JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.206.92.42

20.206.92.42 was found in our database!

This IP was reported 252 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.206.92.42

Whois 20.206.92.42

IP Abuse Reports for 20.206.92.42:

This IP address has been reported a total of 252 times from 204 distinct sources. 20.206.92.42 was first reported on June 1st 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 masterguru	2026-06-01 11:33:04 (3 days ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-169)	Hacking Web App Attack
Anonymous	2026-06-01 11:32:20 (3 days ago)	WordPress plugin direct access attempt: 20.206.92.42 - - [01/Jun/2026:12:32:20 +0100] "GET /wp-cont ... show more WordPress plugin direct access attempt: 20.206.92.42 - - [01/Jun/2026:12:32:20 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 234 "-" "Unknown" show less	Hacking Web App Attack
🇺🇸 slay3r9903	2026-06-01 11:22:47 (3 days ago)	IP address blocked by Cloudflare security rules due to suspicious activity and security violations.	Hacking Bad Web Bot
🇩🇪 itsolon	2026-06-01 11:21:24 (3 days ago)	[01/Jun/2026:13:21:21 +0200] 178031288115.650004 20.206.92.42 36958 217.154.7.177 443 [01/Jun/2026:1 ... show more [01/Jun/2026:13:21:21 +0200] 178031288115.650004 20.206.92.42 36958 217.154.7.177 443 [01/Jun/2026:13:21:21 +0200] 178031288192.360467 20.206.92.42 61141 217.154.7.177 80 [01/Jun/2026:13:21:22 +0200] 178031288281.540291 20.206.92.42 36958 217.154.7.177 443 [01/Jun/2026:13:21:23 +0200] 178031288340.253204 20.206.92.42 61141 217.154.7.177 80 [01/Jun/2026:13:21:23 +0200] 178031288384.888022 20.206.92.42 36958 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-01 11:21:11 (3 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: crowdsecurity/http-probing.	Bad Web Bot Web App Attack
🇺🇸 antlac1	2026-06-01 11:18:05 (3 days ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇵🇱 strefapi_com	2026-06-01 11:17:10 (3 days ago)	Brute-force on web app ...	Brute-Force Web App Attack
🇧🇷 Halux	2026-06-01 11:09:20 (3 days ago)	20.206.92.42 Probing protected path or service	Web App Attack
🇦🇹 René Hickersberger	2026-06-01 11:07:32 (3 days ago)	malicious bot detected: violations="hit-honeypot"; user_agent=""	Web App Attack
Anonymous	2026-06-01 11:06:04 (3 days ago)	Trying to access config files	Web App Attack
🇩🇪 LRob.fr	2026-06-01 11:00:09 (3 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇸🇬 serverutama	2026-06-01 11:00:09 (3 days ago)	Nginx scanner: 20.206.92.42 - - [01/Jun/2026:17:12:34 +0700] "GET /wp-content/plugins/hellopress/wp_ ... show more Nginx scanner: 20.206.92.42 - - [01/Jun/2026:17:12:34 +0700] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-" "-" 20.206.92.42 - - [01/Jun/2026:17:12:36 +0700] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" "-" show less	Web App Attack Bad Web Bot
🇺🇸 infra-monitor	2026-06-01 11:00:07 (3 days ago)	Automated ban via infra-monitor: webshell-high-confidence, webshell-probe, wp-sensitive-paths	Port Scan Hacking Web App Attack
🇫🇷 masterguru	2026-06-01 10:59:36 (3 days ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-135)	Hacking Web App Attack
🇺🇸 Gabriel Camargo	2026-06-01 10:58:31 (3 days ago)	20.206.92.42 - - [01/Jun/2026:05:58:29 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.206.92.42 - - [01/Jun/2026:05:58:29 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 178 "-" "-" 20.206.92.42 - - [01/Jun/2026:05:58:30 -0500] "GET /x.php HTTP/1.1" 301 178 "-" "-" 20.206.92.42 - - [01/Jun/2026:05:58:30 -0500] "GET /wpconf.php HTTP/1.1" 301 178 "-" "-" ... show less	Brute-Force SSH

Showing 151 to 165 of 252 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 115.190.148.182

🇺🇸 66.132.186.130

🇺🇸 216.212.115.227

🇨🇱 200.120.170.153

🇧🇷 200.24.97.169

🇹🇼 175.182.37.66

🇩🇪 165.245.246.63

🇺🇸 66.132.172.44

🇰🇪 41.90.100.147

🇰🇷 220.123.230.181

🇩🇪 213.209.159.228

🇧🇴 200.58.74.123

🇲🇽 189.248.156.3

🇧🇷 179.145.44.63

🇩🇪 164.92.206.94

🇯🇵 133.18.180.27

🇹🇼 104.199.176.250

🇬🇧 88.215.1.201

🇬🇷 83.212.240.55

🇩🇪 81.200.154.236