JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.151.106.59

20.151.106.59 was found in our database!

This IP was reported 71 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.151.106.59

Whois 20.151.106.59

IP Abuse Reports for 20.151.106.59:

This IP address has been reported a total of 71 times from 62 distinct sources. 20.151.106.59 was first reported on June 20th 2026, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 VanKoh	2026-06-21 07:27:52 (14 hours ago)	20.151.106.59 - - [21/Jun/2026:01:27:47 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.106.59 - - [21/Jun/2026:01:27:47 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-" 20.151.106.59 - - [21/Jun/2026:01:27:51 -0600] "GET /this_is_a_new_hello_world.php HTTP/1.1" 301 162 "-" "-" 20.151.106.59 - - [21/Jun/2026:01:27:51 -0600] "GET /deals1.php HTTP/1.1" 301 162 "-" "-" ... show less	Port Scan Web App Attack
🇬🇧 Apache	2026-06-21 07:12:39 (14 hours ago)	(mod_security) mod_security (id:20000010) triggered by 20.151.106.59 (CA/Canada/-): 5 in the last 30 ... show more (mod_security) mod_security (id:20000010) triggered by 20.151.106.59 (CA/Canada/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-06-21 07:09:32 (14 hours ago)	20.151.106.59 - - [21/Jun/2026:10:09:31 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.106.59 - - [21/Jun/2026:10:09:31 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 706 "-" "-" ... show less	Web App Attack
🇮🇩 zam	2026-06-21 06:54:06 (14 hours ago)	20.151.106.59 - - [21/Jun/2026:06:53:55 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.106.59 - - [21/Jun/2026:06:53:55 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 81174 20.151.106.59 - - [21/Jun/2026:06:53:57 +0000] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 81174 20.151.106.59 - - [21/Jun/2026:06:53:58 +0000] "GET /x.php HTTP/1.1" 404 81174 20.151.106.59 - - [21/Jun/2026:06:53:59 +0000] "GET /wss.php HTTP/1.1" 404 81174 20.151.106.59 - - [21/Jun/2026:06:54:00 +0000] "GET /ty.php HTTP/1.1" 404 81174 {"log":"20.151.106.59 - - [21/Jun/2026:06:54:00 +0000] "GET show less	Web App Attack
🇺🇸 jormaster3k	2026-06-21 05:15:40 (16 hours ago)	Attack against Apache (too many 404s)	Web App Attack
🇮🇩 Burayot	2026-06-21 05:00:50 (16 hours ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.151.106.59 (CA/Canada/-): 2 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.151.106.59 (CA/Canada/-): 2 in the last 3600 secs show less	Web App Attack
🇧🇪 taivas.nl	2026-06-21 04:32:32 (17 hours ago)	Many_bad_calls	Web App Attack
🇩🇪 LRob.fr	2026-06-21 04:15:08 (17 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇩🇪 BlueWire Hosting	2026-06-21 03:59:10 (17 hours ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
🇵🇱 webadmin	2026-06-21 03:31:52 (18 hours ago)	20.151.106.59 - - [21/Jun/2026:05:31:42 +0200] "GET /wp-includes/sodium_compat/ HTTP/1.1" 400 25 "-" ... show more 20.151.106.59 - - [21/Jun/2026:05:31:42 +0200] "GET /wp-includes/sodium_compat/ HTTP/1.1" 400 25 "-" "-" (es.inweo.eu / es.inweo.eu) 20.151.106.59 - - [21/Jun/2026:05:31:43 +0200] "GET /wp-content/uploads/ HTTP/1.1" 400 25 "-" "-" (es.inweo.eu / es.inweo.eu) 20.151.106.59 - - [21/Jun/2026:05:31:43 +0200] "GET /wp-includes/Text/ HTTP/1.1" 400 25 "-" "-" (es.inweo.eu / es.inweo.eu) 20.151.106.59 - - [21/Jun/2026:05:31:47 +0200] "GET //wp-includes/assets/ HTTP/1.1" 400 25 "-" "-" (es.inweo.eu / es.inweo.eu) 20.151.106.59 - - [21/Jun/2026:05:31:51 +0200] "GET /wp-includes/blocks/details/ HTTP/1.1" 400 25 "-" "-" (es.inweo.eu / es.inweo.eu) show less	Web App Attack
🇷🇴 INTEQ	2026-06-21 03:23:14 (18 hours ago)	Web attack from 20.151.106.59	Web App Attack
Anonymous	2026-06-21 03:05:54 (18 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-21 02:44:14 (19 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2026-06-21 02:28:55 (19 hours ago)	(caddyscan) Scanner path probe from 20.151.106.59 (CA/Canada/-): 5 in the last 3600 secs; Ports: ; ... show more (caddyscan) Scanner path probe from 20.151.106.59 (CA/Canada/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 20.151.106.59 - - [21/Jun/2026:02:28:11 +0000] "GET /wp-admin/js/ HTTP/1.1" [REDACTED] 200 2627 20.151.106.59 - - [21/Jun/2026:02:28:23 +0000] "GET /wp-admin/css/colour.php HTTP/1.1" [REDACTED] 200 2627 20.151.106.59 - - [21/Jun/2026:02:28:31 +0000] "GET /wordpress/wp-admin/maint/ HTTP/1.1" [REDACTED] 200 2627 20.151.106.59 - - [21/Jun/2026:02:28:50 +0000] "GET /wp-admin/css/ HTTP/1.1" [REDACTED] 200 2627 20.151.106.59 - - [21/Jun/2026:02:28:50 +0000] "GET /wp-admin/css/colors/modern/ HTTP/1.1" show less	Port Scan
🇺🇦 URAN Publishing Service	2026-06-21 02:08:43 (19 hours ago)	20.151.106.59 - - [21/Jun/2026:05:08:24 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.106.59 - - [21/Jun/2026:05:08:24 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 4675 "-" "-" 20.151.106.59 - - [21/Jun/2026:05:08:42 +0300] "GET /wp-includes/blocks/post-comments-form/ HTTP/1.1" 404 650 "-" "-" ... show less	Web App Attack

Showing 1 to 15 of 71 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 103.75.182.108

🇺🇸 2604:a880:400:d1:0:4:9e7a:1

🇬🇧 193.163.125.53

🇵🇱 185.238.72.3

🇵🇦 181.197.87.49

🇳🇱 178.16.55.50

🇨🇳 111.53.0.169

🇨🇳 106.15.238.36

🇩🇪 45.157.232.139

🇺🇸 44.20.1.56

🇺🇸 20.163.14.234

🇨🇳 223.73.64.232

🇩🇪 207.241.172.187

🇸🇻 190.150.64.241

🇨🇴 190.108.76.179

🇺🇸 147.185.132.229

🇻🇳 113.178.80.21

🇺🇦 91.90.11.145

🇮🇪 86.43.97.121

🇩🇪 69.5.169.54