JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.226.124.83

20.226.124.83 was found in our database!

This IP was reported 324 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.226.124.83

Whois 20.226.124.83

IP Abuse Reports for 20.226.124.83:

This IP address has been reported a total of 324 times from 261 distinct sources. 20.226.124.83 was first reported on May 29th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SCHAPPY	2026-05-29 09:30:03 (5 days ago)	Brute-force attack to identify web exploits	Brute-Force Web App Attack
🇫🇷 viki53	2026-05-29 09:27:30 (5 days ago)	Website hacking attempt (path: /wp-content/plugins/hellopress/wp_filemanager.php)	Hacking Web App Attack
🇫🇮 sw0ok	2026-05-29 09:22:45 (5 days ago)	time="2026-05-29T09:22:43Z" level=info msg="Access to https://portainer.sw0ok.dev/wp-content/plugins ... show more time="2026-05-29T09:22:43Z" level=info msg="Access to https://portainer.sw0ok.dev/wp-content/plugins/hellopress/wp_filemanager.php (method GET) is not authorized to user <anonymous>, responding with status code 401 with location redirect to https://auth.sw0ok.dev/?rd=https%3A%2F%2Fportainer.sw0ok.dev%2Fwp-content%2Fplugins%2Fhellopress%2Fwp_filemanager.php&rm=GET" method=GET path=/api/authz/forward-auth remote_ip=20.226.124.83 time="2026-05-29T09:22:44Z" level=info msg="Access to https://portainer.sw0ok.dev/x.php (method GET) is not authorized to user <anonymous>, responding with status code 401 with location redirect to https://auth.sw0ok.dev/?rd=https%3A%2F%2Fportainer.sw0ok.dev%2Fx.php&rm=GET" method=GET path=/api/authz/forward-auth remote_ip=20.226.124.83 time="2026-05-29T09:22:44Z" level=info msg="Access to https://portainer.sw0ok.dev/Ar.php (method GET) is not authorized to user <anonymous>, responding with status code 401 with location redirect to https://auth.sw0ok.dev/?rd=http ... show less	Brute-Force
🇫🇮 inlink.ltd	2026-05-29 09:20:51 (5 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇩🇪 ghostwarriors	2026-05-29 09:20:07 (5 days ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
Anonymous	2026-05-29 09:18:22 (5 days ago)	XSS Attempt	Hacking
🇩🇪 raph	2026-05-29 09:17:27 (5 days ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-05-29 09:10:01 (5 days ago)		Web App Attack
🇳🇱 i-turnradio.nl	2026-05-29 09:06:19 (5 days ago)	2026-05-29 @ 11:06:19 (CET) ~ Blocked for trying to access: /wp-content/plugins/hellopress/wp_filema ... show more 2026-05-29 @ 11:06:19 (CET) ~ Blocked for trying to access: /wp-content/plugins/hellopress/wp_filemanager.php show less	Web App Attack
Anonymous	2026-05-29 09:06:07 (5 days ago)	Trying to access config files	Web App Attack
🇳🇱 BlueWire Hosting	2026-05-29 09:01:53 (5 days ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 Operator873	2026-05-29 08:59:43 (5 days ago)	2026/05/29 03:54:35 [error] 220204#0: 3372624 access forbidden by rule, client: 20.226.124.83, serv ... show more 2026/05/29 03:54:35 [error] 220204#0: 3372624 access forbidden by rule, client: 20.226.124.83, server: [OBFUSCATED], request: "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1", host: "wildcard.ntars.net" 2026/05/29 03:54:35 [error] 220204#0: 3372624 access forbidden by rule, client: 20.226.124.83, server: [OBFUSCATED], request: "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1", host: "wildcard.ntars.net" 2026/05/29 03:54:35 [error] 220204#0: 3372624 access forbidden by rule, client: 20.226.124.83, server: [OBFUSCATED], request: "GET /x.php HTTP/1.1", host: "wildcard.ntars.net" 2026/05/29 03:54:35 [error] 220204#0: 3372624 access forbidden by rule, client: 20.226.124.83, server: [OBFUSCATED], request: "GET /x.php HTTP/1.1", host: "wildcard.ntars.net" 2026/05/29 03:59:41 [error] 220204#0: 3372712 access forbidden by rule, client: 20.226.124.83, server: [OBFUSCATED], request: "GET /test11.php HTTP/1.1", host: "wildcard.ntars.net" ... show less	Brute-Force Web App Attack
🇫🇷 Baking333	2026-05-29 08:54:57 (5 days ago)	[redacted] 20.226.124.83 - - [29/May/2026:09:54:46 +0100] "GET /wp-content/plugins/hellopress/wp_fil ... show more [redacted] 20.226.124.83 - - [29/May/2026:09:54:46 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 147 0/19561 "-" "-" [redacted] 20.226.124.83 - - [29/May/2026:09:54:55 +0100] "GET /wp-includes/blocks/post-comments-form/ HTTP/1.1" 301 626 0/322 "-" "-" show less	Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-05-29 08:50:19 (5 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇹🇷 Threat.live	2026-05-29 08:50:06 (5 days ago)	Suspicious Connection Attempts	Brute-Force

Showing 241 to 255 of 324 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a0e:97c0:3e3:2b3::1

🇭🇰 165.154.43.179

🇦🇹 152.53.0.56

🇭🇰 152.32.171.73

🇸🇬 143.198.217.151

🇩🇪 91.217.249.31

🇭🇰 20.187.65.213

🇺🇸 20.168.6.210

🇺🇸 2a13:9500:16b:be61::1

🇺🇸 216.218.206.89

🇺🇸 205.210.31.101

🇮🇳 203.145.143.163

🇹🇼 198.235.24.118

🇦🇷 186.56.11.2

🇸🇬 129.226.213.238

🇺🇸 66.175.213.4

🇮🇳 64.227.131.240

🇹🇭 45.194.70.250

🇧🇪 35.195.242.12

🇧🇪 34.53.245.36