JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.104.87.220

20.104.87.220 was found in our database!

This IP was reported 262 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.104.87.220

Whois 20.104.87.220

IP Abuse Reports for 20.104.87.220:

This IP address has been reported a total of 262 times from 185 distinct sources. 20.104.87.220 was first reported on March 1st 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 sc user	2026-03-09 11:02:27 (3 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇬🇧 sc user	2026-03-06 08:55:38 (3 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇹🇷 rtbh.com.tr	2026-03-04 20:11:52 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 sc user	2026-03-04 06:22:11 (3 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇳🇱 homeshowdomain.nl	2026-03-03 22:59:24 (3 months ago)	Auto-ban: 12 malicious requests on 2026-03-02 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 12 malicious requests on 2026-03-02 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇨🇦 saudetski	2026-03-03 12:02:05 (3 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: WordPress scanning show less	Bad Web Bot Web App Attack
🇧🇪 Ivo Vynckier	2026-03-03 09:45:00 (3 months ago)	- - [02/Mar/2026:18:51:26 +0100] "GET /wp-includes/js/crop/cropper.php HTTP/1.1" 404 2021 "-" "Mozi ... show more - - [02/Mar/2026:18:51:26 +0100] "GET /wp-includes/js/crop/cropper.php HTTP/1.1" 404 2021 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.104.87.220 - - [02/Mar/2026:18:51:26 +0100] "GET /wp-content/themes/ HTTP/1.1" 404 2021 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.104.87.220 - - [02/Mar/2026:18:51:26 +0100] "GET /wp-includes/ID3/ HTTP/1.1" 404 2021 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
Anonymous	2026-03-03 06:14:38 (3 months ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-03-03 06:14:23 (3 months ago)	1077 attacks on PHP URLs: GET /wp-includes/js/crop/cropper.php HTTP/1.1	Web App Attack
🇺🇸 octageeks.com	2026-03-03 05:06:13 (3 months ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇬🇧 andypiper	2026-03-03 02:01:09 (3 months ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇮🇹 mauri64	2026-03-03 00:30:42 (3 months ago)	Troppi errori Apache (141)	Hacking
🇩🇪 ketovoila.pl	2026-03-02 23:09:53 (3 months ago)	ketovoila.pl HONEYPOT traffic: count=35, paths=33; sample_path=ketovoila.pl/wp-admin/images/; UA=Moz ... show more ketovoila.pl HONEYPOT traffic: count=35, paths=33; sample_path=ketovoila.pl/wp-admin/images/; UA=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36; window=2026-03-02T17:52:24Z..2026-03-02T14:05:46Z show less	Port Scan Hacking Brute-Force
🇳🇱 homeshowdomain.nl	2026-03-02 23:00:56 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-02	Web App Attack SSH Hacking
🇩🇪 Vegascosmetics	2026-03-02 22:51:59 (3 months ago)	Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned	Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 262 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.161

🇺🇸 184.168.21.211

🇺🇸 173.255.235.198

🇳🇵 139.5.74.47

🇦🇺 92.113.135.188

🇸🇮 82.26.242.212

🇫🇷 51.75.236.153

🇺🇸 2001:470:1:332::183

🇮🇷 188.213.192.237

🇪🇨 181.198.252.165

🇲🇾 180.75.254.39

🇺🇸 173.211.69.137

🇳🇱 157.245.73.197

🇧🇩 131.186.50.157

🇨🇩 102.216.240.61

🇺🇸 65.49.1.119

🇺🇸 64.62.156.163

🇫🇷 51.75.236.140

🇺🇸 45.61.121.242

🇺🇸 45.59.161.61