JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.226.124.83

20.226.124.83 was found in our database!

This IP was reported 324 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.226.124.83

Whois 20.226.124.83

IP Abuse Reports for 20.226.124.83:

This IP address has been reported a total of 324 times from 261 distinct sources. 20.226.124.83 was first reported on May 29th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-05-29 07:15:01 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-05-29 07:13:40 (6 days ago)	apache-auth	Brute-Force Web App Attack
Anonymous	2026-05-29 07:12:34 (6 days ago)	20.226.124.83 - - [29/May/2026:09:10:25 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.226.124.83 - - [29/May/2026:09:10:25 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 496 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:15 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:15 +0200] "GET /x.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:15 +0200] "GET /Ar.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:15 +0200] "GET /wpconf.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:16 +0200] "GET /aaf.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:16 +0200] "GET /tw0.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:16 +0200] "GET /htt.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:16 +0200] "GET /eid.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:16 +0200] "GET /hellcut.php HTTP/1.1" 404 495 "-" "-" 20.226.124.83 - - [29/May/2026:09:12:17 +020 ... show less	DDoS Attack
🇩🇪 EGP Abuse Dept	2026-05-29 07:11:47 (6 days ago)	Scanning for web/db/file exploits on www.jantschik.nl	SQL Injection Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-05-29 07:10:56 (6 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.226.124.83 (BR/Brazil/-): 1 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.226.124.83 (BR/Brazil/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 entangled_mongoose	2026-05-29 07:09:24 (6 days ago)	Probed /wp-content/plugins/hellopress/wp_filemanager.php.	Web App Attack
🇩🇪 FeG Deutschland	2026-05-29 07:07:24 (6 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack
🇺🇸 mnsf	2026-05-29 07:05:52 (6 days ago)	Too many Status 40X (13)	Brute-Force Web App Attack
🇩🇪 updown.io	2026-05-29 07:04:11 (6 days ago)	{"level":"info","ts":1780038176.8489544,"logger":"http.log.access.log0","msg":"handled request","req ... show more {"level":"info","ts":1780038176.8489544,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"20.226.124.83","remote_port":"6331","client_ip":"20.226.124.83","proto":"HTTP/1.1","method":"GET","host":"4pzh.status.updown.io","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000054203,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://4pzh.status.updown.io/wp-content/plugins/hellopress/wp_filemanager.php"],"Content-Type":[]}} {"level":"info","ts":1780038178.0664868,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"20.226.124.83","remote_port":"6787","client_ip":"20.226.124.83","proto":"HTTP/1.1","method":"GET","host":"4pzh.status.updown.io","uri":"/x.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000045015,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://4pzh ... show less	DDoS Attack Web App Attack
Anonymous	2026-05-29 07:04:04 (6 days ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇨🇭 backslash	2026-05-29 07:03:00 (6 days ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2026-05-29 07:02:55 (6 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-05-29 07:01:23 (6 days ago)	Multiple WAF Violations	Web App Attack
🇵🇱 strefapi_com	2026-05-29 07:01:04 (6 days ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇮🇩 Burayot	2026-05-29 06:54:54 (6 days ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.226.124.83 (BR/Brazil/-): 1 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.226.124.83 (BR/Brazil/-): 1 in the last 3600 secs show less	Web App Attack

Showing 301 to 315 of 324 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.195.55

🇦🇺 40.82.214.8

🇳🇱 5.61.209.224

🇻🇳 210.211.122.97

🇳🇱 173.194.169.17

🇺🇸 166.62.89.133

🇺🇸 162.243.208.127

🇵🇪 161.132.50.236

🇸🇬 152.42.160.174

🇫🇮 147.185.133.3

🇺🇸 135.119.112.78

🇰🇷 59.21.37.60

🇻🇳 27.79.43.15

🇺🇸 216.180.246.215

🇺🇸 216.25.89.131

🇺🇸 216.25.89.111

🇳🇱 160.119.69.14

🇨🇩 102.206.240.149

🇳🇱 89.21.67.167

🇩🇪 69.5.169.28