JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.17.160.49

20.17.160.49 was found in our database!

This IP was reported 63 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇲🇾 Malaysia
City	Kuala Lumpur, Kuala Lumpur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.17.160.49

Whois 20.17.160.49

IP Abuse Reports for 20.17.160.49:

This IP address has been reported a total of 63 times from 46 distinct sources. 20.17.160.49 was first reported on March 18th 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 IRISIO	2026-03-27 10:40:43 (2 months ago)	scans/SQL injection/spam posts : 959 queries	Web App Attack SQL Injection
🇩🇪 FeG Deutschland	2026-03-27 00:15:04 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 mw	2026-03-27 00:00:18 (2 months ago)	GET /wp-admin/css/ HTTP/1.1	Web App Attack
🇧🇷 Peregrine	2026-03-26 20:58:35 (2 months ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 20.17.160.49 172.70.93.12 - - [20/Mar/2026:22:26:26 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 20.17.160.49 172.70.93.12 - - [20/Mar/2026:22:26:26 -0300] "GET /wp-admin/css/ HTTP/1.1" 404 414 show less	Bad Web Bot
🇨🇭 blinx	2026-03-26 16:24:20 (2 months ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-03-26 10:42:52 (2 months ago)	Web vulnerability probing: /wp-admin/css/	Web App Attack
Anonymous	2026-03-26 09:31:25 (2 months ago)	Malicious activity detected	Hacking Web App Attack
🇨🇿 huginet	2026-03-26 08:20:19 (2 months ago)	20.17.160.49 - - [26/Mar/2026:09:19:44 +0100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fcentrum-e ... show more 20.17.160.49 - - [26/Mar/2026:09:19:44 +0100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fcentrum-eko-likvidace.org%2Fwp-admin%2Fnetwork%2F&reauth=1 HTTP/1.1" 200 9889 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 20.17.160.49 - - [26/Mar/2026:09:20:18 +0100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fcentrum-eko-likvidace.org%2Fwp-admin%2Fuser%2F&reauth=1 HTTP/1.1" 200 9883 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" ... show less	Web Spam Blog Spam Hacking Bad Web Bot Web App Attack
🇫🇷 giulio gorobey	2026-03-26 06:49:08 (2 months ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/css	Web App Attack
🇲🇾 Rizzy	2026-03-26 06:06:05 (2 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇬🇧 consul.to	2026-03-26 05:05:38 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 rdpguard.com	2026-03-26 01:21:29 (2 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇧🇷 Peregrine	2026-03-25 11:41:25 (2 months ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 20.17.160.49 172.70.93.12 - - [20/Mar/2026:22:26:26 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 20.17.160.49 172.70.93.12 - - [20/Mar/2026:22:26:26 -0300] "GET /wp-admin/css/ HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇪 Ivo Vynckier	2026-03-25 10:39:00 (2 months ago)	20.17.160.49 - - [23/Mar/2026:23:15:21 +0100] "GET /wp-admin/css/ HTTP/1.1" 301 300 "binance.com" "M ... show more 20.17.160.49 - - [23/Mar/2026:23:15:21 +0100] "GET /wp-admin/css/ HTTP/1.1" 301 300 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" show less	Web App Attack
🇩🇪 Starburst SysOp Team	2026-03-24 19:15:05 (2 months ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 49.160.17.20.rbl.malwar ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 49.160.17.20.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-nue6-2) show less	Hacking

Showing 1 to 15 of 63 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 191.5.31.61

🇬🇧 188.240.59.18

🇵🇹 95.94.205.12

🇧🇪 74.125.47.152

🇦🇺 74.91.200.217

🇺🇸 65.49.1.170

🇸🇬 47.84.142.63

🇳🇱 45.148.10.141

🇺🇸 43.173.69.147

🇧🇪 34.140.87.116

🇺🇸 24.9.174.112

🇺🇸 2602:80d:1007::50

🇺🇸 209.85.215.174

🇩🇪 194.213.13.246

🇩🇪 167.94.146.36

🇰🇷 119.209.12.20

🇻🇳 116.99.168.163

🇨🇳 114.67.252.10

🇺🇸 72.10.32.138

🇮🇳 66.116.205.19