JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.205.45.199

20.205.45.199 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.205.45.199

Whois 20.205.45.199

IP Abuse Reports for 20.205.45.199:

This IP address has been reported a total of 43 times from 38 distinct sources. 20.205.45.199 was first reported on August 30th 2022, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-25 21:20:07 (6 hours ago)	Too many Status 40X (12)	Brute-Force Web App Attack
Anonymous	2026-06-25 17:03:51 (10 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇧🇪 taivas.nl	2026-06-25 04:32:48 (23 hours ago)	Many_bad_calls	Web App Attack
🇺🇸 Lee Daniel	2026-06-24 18:56:11 (1 day ago)	20.205.45.199 - - [24/Jun/2026:14:56:06 -0400] "GET /ckysr.php HTTP/1.1" 404 24198 "-" "-" 20.205.45 ... show more 20.205.45.199 - - [24/Jun/2026:14:56:06 -0400] "GET /ckysr.php HTTP/1.1" 404 24198 "-" "-" 20.205.45.199 - - [24/Jun/2026:14:56:07 -0400] "GET /f5.php HTTP/1.1" 404 24198 "-" "-" 20.205.45.199 - - [24/Jun/2026:14:56:08 -0400] "GET /z43agz.php HTTP/1.1" 404 24198 "-" "-" 20.205.45.199 - - [24/Jun/2026:14:56:09 -0400] "GET //a.php HTTP/1.1" 404 24198 "-" "-" 20.205.45.199 - - [24/Jun/2026:14:56:10 -0400] "GET /sixxis.php HTTP/1.1" 404 24198 "-" "-" ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack
🇩🇪 netclix.gr	2026-06-24 18:15:49 (1 day ago)	(aggressive_scan) Aggressive Web Exploit Scan 20.205.45.199 (HK/Hong Kong/-): 5 in the last 4600 sec ... show more (aggressive_scan) Aggressive Web Exploit Scan 20.205.45.199 (HK/Hong Kong/-): 5 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 20.205.45.199 - - [24/Jun/2026:21:15:38 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 90498 "-" "-" 20.205.45.199 - - [24/Jun/2026:21:15:40 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 90460 "-" "-" 20.205.45.199 - - [24/Jun/2026:21:15:41 +0300] "GET /iiwxa.php HTTP/1.1" 404 90420 "-" "-" 20.205.45.199 - - [24/Jun/2026:21:15:42 +0300] "GET /ckysr.php HTTP/1.1" 404 90420 "-" "-" 20.205.45.199 - - [24/Jun/2026:21:15:44 +0300] "GET /f5.php HTTP/1.1" 404 90414 "-" "-" show less	Port Scan
🇩🇪 Gwyneth Llewelyn	2026-06-24 18:12:27 (1 day ago)	20.205.45.199 - - [24/Jun/2026:19:12:25 +0100] "GET //cgi-bin/index.php HTTP/1.1" 404 2480 "-" "-"	Bad Web Bot
🇦🇹 penguin-solutions.at	2026-06-24 18:11:25 (1 day ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇦🇺 rubixstudios	2026-06-24 18:06:02 (1 day ago)	Excessive HTTP requests consistent with automated attack behaviour detected by Imunify360	DDoS Attack Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-06-24 18:01:47 (1 day ago)	20.205.45.199 - - [24/Jun/2026:21:01:46 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.205.45.199 - - [24/Jun/2026:21:01:46 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 3291 "-" "-" ... show less	Web App Attack
🇩🇪 FeG Deutschland	2026-06-24 16:21:52 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127	Exploited Host Web App Attack
🇩🇪 rh24	2026-06-24 16:05:51 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 20.205.45.199 (HK/Hong Kong/-): (CF_EN ... show more (mod_security) mod_security triggered on hostname [redacted] 20.205.45.199 (HK/Hong Kong/-): (CF_ENABLE) show less	SQL Injection
Anonymous	2026-06-24 16:03:54 (1 day ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇫🇷 phoenix1jl96	2026-06-24 15:56:00 (1 day ago)	[Wed Jun 24 17:55:57.207383 2026] [proxy_fcgi:error] [pid 2558308:tid 2558308] [client 20.205.45.199 ... show more [Wed Jun 24 17:55:57.207383 2026] [proxy_fcgi:error] [pid 2558308:tid 2558308] [client 20.205.45.199:6867] AH01071: Got error 'Primary script unknown' [Wed Jun 24 17:55:57.398150 2026] [proxy_fcgi:error] [pid 2558308:tid 2558308] [client 20.205.45.199:6867] AH01071: Got error 'Primary script unknown' [Wed Jun 24 17:55:57.896108 2026] [proxy_fcgi:error] [pid 2558308:tid 2558308] [client 20.205.45.199:6867] AH01071: Got error 'Primary script unknown' [Wed Jun 24 17:55:58.086691 2026] [proxy_fcgi:error] [pid 2558308:tid 2558308] [client 20.205.45.199:6867] AH01071: Got error 'Primary script unknown' [Wed Jun 24 17:55:58.277345 2026] [proxy_fcgi:error] [pid 2558308:tid 2558308] [client 20.205.45.199:6867] AH01071: Got error 'Primary script unknown' ... show less	DNS Compromise DNS Poisoning DDoS Attack Web Spam Port Scan Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇩🇪 BlueWire Hosting	2026-06-24 15:47:21 (1 day ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
🇺🇦 URAN Publishing Service	2026-06-24 15:42:24 (1 day ago)	20.205.45.199 - - [24/Jun/2026:18:42:24 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.205.45.199 - - [24/Jun/2026:18:42:24 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 708 "-" "-" ... show less	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 179.0.51.89

🇬🇧 88.97.163.40

🇯🇴 188.123.163.2

🇳🇱 91.92.40.7

🇳🇱 91.92.40.6

🇪🇸 80.24.1.119

🇧🇬 79.124.56.238

🇲🇦 196.117.69.146

🇮🇶 185.24.60.131

🇨🇱 181.172.79.220

🇧🇷 177.74.139.189

🇺🇸 163.192.121.134

🇺🇸 91.230.168.21

🇩🇪 91.99.67.140

🇰🇿 89.40.60.218

🇷🇺 81.200.14.134

🇳🇱 45.148.10.151

🇺🇸 45.92.229.111

🇻🇳 14.225.7.70

🇬🇧 193.163.125.86