JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.213.80.100

20.213.80.100 was found in our database!

This IP was reported 84 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.213.80.100

Whois 20.213.80.100

IP Abuse Reports for 20.213.80.100:

This IP address has been reported a total of 84 times from 74 distinct sources. 20.213.80.100 was first reported on May 19th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 rubixstudios	2026-05-19 21:17:02 (2 weeks ago)	Excessive HTTP requests consistent with automated attack behaviour detected by Imunify360	DDoS Attack Brute-Force Web App Attack
🇮🇹 Inartis	2026-05-19 21:12:06 (2 weeks ago)	20.213.80.100 - - [19/May/2026:23:12:04 +0200] "GET /admin.php HTTP/1.1" 302 455 "-" "-" 20.213.80.1 ... show more 20.213.80.100 - - [19/May/2026:23:12:04 +0200] "GET /admin.php HTTP/1.1" 302 455 "-" "-" 20.213.80.100 - - [19/May/2026:23:12:05 +0200] "GET /admin.php HTTP/1.1" 404 15200 "-" "-" 20.213.80.100 - - [19/May/2026:23:12:05 +0200] "GET /adminfuns.php HTTP/1.1" 302 463 "-" "-" ... show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-05-19 19:58:51 (2 weeks ago)	3.329 requests from abuseipdb.com blacklisted IP (1yr7mos2w)	Brute-Force Bad Web Bot
🇺🇸 chronos	2026-05-19 19:30:45 (2 weeks ago)	[AUTORAVALT][[19/05/2026 - 16:30:45 -03:00 UTC] Attack from [Microsoft Corporation] [20.213.80.100] ... show more [AUTORAVALT][[19/05/2026 - 16:30:45 -03:00 UTC] Attack from [Microsoft Corporation] [20.213.80.100] Action: BLocKed DDoS Attack -> Participating in distributed denial-of-service. Phishing -> Phishing websites and/or email. Web Spam -> Comment/forum spam, HTTP referer spam, or other CMS spam. Blog Spam -> CMS blog comment spam. Web App Attack -> Attempts to pro] ... show less	DDoS Attack Phishing Web Spam Blog Spam Web App Attack
🇩🇪 kjaerulff	2026-05-19 19:27:41 (2 weeks ago)	Probing for PHP files (admin.php)	Web App Attack
🇺🇸 xmission.com	2026-05-19 19:21:03 (2 weeks ago)	20.213.80.100 - - [19/May/2026:13:21:03 -0600] "GET /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 ( ... show more 20.213.80.100 - - [19/May/2026:13:21:03 -0600] "GET /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇱🇻 garmtech.com	2026-05-19 19:06:16 (2 weeks ago)	Attempted access to sensitive endpoint (/wp-content/uploads/index.php) detected. Automated scan or u ... show more Attempted access to sensitive endpoint (/wp-content/uploads/index.php) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-05-19 19:03:27 (2 weeks ago)	shotbysuzanne.com.au:443 20.213.80.100 - - [20/May/2026:05:03:23 +1000] "GET /inputs.php HTTP/1.1" 4 ... show more shotbysuzanne.com.au:443 20.213.80.100 - - [20/May/2026:05:03:23 +1000] "GET /inputs.php HTTP/1.1" 404 55485 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇫🇷 mrcrassi	2026-05-19 18:56:18 (2 weeks ago)	Triggered Cloudflare WAF (botFight) from AU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET ... show more Triggered Cloudflare WAF (botFight) from AU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /wp-includes/images/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇿 Antinson	2026-05-19 18:45:17 (2 weeks ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇺🇸 Major Hostility	2026-05-19 18:43:11 (2 weeks ago)	"GET /inputs.php HTTP/1.1" 404 "GET /ioxi-o.php HTTP/1.1" 404 "GET /function/function.php HTTP/1.1" ... show more "GET /inputs.php HTTP/1.1" 404 "GET /ioxi-o.php HTTP/1.1" 404 "GET /function/function.php HTTP/1.1" 404 "GET /rip.php HTTP/1.1" 404 "GET /admin.php HTTP/1.1" 404 "GET /wp-content/uploads/index.php HTTP/1.1" 404 "GET /cache.php HTTP/1.1" 404 "GET /themes.php HTTP/1.1" 404 "GET /an.php HTTP/1.1" 404 "GET /index/function.php HTTP/1.1" 404 "GET /randkeyword.PhP7 HTTP/1.1" 404 "GET /ws.php HTTP/1.1" 404 "GET /404.php HTTP/1.1" 404 "GET /wp-admin/user.php HTTP/1.1" 404 "GET /wp-conf.php HTTP/1.1" 404 "GET /wp-content/themes/hideo/network.php HTTP/1.1" 404 "GET /wp-login.php HTTP/1.1" 404 "GET /abc.php HTTP/1.1" 404 "GET /abcd.php HTTP/1.1" 404 "GET /as.php HTTP/1.1" show less	Web App Attack
🇺🇸 kosada.com	2026-05-19 18:36:11 (2 weeks ago)	Web vulnerability probing: /admin.php (bogus vhost/SNI)	Web App Attack
🇵🇱 strefapi_com	2026-05-19 18:23:45 (2 weeks ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
Anonymous	2026-05-19 18:23:09 (2 weeks ago)	Aggressive web scan	Bad Web Bot Web App Attack
🇩🇪 raph	2026-05-19 18:17:01 (2 weeks ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack

Showing 31 to 45 of 84 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.196.160.30

🇺🇸 216.25.89.81

🇦🇹 213.225.38.154

🇲🇽 189.216.171.244

🇮🇹 158.173.77.211

🇵🇭 126.209.75.226

🇪🇸 90.170.47.115

🇮🇶 65.20.251.170

🇮🇶 65.20.163.103

🇮🇶 65.20.161.126

🇺🇸 38.110.4.150

🇨🇳 220.181.51.118

🇺🇸 191.101.238.146

🇺🇸 147.135.127.115

🇵🇭 111.90.242.39

🇺🇸 108.178.17.26

🇧🇬 108.165.233.132

🇧🇩 103.158.206.141

🇮🇶 65.20.135.32

🇩🇪 64.226.107.125