JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.151.0.161

20.151.0.161 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.151.0.161

Whois 20.151.0.161

IP Abuse Reports for 20.151.0.161:

This IP address has been reported a total of 114 times from 84 distinct sources. 20.151.0.161 was first reported on June 9th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-10 06:04:09 (3 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: WordPress scanning, Webshell probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-06-10 05:14:17 (3 days ago)	104 attacks on PHP URLs: GET /wp-conffg.php HTTP/1.1	Web App Attack
🇬🇧 andypiper	2026-06-10 01:01:33 (3 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:11 (4 days ago)	Auto-ban: >3000 req/min op 2026-06-09	Web App Attack SSH Hacking
Anonymous	2026-06-09 20:22:10 (4 days ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
🇸🇬 serverutama	2026-06-09 18:03:05 (4 days ago)	Nginx scanner: 20.151.0.161 - - [10/Jun/2026:00:12:05 +0700] "GET /wp-content/plugins/hellopress/wp_ ... show more Nginx scanner: 20.151.0.161 - - [10/Jun/2026:00:12:05 +0700] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-" "-" 20.151.0.161 - - [10/Jun/2026:00:12:09 +0700] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" "-" show less	Web App Attack Bad Web Bot
🇩🇪 itsolon	2026-06-09 16:05:25 (4 days ago)	[09/Jun/2026:15:57:55 +0200] 178101347587.170173 20.151.0.161 0 217.154.7.177 443 [09/Jun/2026:15:57 ... show more [09/Jun/2026:15:57:55 +0200] 178101347587.170173 20.151.0.161 0 217.154.7.177 443 [09/Jun/2026:15:57:55 +0200] 178101347590.165906 20.151.0.161 0 217.154.7.177 443 [09/Jun/2026:15:57:56 +0200] 178101347627.113894 20.151.0.161 0 217.154.7.177 443 [09/Jun/2026:15:57:57 +0200] 178101347780.098859 20.151.0.161 13332 217.154.7.177 80 [09/Jun/2026:15:58:00 +0200] 17810134802.425426 20.151.0.161 0 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇩🇪 Viveronese	2026-06-09 15:31:25 (4 days ago)	HTTP vulnerability scanning	Web App Attack
🇬🇧 Axel	2026-06-09 14:35:24 (4 days ago)	Blocked by ModSecurity. Rule ID: 210730 Message: COMODO WAF: URL file extension is restricted by pol ... show more Blocked by ModSecurity. Rule ID: 210730 Message: COMODO WAF: URL file extension is restricted by policy\|\|catboy.host\|F\|2 Phase: 2 Severity: CRITICAL URI: /php.ini Server: UK-01 show less	Web App Attack Hacking SQL Injection
Anonymous	2026-06-09 14:23:52 (4 days ago)	Portscan: TCP/80 (5x), TCP/443	Port Scan
🇺🇦 URAN Publishing Service	2026-06-09 14:13:38 (4 days ago)	20.151.0.161 - - [09/Jun/2026:17:13:37 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.151.0.161 - - [09/Jun/2026:17:13:37 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 706 "-" "-" ... show less	Web App Attack
Anonymous	2026-06-09 14:04:37 (4 days ago)	(PERMBLOCK) 20.151.0.161 (CA/Canada/-) has had more than 4 temp blocks in the last 86400 secs; Ports ... show more (PERMBLOCK) 20.151.0.161 (CA/Canada/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇫🇮 as211431.net	2026-06-09 14:03:27 (4 days ago)	Triggered Cloudflare WAF (firewallManaged) from CA. Action taken: BLOCK Protocol: HTTP/1.1 (GET meth ... show more Triggered Cloudflare WAF (firewallManaged) from CA. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-config.php UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Trueforce Threat Report	2026-06-09 14:02:57 (4 days ago)	Automated report, trolling for resource vulnerabilities	Bad Web Bot Web App Attack
🇸🇬 pusathosting.com	2026-06-09 13:50:04 (4 days ago)	24ds22 bruteforce	Brute-Force Web App Attack

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 212.73.148.40

🇧🇩 103.120.202.26

🇷🇴 89.121.255.194

🇧🇷 45.5.222.112

🇷🇺 178.207.252.68

🇺🇸 143.244.175.206

🇺🇸 143.244.166.49

🇸🇬 128.199.158.135

🇺🇦 128.0.104.44

🇳🇱 91.92.40.52

🇺🇸 77.220.195.109

🇳🇱 45.148.10.152

🇺🇸 20.127.155.221

🇺🇸 20.98.140.180

🇮🇳 13.200.181.89

🇸🇬 8.219.8.65

🇺🇸 205.210.31.68

🇲🇽 189.217.130.86

🇺🇸 165.154.254.163

🇬🇧 87.106.35.227