JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.205.104.45

20.205.104.45 was found in our database!

This IP was reported 178 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.205.104.45

Whois 20.205.104.45

IP Abuse Reports for 20.205.104.45:

This IP address has been reported a total of 178 times from 156 distinct sources. 20.205.104.45 was first reported on June 11th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-14 23:57:30 (5 hours ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 homeshowdomain.nl	2026-06-13 21:59:37 (1 day ago)	Auto-ban: 18 malicious requests on 2026-06-12 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 18 malicious requests on 2026-06-12 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
Anonymous	2026-06-13 16:09:48 (1 day ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇫🇷 geot	2026-06-13 16:04:02 (1 day ago)	WordPress scanning bot	Hacking Bad Web Bot Web App Attack
🇪🇸 Gem	2026-06-13 05:59:38 (1 day ago)	Unauthorized web scan.	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-13 05:14:20 (1 day ago)	140 attacks on PHP URLs: GET /flower.php HTTP/1.1	Web App Attack
🇧🇪 taivas.nl	2026-06-13 04:33:27 (2 days ago)	Many_bad_calls	Web App Attack
🇬🇧 andypiper	2026-06-13 01:00:17 (2 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-13 00:53:16 (2 days ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.205.104.45 (HK/Hong Kong/-): 2 i ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.205.104.45 (HK/Hong Kong/-): 2 in the last 3600 secs show less	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-13 00:52:12 (2 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇮🇹 alessio loto	2026-06-13 00:33:38 (2 days ago)	WAF Detection: Empty_UserAgent (High Risk IP). AI Confirmed Attack Payload.	Web App Attack
🇺🇸 lnklnx	2026-06-13 00:29:16 (2 days ago)	git.lnklnx.com:80 20.205.104.45 - - [12/Jun/2026:19:29:14 -0500] "GET /wp-content/plugins/hellopress ... show more git.lnklnx.com:80 20.205.104.45 - - [12/Jun/2026:19:29:14 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 651 "-" "-" ... show less	Web App Attack
Anonymous	2026-06-13 00:19:44 (2 days ago)	<comment>	Web App Attack
Anonymous	2026-06-13 00:16:45 (2 days ago)	[Sat Jun 13 00:42:20.223084 2026] [proxy_fcgi:error] [pid 189896:tid 189965] [client 20.205.104.45:2 ... show more [Sat Jun 13 00:42:20.223084 2026] [proxy_fcgi:error] [pid 189896:tid 189965] [client 20.205.104.45:24477] AH01071: Got error 'Primary script unknown' [Sat Jun 13 02:16:45.115063 2026] [proxy_fcgi:error] [pid 211614:tid 211647] [client 20.205.104.45:43742] AH01071: Got error 'Primary script unknown' [Sat Jun 13 02:16:45.115063 2026] [proxy_fcgi:error] [pid 211614:tid 211647] [client 20.205.104.45:43742] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force Web App Attack
Anonymous	2026-06-13 00:09:57 (2 days ago)	{"level":"info","ts":1781309367.9500282,"logger":"http.log.access.log2","msg":"handled request","req ... show more {"level":"info","ts":1781309367.9500282,"logger":"http.log.access.log2","msg":"handled request","request":{"remote_ip":"20.205.104.45","remote_port":"48546","client_ip":"20.205.104.45","proto":"HTTP/1.1","method":"GET","host":"stage.prisma.tv","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"stage.prisma.tv","ech":false}},"bytes_read":0,"user_id":"","duration":0.000202551,"size":0,"status":401,"resp_headers":{"Referrer-Policy":["same-origin"],"X-Robots-Tag":["noindex"],"Www-Authenticate":["Basic realm=\"restricted\""],"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"X-Content-Type-Options":["nosniff"],"X-Xss-Protection":["1; mode=block"]}} {"level":"info","ts":1781309369.4433372,"logger":"http.log.access.log2","msg":"handled request","request":{"remote_ip":"20.205.104.45","remote_port":"48546","client_ip":"20.205.104.45","proto":"HTTP/1.1","method":"GET","host":"stage.prism ... show less	Bad Web Bot

Showing 1 to 15 of 178 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 36.64.174.210

🇺🇸 34.127.7.65

🇲🇾 183.171.236.113

🇺🇸 181.215.195.67

🇹🇭 171.4.237.43

🇺🇸 165.154.162.250

🇮🇳 138.252.100.29

🇷🇺 91.78.146.149

🇮🇳 61.2.55.69

🇳🇱 45.148.10.157

🇺🇸 34.127.48.19

🇸🇬 34.126.171.166

🇺🇸 34.125.234.56

🇰🇷 34.50.3.223

🇭🇰 223.17.6.188

🇨🇳 219.151.182.56

🇹🇼 198.235.24.23

🇳🇱 160.119.76.38

🇺🇸 147.185.132.177

🇩🇪 138.199.19.163