JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.151.217.82

20.151.217.82 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.151.217.82

Whois 20.151.217.82

IP Abuse Reports for 20.151.217.82:

This IP address has been reported a total of 129 times from 111 distinct sources. 20.151.217.82 was first reported on June 20th 2026, and the most recent report was 4 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 poundawebsiteltd	2026-06-20 15:07:51 (4 minutes ago)	Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 20.151.217.82 - - [20/Jun/2026:16:07:49 ... show more Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 20.151.217.82 - - [20/Jun/2026:16:07:49 +0100] GET //adminfuns.php HTTP/1.1 403 158 - - show less	Web App Attack
🇬🇷 setupgr	2026-06-20 15:03:28 (8 minutes ago)	(mod_security) mod_security (id:1000001) triggered by 20.151.217.82 (CA/Canada/Ontario/Toronto/-/[AS ... show more (mod_security) mod_security (id:1000001) triggered by 20.151.217.82 (CA/Canada/Ontario/Toronto/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 18:03:27.487149 2026] [security2:error] [pid 202885:tid 202931] [client 20.151.217.82:19338] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/wp-content/plugins/hellopress/wp_filemanager.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "93"] [id "1000001"] [msg "Bad file blocked: /wp-content/plugins/hellopress/wp_filemanager.php"] [severity "CRITICAL"] [tag "security"] [hostname "mail.villa-izabela.com"] [uri "/wp-content/plugins/hellopress/wp_filemanager.php"] [unique_id "ajarv0rlp52aw72Tw8f3VwAAARM"] show less	Port Scan
🇧🇪 taivas.nl	2026-06-20 15:02:12 (10 minutes ago)	Site scraper	Web App Attack
🇳🇱 bazter.pro	2026-06-20 14:59:54 (12 minutes ago)	20.151.217.82 - - [20/Jun/2026:14:59:53 +0000] "GET /wp-admin/css/colors/coffee/wp-adochan.php HTTP/ ... show more 20.151.217.82 - - [20/Jun/2026:14:59:53 +0000] "GET /wp-admin/css/colors/coffee/wp-adochan.php HTTP/1.1" 404 456 "-" "-" ... show less	Port Scan Brute-Force Bad Web Bot Web App Attack SSH
🇳🇱 i-turnradio.nl	2026-06-20 14:58:48 (13 minutes ago)	2026-06-20 @ 16:58:48 (CET) ~ Blocked for trying to access: /wp-content/plugins/hellopress/wp_filema ... show more 2026-06-20 @ 16:58:48 (CET) ~ Blocked for trying to access: /wp-content/plugins/hellopress/wp_filemanager.php show less	Web App Attack
🇬🇧 Mendip_Defender	2026-06-20 14:57:57 (14 minutes ago)	20.151.217.82 - - [20/Jun/2026:15:57:46 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.217.82 - - [20/Jun/2026:15:57:46 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-" 20.151.217.82 - - [20/Jun/2026:15:57:49 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 5003 "-" "-" 20.151.217.82 - - [20/Jun/2026:15:57:50 +0100] "GET /this_is_a_new_hello_world.php HTTP/1.1" 301 162 "-" "-" ... show less	Hacking Web App Attack
🇺🇸 nasset	2026-06-20 14:57:28 (14 minutes ago)	20.151.217.82 - - [20/Jun/2026:07:57:26 -0700] "GET /file52.php HTTP/1.1" 403 584 "-" "-" 20.151.217 ... show more 20.151.217.82 - - [20/Jun/2026:07:57:26 -0700] "GET /file52.php HTTP/1.1" 403 584 "-" "-" 20.151.217.82 - - [20/Jun/2026:07:57:26 -0700] "GET /122.php HTTP/1.1" 403 584 "-" "-" 20.151.217.82 - - [20/Jun/2026:07:57:27 -0700] "GET /green1.php HTTP/1.1" 403 584 "-" "-" 20.151.217.82 - - [20/Jun/2026:07:57:27 -0700] "GET /sukce.php HTTP/1.1" 403 584 "-" "-" 20.151.217.82 - - [20/Jun/2026:07:57:28 -0700] "GET /xb.php HTTP/1.1" 403 584 "-" "-" ... show less	Bad Web Bot Web App Attack
🇨🇭 ca	2026-06-20 14:55:30 (16 minutes ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇺🇸 paulo.apoloni	2026-06-20 14:53:10 (19 minutes ago)	20.151.217.82 - - [20/Jun/2026:11:36:00 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.217.82 - - [20/Jun/2026:11:36:00 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" 20.151.217.82 - - [20/Jun/2026:11:36:04 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" 20.151.217.82 - - [20/Jun/2026:11:36:06 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" 20.151.217.82 - - [20/Jun/2026:11:36:07 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" 20.151.217.82 - - [20/Jun/2026:11:53:09 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" ... show less	Bad Web Bot Web App Attack
🇫🇷 pm33	2026-06-20 14:51:09 (21 minutes ago)	Excessive crawling HTTP 404	Web App Attack
Anonymous	2026-06-20 14:50:33 (21 minutes ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/hellopress/wp_filemanager ... show more [Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/hellopress/wp_filemanager.php show less	Web App Attack
🇩🇪 rh24	2026-06-20 14:50:29 (21 minutes ago)	(mod_security) mod_security triggered on hostname [redacted] 20.151.217.82 (CA/Canada/-)	SQL Injection
🇫🇷 sthoyer.de	2026-06-20 14:49:56 (22 minutes ago)	20.151.217.82 - - [20/Jun/2026:16:49:54 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.151.217.82 - - [20/Jun/2026:16:49:54 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 302 794 "-" "-" 20.151.217.82 - - [20/Jun/2026:16:49:55 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 302 794 "-" "-" ... show less	Web App Attack
🇨🇦 ISPLtd	2026-06-20 14:46:08 (26 minutes ago)	20.151.217.82 - - [20/Jun/2026:11:46:06 -0300] "GET /error_log.php 20.151.217.82 - - [20/Jun/2026:11 ... show more 20.151.217.82 - - [20/Jun/2026:11:46:06 -0300] "GET /error_log.php 20.151.217.82 - - [20/Jun/2026:11:46:07 -0300] "GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php?p= ... show less	Hacking Web App Attack
🇬🇧 rakkor	2026-06-20 14:41:51 (30 minutes ago)	2026-06-20T15:41:49+01:00 NAS [Sat Jun 20 15:41:49.773150 2026] [proxy_fcgi:error] [pid 10542:tid 10 ... show more 2026-06-20T15:41:49+01:00 NAS [Sat Jun 20 15:41:49.773150 2026] [proxy_fcgi:error] [pid 10542:tid 10564] [client 20.151.217.82:34208] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force Hacking

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.17.217.141

🇺🇸 162.216.149.194

🇮🇳 159.89.172.177

🇮🇳 152.52.236.122

🇧🇷 129.159.56.14

🇨🇭 107.189.7.144

🇸🇿 102.222.132.206

🇺🇸 47.251.249.71

🇳🇱 45.148.10.230

🇨🇳 39.144.130.8

🇮🇶 37.77.55.248

🇩🇪 2400:cb00:636:1000:f6b8:ffc0:2561:27b7

🇵🇱 212.87.249.99

🇺🇸 195.184.76.7

🇨🇳 183.135.5.172

🇺🇸 134.122.11.130

🇨🇭 35.216.144.195

🇳🇱 176.65.148.244

🇺🇸 154.83.197.167

🇩🇪 91.194.84.12