JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.151.222.215

20.151.222.215 was found in our database!

This IP was reported 310 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.151.222.215

Whois 20.151.222.215

IP Abuse Reports for 20.151.222.215:

This IP address has been reported a total of 310 times from 253 distinct sources. 20.151.222.215 was first reported on May 23rd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 MyGlobalFlowers	2026-05-23 18:44:19 (1 week ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-05-23 18:37:16 (1 week ago)	[ns65.kdns.gr] httpd-404: sites=global; logs=/var/log/httpd/access_log; samples=/wp-content/plugins/ ... show more [ns65.kdns.gr] httpd-404: sites=global; logs=/var/log/httpd/access_log; samples=/wp-content/plugins/hellopress/wp_filemanager.php \| /public/wp-blog.php \| /wp-blog.php show less	Web App Attack
🇮🇹 madaello	2026-05-23 18:28:53 (1 week ago)	20.151.222.215 - - [23/May/2026:20:28:46 +0200] "GET /public/wp-blog.php HTTP/1.1" 404 94573 "-" "-" ... show more 20.151.222.215 - - [23/May/2026:20:28:46 +0200] "GET /public/wp-blog.php HTTP/1.1" 404 94573 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:47 +0200] "GET /wp-blog.php HTTP/1.1" 404 94552 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:47 +0200] "GET /casp1.php HTTP/1.1" 404 94546 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:48 +0200] "GET /ws78.php HTTP/1.1" 404 94543 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:49 +0200] "GET /koiy.php HTTP/1.1" 404 94543 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:49 +0200] "GET /wp-png.php HTTP/1.1" 404 94549 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:50 +0200] "GET /xa.php HTTP/1.1" 404 94537 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:51 +0200] "GET /press.php HTTP/1.1" 404 94546 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:51 +0200] "GET /ws88.php HTTP/1.1" 404 94543 "-" "-" 20.151.222.215 - - [23/May/2026:20:28:52 +0200] "GET /wxfyf.php HTTP/1.1" 404 94546 "-" "-" ... show less	Web App Attack
🇫🇷 Pölkky	2026-05-23 18:28:02 (1 week ago)	WordPress Vulnerability Probe	Web App Attack
🇮🇪 kundukundu	2026-05-23 18:22:20 (1 week ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/hellopress/wp_filemanager ... show more [Drupal AbuseIPDB module] Request path is blacklisted. /wp-content/plugins/hellopress/wp_filemanager.php show less	Web App Attack
🇩🇪 on-com	2026-05-23 18:10:59 (1 week ago)	URL scan	Brute-Force Web App Attack
Anonymous	2026-05-23 18:10:03 (1 week ago)	\| [Normal/Canada] Aggressive IP 20.151.222.215 (~350 hits). Type: DoS Defender- Web server 400 error ... show more \| [Normal/Canada] Aggressive IP 20.151.222.215 (~350 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇩🇪 HoneyPotFRI	2026-05-23 18:08:04 (1 week ago)	20.151.222.215 - - [23/May/2026:20:07:48 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 20.151.222.215 - - [23/May/2026:20:07:48 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 153 "-" "-" 20.151.222.215 fri.dns.[redacted] (8075-MICROSOFT-CORP-MSN-AS-BLOCK Cana ... show less	Bad Web Bot Web App Attack
Anonymous	2026-05-23 18:07:23 (1 week ago)		Web App Attack
🇨🇭 4server	2026-05-23 17:59:11 (1 week ago)	[SatMay2319:59:08.4294742026][security2:error][pid3410427:tid3410714][client20.151.222.215:0]ModSecu ... show more [SatMay2319:59:08.4294742026][security2:error][pid3410427:tid3410714][client20.151.222.215:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(filemanager\\|wp-file-manager\\|elfinder\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"442\"][id\"980500\"][msg\"WordPressfilemanagerexploitattempt\"][hostname\"autodiscover.mondialtrade.ch\"][uri\"/wp-content/plugins/hellopress/wp_filemanager.php\"][unique_id\"ahHq7CtnyM4DnqPChGHNeQAAAJM\"] show less	Hacking Web App Attack
🇫🇮 Christopher Hughes	2026-05-23 17:56:14 (1 week ago)	[Sat May 23 18:56:12.540133 2026] [proxy_fcgi:error] [pid 4104922:tid 139774123824704] [client 20.15 ... show more [Sat May 23 18:56:12.540133 2026] [proxy_fcgi:error] [pid 4104922:tid 139774123824704] [client 20.151.222.215:27669] AH01071: Got error 'Primary script unknown' [Sat May 23 18:56:12.903395 2026] [proxy_fcgi:error] [pid 4104922:tid 139774115432000] [client 20.151.222.215:27669] AH01071: Got error 'Primary script unknown' [Sat May 23 18:56:13.171658 2026] [proxy_fcgi:error] [pid 4104922:tid 139774098646592] [client 20.151.222.215:27669] AH01071: Got error 'Primary script unknown' [Sat May 23 18:56:13.451304 2026] [proxy_fcgi:error] [pid 4104922:tid 139774761342528] [client 20.151.222.215:27669] AH01071: Got error 'Primary script unknown' [Sat May 23 18:56:13.717241 2026] [proxy_fcgi:error] [pid 4104922:tid 139774258042432] [client 20.151.222.215:27669] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇬🇧 cybersteve99	2026-05-23 17:55:38 (1 week ago)	Too many 4xx Requests -	Brute-Force Web App Attack
🇳🇱 MM-bot	2026-05-23 17:48:40 (1 week ago)	URL-probe: HTTP/1.1 GET request on /wp-content/plugins/hellopress/wp_filemanager.php (2026-05-23 19: ... show more URL-probe: HTTP/1.1 GET request on /wp-content/plugins/hellopress/wp_filemanager.php (2026-05-23 19:48:40 UTC+2) show less	Web App Attack Hacking
🇳🇱 JCB	2026-05-23 17:40:00 (1 week ago)	20.151.222.215 - - [23/May/2026:20:24:54 +0300] "GET /casp1.php HTTP/1.1" 404 456 "-" "-" 20.151.22 ... show more 20.151.222.215 - - [23/May/2026:20:24:54 +0300] "GET /casp1.php HTTP/1.1" 404 456 "-" "-" 20.151.222.215 - - [23/May/2026:20:24:54 +0300] "GET /ws78.php HTTP/1.1" 404 456 "-" "-" ... show less	Web App Attack
🇫🇮 Christopher Hughes	2026-05-23 17:35:58 (1 week ago)	[Sat May 23 18:35:57.317005 2026] [proxy_fcgi:error] [pid 4105028:tid 139774224471616] [client 20.15 ... show more [Sat May 23 18:35:57.317005 2026] [proxy_fcgi:error] [pid 4105028:tid 139774224471616] [client 20.151.222.215:9109] AH01071: Got error 'Primary script unknown' [Sat May 23 18:35:57.589157 2026] [proxy_fcgi:error] [pid 4105028:tid 139773687600704] [client 20.151.222.215:9109] AH01071: Got error 'Primary script unknown' [Sat May 23 18:35:57.856593 2026] [proxy_fcgi:error] [pid 4105028:tid 139773721171520] [client 20.151.222.215:9109] AH01071: Got error 'Primary script unknown' [Sat May 23 18:35:58.123076 2026] [proxy_fcgi:error] [pid 4105028:tid 139774895560256] [client 20.151.222.215:9109] AH01071: Got error 'Primary script unknown' [Sat May 23 18:35:58.390231 2026] [proxy_fcgi:error] [pid 4105028:tid 139775025616448] [client 20.151.222.215:9109] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack

Showing 106 to 120 of 310 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:80d:1007::27

🇨🇳 116.169.58.202

🇨🇳 115.190.126.161

🇻🇳 103.200.25.198

🇩🇪 213.209.159.236

🇩🇿 197.140.18.248

🇳🇱 195.178.110.30

🇳🇱 195.178.110.3

🇮🇳 103.91.246.73

🇭🇰 94.74.106.57

🇳🇱 89.248.167.131

🇺🇸 66.132.172.250

🇳🇱 31.14.32.6

🇧🇷 205.210.31.144

🇩🇪 193.124.20.233

🇮🇩 180.247.58.175

🇫🇷 173.212.228.191

🇵🇰 153.117.15.73

🇭🇰 152.32.213.68

🇮🇹 151.95.83.235