JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.220.148.74

20.220.148.74 was found in our database!

This IP was reported 246 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.220.148.74

Whois 20.220.148.74

IP Abuse Reports for 20.220.148.74:

This IP address has been reported a total of 246 times from 198 distinct sources. 20.220.148.74 was first reported on June 10th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-06-16 10:51:25 (1 day ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Holger	2026-06-13 12:34:14 (4 days ago)	WordPress WebAttack	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-12 12:03:19 (5 days ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-12 09:52:00 (5 days ago)	500+ reports of bad behaviour	Bad Web Bot Exploited Host Web App Attack Hacking
Anonymous	2026-06-11 23:17:05 (5 days ago)	[Wed Jun 10 20:27:17.353762 2026] [php:error] [pid 1313391:tid 1313391] [client 20.220.148.74:23019] ... show more [Wed Jun 10 20:27:17.353762 2026] [php:error] [pid 1313391:tid 1313391] [client 20.220.148.74:23019] script '/var/www/html/this_is_a_new_hello_world.php' not found or unable to stat [Wed Jun 10 20:27:17.450244 2026] [php:error] [pid 1313391:tid 1313391] [client 20.220.148.74:23019] script '/var/www/html/aaf.php' not found or unable to stat ... show less	Bad Web Bot Web App Attack
🇳🇱 JCB	2026-06-11 17:25:00 (6 days ago)	20.220.148.74 - - [10/Jun/2026:23:20:03 +0300] "GET /aaf.php HTTP/1.1" 404 456 "-" "-" 20.220.148.7 ... show more 20.220.148.74 - - [10/Jun/2026:23:20:03 +0300] "GET /aaf.php HTTP/1.1" 404 456 "-" "-" 20.220.148.74 - - [10/Jun/2026:23:20:03 +0300] "GET /66t.php HTTP/1.1" 404 456 "-" "-" ... show less	Web App Attack
Anonymous	2026-06-11 15:05:54 (6 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 LTU	2026-06-11 10:22:00 (6 days ago)	Anomalous Server Path Access/Reconnaissance/Enumeration	Hacking
🇲🇽 octageeks.com	2026-06-11 04:20:21 (6 days ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇩🇪 excill	2026-06-11 03:08:25 (6 days ago)	Honeypot mesh observed 577 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇩🇰 Leif Neland	2026-06-11 00:00:16 (6 days ago)	Detected by CrowdSec on slim	Brute-Force
🇺🇦 URAN Publishing Service	2026-06-10 23:28:04 (6 days ago)	20.220.148.74 - - [11/Jun/2026:02:28:03 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.220.148.74 - - [11/Jun/2026:02:28:03 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 3304 "-" "-" ... show less	Web App Attack
🇩🇪 IVski	2026-06-10 23:22:41 (6 days ago)	IVski WAF \| WordPress scanner detected - probing wp-content, xmlrpc or wp-login	Port Scan Brute-Force Web App Attack
🇺🇸 Moby	2026-06-10 23:21:08 (6 days ago)	20.220.148.74 - - [10/Jun/2026:18:21:06 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.220.148.74 - - [10/Jun/2026:18:21:06 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 1010 "-" "-" "75.88.18.221" "h221.18.88.75.static.ip.windstream.net" 20.220.148.74 - - [10/Jun/2026:18:21:06 -0500] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 1010 "-" "-" "75.88.18.221" "h221.18.88.75.static.ip.windstream.net" 20.220.148.74 - - [10/Jun/2026:18:21:07 -0500] "GET /aaf.php HTTP/1.1" 404 1010 "-" "-" "75.88.18.221" "h221.18.88.75.static.ip.windstream.net" ... show less	Web App Attack
🇯🇵 beon	2026-06-10 23:21:02 (6 days ago)	[DateTime=>2026-06-10T23:21:02Z to 2026-06-10T23:22:10Z (UTC)] , [HoneyPot_Hits=>284 times] , [Honey ... show more [DateTime=>2026-06-10T23:21:02Z to 2026-06-10T23:22:10Z (UTC)] , [HoneyPot_Hits=>284 times] , [HoneyPots=>/wp-content/plugins/hellopress/wp_filemanager.php, /this_is_a_new_hello_world.php, /nf_tracking.php, /ms-edit.php, /wp-Blogs.php, /less.php and others] , [total_Hits=>284 times] , [hit_per_second=>4.17] , [Keyword=>WordPress, file manager scripts, .well-known, PHP web shells] show less	Bad Web Bot Web App Attack Hacking

Showing 1 to 15 of 246 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 179.43.168.58

🇿🇦 169.239.183.156

🇭🇰 152.32.172.108

🇨🇴 148.222.199.208

🇧🇬 91.191.209.198

🇳🇱 91.92.40.204

🇸🇬 47.82.11.55

🇧🇷 187.19.177.26

🇩🇪 185.176.94.38

🇺🇸 162.214.99.34

🇨🇴 152.200.181.42

🇨🇳 123.245.6.65

🇨🇳 116.177.174.231

🇬🇧 88.97.203.89

🇬🇧 86.191.97.91

🇮🇪 20.190.159.2

🇩🇪 217.181.95.229

🇽🇰 185.190.132.16

🇧🇷 172.69.114.28

🇰🇷 125.138.175.113