JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.226.61.17

20.226.61.17 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.226.61.17

Whois 20.226.61.17

IP Abuse Reports for 20.226.61.17:

This IP address has been reported a total of 144 times from 110 distinct sources. 20.226.61.17 was first reported on May 31st 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 todix	2026-06-01 01:30:13 (3 days ago)	Web App Attack Exploid from 20.226.61.17	Web App Attack
🇺🇸 brantknudson.org	2026-06-01 01:13:18 (3 days ago)	Request path 'GET /wk/index.php HTTP/1.1'	Web App Attack Hacking
🇬🇧 andypiper	2026-06-01 01:02:41 (3 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇮 Christopher Hughes	2026-06-01 00:59:35 (3 days ago)	[Mon Jun 01 01:59:34.064842 2026] [proxy_fcgi:error] [pid 279834:tid 139773771494976] [client 20.226 ... show more [Mon Jun 01 01:59:34.064842 2026] [proxy_fcgi:error] [pid 279834:tid 139773771494976] [client 20.226.61.17:4958] AH01071: Got error 'Primary script unknown' [Mon Jun 01 01:59:34.281529 2026] [proxy_fcgi:error] [pid 279834:tid 139774811698752] [client 20.226.61.17:4958] AH01071: Got error 'Primary script unknown' [Mon Jun 01 01:59:34.713029 2026] [proxy_fcgi:error] [pid 279834:tid 139774794913344] [client 20.226.61.17:4958] AH01071: Got error 'Primary script unknown' [Mon Jun 01 01:59:34.929567 2026] [proxy_fcgi:error] [pid 279834:tid 139774308365888] [client 20.226.61.17:4958] AH01071: Got error 'Primary script unknown' [Mon Jun 01 01:59:35.363855 2026] [proxy_fcgi:error] [pid 279834:tid 139775025616448] [client 20.226.61.17:4958] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇹🇭 thaizone.com	2026-06-01 00:37:39 (3 days ago)	Hacking attempts against websites (D1) #1	Web App Attack Hacking
Anonymous	2026-06-01 00:32:27 (3 days ago)	fail2ban: apache-php-scan jail (1 hits in 2419200s) on skipper	Web App Attack Hacking
🇪🇸 netfactotum	2026-06-01 00:19:20 (3 days ago)		Hacking Web App Attack
🇩🇪 Philister11	2026-06-01 00:17:55 (3 days ago)	CrowdSec: crowdsecurity/http-admin-interface-probing (BR/AS8075)	Web App Attack Hacking
🇦🇺 nzhost.co.nz	2026-06-01 00:10:55 (3 days ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 Epimetheus	2026-06-01 00:10:41 (3 days ago)	Unauthorized access attempts: [GET] /wp-includes/PHPMailer/ [GET] /abcd.php [GET] /kbfr.php [GET] / ... show more Unauthorized access attempts: [GET] /wp-includes/PHPMailer/ [GET] /abcd.php [GET] /kbfr.php [GET] /abc.php [GET] /adminfuns.php [GET] /wp-content/admin.php [GET] /wp-content/themes/admin.php [GET] /function/function.php [GET] /index/function.php [GET] /an.php [GET] /cgi-bin/ [GET] /wp-admin/css/colors/ectoplasm/ [GET] /about.php [GET] /wp-trackback.php [GET] /as.php [GET] /class-t.api.php [GET] /wp-includes/html-api/ [GET] /wp-content/themes/index.php [GET] /wp-content/themes/hideo/network.php [GET] /.well-known/ [GET] /defaults.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-01 00:07:02 (3 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 valornode	2026-06-01 00:06:56 (3 days ago)	Detected by CrowdSec on www.iambrayden.net-47d88224: CrowdSec: crowdsecurity/http-admin-interface-pr ... show more Detected by CrowdSec on www.iambrayden.net-47d88224: CrowdSec: crowdsecurity/http-admin-interface-probing \| ASN: 8075 (MICROSOFT-CORP-MSN-AS-BLOCK) \| Country: BR \| Range: 20.192.0.0/10 show less	Brute-Force SSH
🇵🇱 stareradia.pl	2026-05-31 23:51:15 (3 days ago)	[Mon Jun 01 01:51:14.651842 2026] [php:error] [pid 2294557:tid 2294557] [client 20.226.61.17:0] scri ... show more [Mon Jun 01 01:51:14.651842 2026] [php:error] [pid 2294557:tid 2294557] [client 20.226.61.17:0] script '/var/www/html/inputs.php' not found or unable to stat [Mon Jun 01 01:51:14.861540 2026] [php:error] [pid 2287188:tid 2287188] [client 20.226.61.17:0] script '/var/www/html/ioxi-o.php' not found or unable to stat [Mon Jun 01 01:51:15.277850 2026] [php:error] [pid 2298817:tid 2298817] [client 20.226.61.17:0] script '/var/www/html/rip.php' not found or unable to stat [Mon Jun 01 01:51:15.486984 2026] [php:error] [pid 2287239:tid 2287239] [client 20.226.61.17:0] script '/var/www/html/admin.php' not found or unable to stat ... show less	Web App Attack
🇵🇱 wHosts	2026-05-31 23:47:19 (3 days ago)	Blocked by Fail2Ban	Web App Attack
🇧🇪 taivas.nl	2026-05-31 23:32:09 (3 days ago)	Bad_requests	Bad Web Bot

Showing 16 to 30 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.81.229.181

🇮🇩 180.247.102.30

🇩🇪 167.94.146.33

🇺🇸 165.154.182.30

🇻🇳 152.32.250.188

🇮🇱 77.137.75.102

🇺🇸 66.240.223.208

🇶🇦 20.173.116.24

🇺🇸 20.64.104.82

🇯🇵 20.63.210.3

🇧🇬 5.188.206.46

🇨🇳 220.181.108.177

🇨🇳 203.76.241.18

🇷🇺 188.19.249.231

🇬🇧 185.216.145.189

🇵🇾 181.123.62.210

🇺🇸 165.154.135.222

🇫🇷 164.68.108.176

🇺🇸 147.185.132.25

🇭🇰 118.26.39.178