This IP address has been reported a total of
249
times from
198 distinct
sources.
20.197.193.160 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
(ScanningForFiles) Scanning for files triggerd 20.197.193.160 (BR/Brazil/-): 10 in the last 900 secs ...
show more(ScanningForFiles) Scanning for files triggerd 20.197.193.160 (BR/Brazil/-): 10 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.197.193.160 (BR/Brazil/-): 2 in th ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.197.193.160 (BR/Brazil/-): 2 in the last 3600 secs (0-193)
show less
130 requests with url.path */wp.php
113 requests with url.path */wp-content/plugins/hellopress/wp_ ...
show more130 requests with url.path */wp.php
113 requests with url.path */wp-content/plugins/hellopress/wp_filemanager.php
show less
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.197.193.160 (BR/Brazil/-): 1 in ...
show moreLF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.197.193.160 (BR/Brazil/-): 1 in the last 3600 secs
show less
Web App Attack
Anonymous
[news.tmg.gr] httpd-404: sites=news.tmg.gr; logs=/var/log/httpd/domains/news.tmg.gr.log; samples=/ph ...
show more[news.tmg.gr] httpd-404: sites=news.tmg.gr; logs=/var/log/httpd/domains/news.tmg.gr.log; samples=/phpinfo/info.php | /wp-the.php | /CDX2.php
show less
{"level":"info","ts":1780146448.502163,"logger":"http.log.access.log1","msg":"handled request","requ ...
show more{"level":"info","ts":1780146448.502163,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"20.197.193.160","remote_port":"14976","client_ip":"20.197.193.160","proto":"HTTP/1.1","method":"GET","host":"blog.bjhi.status.updown.io","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000060095,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://blog.bjhi.status.updown.io/wp-content/plugins/hellopress/wp_filemanager.php"],"Content-Type":[]}}
{"level":"info","ts":1780147822.8463552,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"20.197.193.160","remote_port":"5937","client_ip":"20.197.193.160","proto":"HTTP/1.1","method":"GET","host":"4ax1.status.updown.io","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000049816,"size":0,"status":308,"resp_headers":{"Server":[
...
show less
URL-probe: HTTP/1.1 GET request on /wp-content/plugins/hellopress/wp_filemanager.php (2026-05-30 15: ...
show moreURL-probe: HTTP/1.1 GET request on /wp-content/plugins/hellopress/wp_filemanager.php (2026-05-30 15:27:32 UTC+2)
show less