JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.100.186.147

20.100.186.147 was found in our database!

This IP was reported 366 times. Confidence of Abuse is 67%: ?

67%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇳🇴 Norway
City	Oslo, Oslo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.100.186.147

Whois 20.100.186.147

IP Abuse Reports for 20.100.186.147:

This IP address has been reported a total of 366 times from 282 distinct sources. 20.100.186.147 was first reported on April 11th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-05-04 17:02:53 (1 month ago)	2026-04-12 13:41:23,641 fail2ban.actions [1294183]: NOTICE [error-bots] Ban 20.100.186.147 2 ... show more 2026-04-12 13:41:23,641 fail2ban.actions [1294183]: NOTICE [error-bots] Ban 20.100.186.147 2026-04-12 13:41:23,641 fail2ban.actions [1294183]: NOTICE [error-bots] Ban 20.100.186.147 2026-04-12 13:41:23,641 fail2ban.actions [1294183]: NOTICE [error-bots] Ban 20.100.186.147 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇩🇪 ghostwarriors	2026-05-01 00:24:36 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇫🇮 nNordic	2026-04-24 07:12:54 (1 month ago)	Connection attempt blocked by IDS/IPS from 20.100.186.147/32	Hacking
Anonymous	2026-04-19 19:47:24 (1 month ago)	$f2bV_matches	Brute-Force
🇪🇸 Gem	2026-04-17 22:11:27 (1 month ago)	Unauthorized web scan.	Web App Attack
🇩🇪 Holger	2026-04-15 07:02:55 (1 month ago)	WordPress WebAttack	Brute-Force Web App Attack
🇭🇺 DumaNet	2026-04-14 00:02:00 (1 month ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Apr 11. 20:56:48 Source IP: 20.100 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Apr 11. 20:56:48 Source IP: 20.100.186.147 Portion of the log(s): 20.100.186.147 - [11/Apr/2026:20:56:46 +0200] "GET /wp-content/themes/index.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:46 +0200] "GET /classwithtostring.php?p= HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:46 +0200] "GET /aaa.php?p= HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:46 +0200] "GET /plss3.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:45 +0200] "GET /xqq.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:45 +0200] "GET /wp-act.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:45 +0200] "GET /bless4.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:45 +0200] "GET /wp-admin/css/bolt.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:45 +0200] "GET /av.php HTTP/1.1" 404 153 "-" "-" 20.100.186.147 - [11/Apr/2026:20:56:45 show less	Web App Attack
🇫🇷 geot	2026-04-13 12:37:13 (1 month ago)	WordPress scanning bot	Hacking Bad Web Bot Web App Attack
🇵🇱 mkey	2026-04-13 08:14:16 (1 month ago)	[First: 2026-04-11 10:57:40/1s] HITS=3 WordPress probing activity	Port Scan Hacking Web App Attack
🇺🇸 chronos	2026-04-13 06:16:57 (1 month ago)	[AUTORAVALT][[13/04/2026 - 03:16:57 -03:00 UTC] Attack from [Microsoft Corporation] [20.100.186.147] ... show more [AUTORAVALT][[13/04/2026 - 03:16:57 -03:00 UTC] Attack from [Microsoft Corporation] [20.100.186.147] Action: BLocKed Hacking... Unauthorized attempts to access the server. Web App Attack -> Attempts to probe for or exploit installed web applications such as a CMS like WordPress/Drupal, e-commerce solutions, forum software, phpMyAdmin and various other software] ... show less	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2026-04-13 05:16:16 (1 month ago)	143 attacks on PHP URLs: GET /chosen.php HTTP/1.1	Web App Attack
Anonymous	2026-04-13 02:33:29 (1 month ago)	Portscan: TCP/80 (6x)	Port Scan
🇫🇷 Murazaki	2026-04-12 22:50:02 (1 month ago)	turn.balamb.fr 20.100.186.147 - - [12/Apr/2026:04:07:43 +0200] "GET /wp-content/plugins/hellopress/w ... show more turn.balamb.fr 20.100.186.147 - - [12/Apr/2026:04:07:43 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 503 190 "-" "-" "-" ... show less	Hacking
🇳🇱 oisecnet	2026-04-12 21:02:36 (1 month ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-04-12. 1 requests from this I ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-04-12. 1 requests from this IP. show less	Brute-Force Web App Attack SSH
🇵🇱 webadmin	2026-04-12 20:37:05 (1 month ago)	20.100.186.147 - - [12/Apr/2026:22:37:04 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 20.100.186.147 - - [12/Apr/2026:22:37:04 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 400 11126 "-" "-" 20.100.186.147 - - [12/Apr/2026:22:37:04 +0200] "GET /file6.php HTTP/1.1" 400 11126 "-" "-" 20.100.186.147 - - [12/Apr/2026:22:37:05 +0200] "GET //sl.php HTTP/1.1" 400 11126 "-" "-" 20.100.186.147 - - [12/Apr/2026:22:37:05 +0200] "GET /flox.php HTTP/1.1" 400 11126 "-" "-" 20.100.186.147 - - [12/Apr/2026:22:37:05 +0200] "GET /mff.php HTTP/1.1" 400 11126 "-" "-" ... show less	Web App Attack

Showing 1 to 15 of 366 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇬 197.38.152.186

🇺🇸 132.148.155.138

🇭🇰 123.58.213.117

🇮🇩 103.242.104.81

🇧🇩 103.86.198.253

🇺🇸 65.49.1.11

🇺🇸 40.124.173.94

🇧🇷 2800:1e0:1604:1:9999::210

🇬🇧 217.146.80.115

🇰🇭 202.79.29.108

🇭🇰 199.45.155.90

🇬🇧 198.244.168.175

🇹🇼 111.70.23.250

🇺🇸 172.210.53.193

🇺🇸 170.187.165.242

🇨🇳 124.235.238.222

🇳🇵 111.119.49.172

🇧🇬 91.191.209.74

🇺🇸 66.132.172.127

🇳🇱 45.198.224.138