JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.104.24.244

20.104.24.244 was found in our database!

This IP was reported 244 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.104.24.244

Whois 20.104.24.244

IP Abuse Reports for 20.104.24.244:

This IP address has been reported a total of 244 times from 208 distinct sources. 20.104.24.244 was first reported on February 20th 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 kundukundu	2026-06-02 13:47:09 (1 day ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/hellopress/wp_filemanager ... show more [Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/hellopress/wp_filemanager.php show less	Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-02 13:46:01 (1 day ago)	(mod_security-custom) mod_security (id:210492) triggered by 20.104.24.244 (CA/Canada/Ontario/Toronto ... show more (mod_security-custom) mod_security (id:210492) triggered by 20.104.24.244 (CA/Canada/Ontario/Toronto/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 1 in the last 3600 secs (0-srv1) show less	Hacking
🇧🇪 Saec	2026-06-02 13:45:04 (1 day ago)	Cloudflare WAF blocked 113 requests in 1h from CA. Top paths probed: /api/index.php/status, /, /api/ ... show more Cloudflare WAF blocked 113 requests in 1h from CA. Top paths probed: /api/index.php/status, /, /api/honeypot/hit. Pattern: bot/scanner abuse. Auto-reported by Jarvis CF monitor. show less	Brute-Force Web App Attack
🇩🇪 pltcldvlpr	2026-06-02 13:40:28 (1 day ago)	CMS/framework probe: 20.104.24.244 - - [02/Jun/2026:15:40:28 +0200] "GET /wp-content/plugins/hellopr ... show more CMS/framework probe: 20.104.24.244 - - [02/Jun/2026:15:40:28 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 178 "-" "-" asn=8075 org="Microsoft Corporation" country=CA ... show less	Web App Attack
🇺🇸 agenciahypelab.com.br	2026-06-02 13:36:46 (1 day ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇦🇺 2000cn.com.au	2026-06-02 13:33:36 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇺🇸 WellSpring	2026-06-02 13:30:32 (1 day ago)	wordpress scan on 760.today/wp-content/plugins/hellopress/wp_filemanager.php — WellSpr.ing/NetSentin ... show more wordpress scan on 760.today/wp-content/plugins/hellopress/wp_filemanager.php — WellSpr.ing/NetSentinel civic-AI security layer show less	Bad Web Bot Web App Attack
🇩🇰 RhQM	2026-06-02 13:23:52 (1 day ago)		Bad Web Bot Exploited Host Web App Attack
🇩🇪 Nevermind	2026-06-02 13:19:00 (1 day ago)	20.104.24.244 - - [02/Jun/2026:15:18:58 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.104.24.244 - - [02/Jun/2026:15:18:58 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 4203 "-" "-" 20.104.24.244 - - [02/Jun/2026:15:18:59 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 3991 "-" "-" 20.104.24.244 - - [02/Jun/2026:15:18:59 +0200] "GET /41.php HTTP/1.1" 404 3991 "-" "-" 20.104.24.244 - - [02/Jun/2026:15:18:59 +0200] "GET /666.php HTTP/1.1" 404 3991 "-" "-" ... show less	Web App Attack
Anonymous	2026-06-02 13:13:45 (1 day ago)	fail2ban: Sensitive web probes detected	Web App Attack
🇫🇷 AGEPCom	2026-06-02 13:05:46 (1 day ago)	Smart-Ban: IP bannie via score AbuseIPDB	Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-02 13:05:11 (1 day ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.104.24.244 (CA/Canada/-): 1 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.104.24.244 (CA/Canada/-): 1 in the last 3600 secs show less	Web App Attack
🇳🇿 Tripwire	2026-06-02 13:03:53 (1 day ago)	Scanning for exploits - /wp-content/plugins/hellopress/wp_filemanager.php	Hacking Web App Attack
🇩🇪 Martin Lundstrom	2026-06-02 12:59:12 (1 day ago)	https://www.eagleeye-intelligence.com — Webshell scan (3+ hits). Automatically detected and blocked.	Web App Attack
Anonymous	2026-06-02 12:55:18 (1 day ago)	20.104.24.244 - - [02/Jun/2026:12:55:15 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.104.24.244 - - [02/Jun/2026:12:55:15 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 162 "-" "-" ... show less	Bad Web Bot Web App Attack

Showing 46 to 60 of 244 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.142.24.17

🇺🇸 50.116.72.139

🇳🇱 45.148.10.157

🇻🇳 27.79.4.89

🇰🇷 222.119.187.182

🇬🇹 190.148.112.242

🇧🇷 187.34.229.25

🇬🇧 185.116.173.34

🇩🇪 178.128.207.138

🇩🇪 167.94.146.77

🇵🇰 160.30.142.209

🇺🇸 136.144.33.108

🇮🇳 122.166.223.194

🇨🇳 120.48.50.133

🇮🇳 111.92.89.89

🇨🇳 106.52.234.132

🇲🇦 105.158.100.18

🇭🇰 103.231.14.54

🇨🇳 101.76.248.214

🇷🇴 92.118.39.234