JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.195.192.35

20.195.192.35 was found in our database!

This IP was reported 306 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.195.192.35

Whois 20.195.192.35

IP Abuse Reports for 20.195.192.35:

This IP address has been reported a total of 306 times from 249 distinct sources. 20.195.192.35 was first reported on May 24th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gurnip	2026-05-24 12:28:21 (1 week ago)	Vulnerability probe of page /wp-content/plugins/hellopress/wp_filemanager.php, not found on server.	Brute-Force Web App Attack
🇩🇪 todix	2026-05-24 12:21:39 (1 week ago)	Web App Attack Exploid from 20.195.192.35	Web App Attack
🇬🇧 poundawebsiteltd	2026-05-24 12:18:41 (1 week ago)	Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 20.195.192.35 - - [24/May/2026:13:18:39 ... show more Apache 403 Forbidden Access. Evidence: [REDACTED_DOMAIN]:80 20.195.192.35 - - [24/May/2026:13:18:39 +0100] GET //wp-includes/block-bindings/ HTTP/1.1 403 158 - - show less	Web App Attack
🇵🇱 strefapi_com	2026-05-24 12:14:11 (1 week ago)	Brute-force on web app ...	Brute-Force Web App Attack
🇱🇹 NotACaptcha	2026-05-24 12:13:25 (1 week ago)	webserver:80 [24/May/2026] "GET /ops.php HTTP/1.1" 404 155 webserver:80 [24/May/2026] "GET /201.ph ... show more webserver:80 [24/May/2026] "GET /ops.php HTTP/1.1" 404 155 webserver:80 [24/May/2026] "GET /201.php HTTP/1.1" 404 155 webserver:80 [24/May/2026] "GET /x.php HTTP/1.1" 404 155 webserver:80 [24/May/2026] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 341 show less	Web App Attack
🇦🇺 aranguren.org	2026-05-24 12:10:20 (1 week ago)	20.195.192.35 - - [24/May/2026:22:10:17 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.195.192.35 - - [24/May/2026:22:10:17 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 997 "-" "-" 20.195.192.35 - - [24/May/2026:22:10:18 +1000] "GET /x.php HTTP/1.1" 404 16 "-" "-" 20.195.192.35 - - [24/May/2026:22:10:18 +1000] "GET /201.php HTTP/1.1" 404 16 "-" "-" 20.195.192.35 - - [24/May/2026:22:10:18 +1000] "GET /ops.php HTTP/1.1" 404 16 "-" "-" 20.195.192.35 - - [24/May/2026:22:10:19 +1000] "GET /samll.php HTTP/1.1" 404 16 "-" "-" 20.195.192.35 - - [24/May/2026:22:10:19 +1000] "GET /ingfo.php HTTP/1.1" 404 16 "-" "-" ... show less	Bad Web Bot
🇮🇹 Inartis	2026-05-24 12:05:42 (1 week ago)	20.195.192.35 - - [24/May/2026:14:05:36 +0200] "GET /admin.php HTTP/1.1" 404 403 "-" "-" 20.195.192. ... show more 20.195.192.35 - - [24/May/2026:14:05:36 +0200] "GET /admin.php HTTP/1.1" 404 403 "-" "-" 20.195.192.35 - - [24/May/2026:14:05:40 +0200] "GET /adminfuns.php HTTP/1.1" 404 403 "-" "-" 20.195.192.35 - - [24/May/2026:14:05:42 +0200] "GET /cgi-bin/index.php HTTP/1.1" 404 403 "-" "-" ... show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-24 12:05:06 (1 week ago)	CGI-bin probing detected by Fail2Ban	Web App Attack
🇺🇸 kosada.com	2026-05-24 12:04:12 (1 week ago)	Web vulnerability probing: /samll.php	Web App Attack
🇬🇧 Apache	2026-05-24 12:03:57 (1 week ago)	(mod_security) mod_security (id:20000010) triggered by 20.195.192.35 (BR/Brazil/-): 5 in the last 30 ... show more (mod_security) mod_security (id:20000010) triggered by 20.195.192.35 (BR/Brazil/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
Anonymous	2026-05-24 12:02:35 (1 week ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-05-24 12:02:31 (1 week ago)	20.195.192.35 - - [24/May/2026:15:02:24 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.195.192.35 - - [24/May/2026:15:02:24 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 711 "-" "-" 20.195.192.35 - - [24/May/2026:15:02:30 +0300] "GET /wp-includes/blocks/post-comments-form/ HTTP/1.1" 404 628 "-" "-" ... show less	Web App Attack
🇩🇪 Dennis	2026-05-24 11:59:58 (1 week ago)	20.195.192.35 has been banned for triggering http-probing (11 events over 2.291353652s).	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-24 11:57:39 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.195.192.35 (BR/Brazil/-): 1 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.195.192.35 (BR/Brazil/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇨🇭 ca	2026-05-24 11:56:04 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking

Showing 226 to 240 of 306 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.180

🇰🇷 203.236.109.13

🇳🇱 195.178.110.30

🇨🇿 193.151.162.106

🇺🇸 151.240.63.107

🇫🇮 147.185.133.45

🇮🇶 138.124.158.150

🇭🇰 138.113.28.120

🇹🇼 111.70.29.156

🇺🇸 74.82.47.62

🇱🇺 64.89.161.56

🇳🇱 2001:67c:e60:c0c:192:42:116:47

🇭🇰 199.45.154.181

🇪🇨 186.101.233.193

🇸🇪 171.25.158.80

🇳🇬 165.154.11.37

🇺🇸 162.144.106.1

🇨🇦 159.203.63.110

🇭🇰 138.113.2.136

🇺🇸 137.184.228.138