req ... show more {"level":"error","ts":1782772600.091048,"logger":"http.log.access.log4","msg":"handled request","request":{"remote_ip":"20.100.171.63","remote_port":"58195","proto":"HTTP/1.1","method":"GET","host":"shopify-app.sellena.co","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"shopify-app.sellena.co"}},"user_id":"","duration":0.002638931,"size":16,"status":400,"resp_headers":{"Content-Security-Policy":["frame-ancestors 'none';"],"Content-Type":["text/html; charset=utf-8"],"Content-Length":["16"],"Date":["Mon, 29 Jun 2026 22:36:40 GMT"],"X-Powered-By":["Express"],"Server":["Caddy"]}} {"level":"error","ts":1782772600.5626369,"logger":"http.log.access.log4","msg":"handled request","request":{"remote_ip":"20.100.171.63","remote_port":"58195","proto":"HTTP/1.1","method":"GET","host":"shopify-app.sellena.co","uri":"/this_is_a_new_hello_world.php","headers":{},"tls":{"resumed":false,"version":77 ... show less	Port Scan Web App Attack
🇺🇸 MPL	2026-06-29 22:26:16 (1 hour ago)	tcp/80 (13 or more attempts)	Port Scan
🇮🇹 Inartis	2026-06-29 21:22:16 (2 hours ago)	20.100.171.63 - - [29/Jun/2026:23:22:15 +0200] "GET /setup.php HTTP/1.1" 302 411 "-" "-" ...	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2026-06-29 21:20:56 (2 hours ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 211 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a06:4883:1000::14

🇭🇰 221.126.77.158

🇧🇷 189.11.24.165

🇬🇧 87.236.176.86

🇳🇱 45.153.34.137

🇳🇱 185.242.226.19

🇨🇳 182.92.202.149

🇺🇸 147.185.132.213

🇨🇦 142.120.87.126

🇺🇸 134.122.17.241

🇨🇳 120.48.99.236

🇰🇭 110.235.250.5

🇫🇮 86.54.25.235

🇺🇸 66.132.195.15

🇱🇹 62.60.130.219

🇲🇾 49.124.152.252

🇷🇺 46.151.246.121

🇬🇧 37.156.64.4

🇰🇷 34.47.99.143

🇻🇳 14.184.114.93