JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.226.64.72

20.226.64.72 was found in our database!

This IP was reported 342 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.226.64.72

Whois 20.226.64.72

IP Abuse Reports for 20.226.64.72:

This IP address has been reported a total of 342 times from 294 distinct sources. 20.226.64.72 was first reported on June 12th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇺 DumaNet	2026-06-13 07:39:00 (1 hour ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 12. 22:15:59 Source IP: 20.226 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 12. 22:15:59 Source IP: 20.226.64.72 Portion of the log(s): 20.226.64.72 - [12/Jun/2026:22:15:59 +0200] "GET /h2a2ck.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:58 +0200] "GET /drykl.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:58 +0200] "GET /flox.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:58 +0200] "GET /cxl.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:58 +0200] "GET /rum.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:57 +0200] "GET /wolf.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:57 +0200] "GET /asu.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:57 +0200] "GET /momo.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:57 +0200] "GET /loxico93.php HTTP/1.1" 404 153 "-" "-" 20.226.64.72 - [12/Jun/2026:22:15:57 +0200] "GET /atomlib.php HTTP/1.1" 404 153 "-" "-" show less	Web App Attack
🇪🇸 Gem	2026-06-13 05:59:38 (3 hours ago)	Unauthorized web scan.	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-13 05:14:26 (4 hours ago)	295 attacks on PHP URLs: GET /invisi.php HTTP/1.1	Web App Attack
🇨🇿 akac	2026-06-13 05:01:07 (4 hours ago)	Web vulnerability scanning: HTTP/1.1 GET /wolf.php	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 Charlesiv	2026-06-13 02:59:29 (6 hours ago)	Triggered Cloudflare WAF (botFight) from BR. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Co ... show more Triggered Cloudflare WAF (botFight) from BR. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Corporation) Protocol: HTTP/1.1 (GET method) Endpoint: /invisi.php Timestamp: 2026-06-12T22:58:18Z Ray ID: a0ac75a07e6680fe UA: Empty string show less	Bad Web Bot
🇬🇧 andypiper	2026-06-13 01:01:32 (8 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-13 01:00:53 (8 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/tpot-web-high.	Bad Web Bot Web App Attack
🇱🇹 NotACaptcha	2026-06-13 01:00:44 (8 hours ago)	webserver:80 [13/Jun/2026] "GET /wpconf.php HTTP/1.1" 302 415 webserver:80 [13/Jun/2026] "GET /thi ... show more webserver:80 [13/Jun/2026] "GET /wpconf.php HTTP/1.1" 302 415 webserver:80 [13/Jun/2026] "GET /this_is_a_new_hello_world.php HTTP/1.1" 302 453 webserver:80 [13/Jun/2026] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 302 491 webserver:80 [13/Jun/2026] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 155 webserver:80 [13/Jun/2026] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 341 webserver:443 [13/Jun/2026] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 408 webserver:443 [13/Jun/2026] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 4182 show less	Web App Attack
🇸🇬 pusathosting.com	2026-06-13 01:00:05 (8 hours ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇫🇷 Richie	2026-06-13 00:57:37 (8 hours ago)	[HOST2] Port Scan detected	Port Scan
Anonymous	2026-06-13 00:57:30 (8 hours ago)	20.226.64.72 - - [13/Jun/2026:09:57:29 +0900] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.226.64.72 - - [13/Jun/2026:09:57:29 +0900] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 441 "-" "-" 20.226.64.72 - - [13/Jun/2026:09:57:29 +0900] "GET /this_is_a_new_hello_world.php HTTP/1.1" 403 441 "-" "-" 20.226.64.72 - - [13/Jun/2026:09:57:30 +0900] "GET /wpconf.php HTTP/1.1" 403 441 "-" "-" ... show less	Brute-Force
🇮🇹 madaello	2026-06-13 00:56:23 (8 hours ago)	20.226.64.72 - - [13/Jun/2026:02:56:08 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 9460 ... show more 20.226.64.72 - - [13/Jun/2026:02:56:08 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 94606 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:10 +0200] "GET /wpconf.php HTTP/1.1" 404 94549 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:11 +0200] "GET /Ov-Simple1.php HTTP/1.1" 404 94561 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:13 +0200] "GET /atomlib.php HTTP/1.1" 404 94552 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:14 +0200] "GET /loxico93.php HTTP/1.1" 404 94550 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:16 +0200] "GET /momo.php HTTP/1.1" 404 94543 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:17 +0200] "GET /asu.php HTTP/1.1" 404 94540 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:19 +0200] "GET /wolf.php HTTP/1.1" 404 94543 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:21 +0200] "GET /rum.php HTTP/1.1" 404 94540 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:56:22 +0200] "GET /cxl.php HTTP/1.1" 404 94540 "-" "-" ... show less	Web App Attack
🇺🇸 jcbriar	2026-06-13 00:56:04 (8 hours ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇳🇱 U.N.Owen	2026-06-13 00:55:13 (8 hours ago)	20.226.64.72 - - [13/Jun/2026:03:55:07 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.226.64.72 - - [13/Jun/2026:03:55:07 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:07 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:08 +0300] "GET /wpconf.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:08 +0300] "GET /Ov-Simple1.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:08 +0300] "GET /atomlib.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:09 +0300] "GET /loxico93.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:09 +0300] "GET /momo.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:10 +0300] "GET /asu.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:10 +0300] "GET /wolf.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:10 +0300] "GET /rum.php HTTP/1.1" 404 6357 "-" "-" 20.226.64.72 - - [13/Jun/2026:03:55:11 +0300] ... show less	Hacking Web App Attack
Anonymous	2026-06-13 00:54:46 (8 hours ago)	20.226.64.72 - - [13/Jun/2026:02:54:45 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.226.64.72 - - [13/Jun/2026:02:54:45 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 384 "-" "-" 20.226.64.72 - - [13/Jun/2026:02:54:45 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 403 384 "-" "-" ... show less	Web App Attack

Showing 1 to 15 of 342 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 128.185.218.18

🇫🇷 51.91.252.38

🇸🇬 47.79.200.136

🇰🇷 43.164.190.40

🇺🇸 206.125.132.106

🇧🇷 187.87.247.94

🇨🇴 181.234.36.73

🇫🇷 176.149.246.125

🇩🇪 167.233.123.59

🇹🇭 165.154.51.221

🇮🇳 152.52.227.94

🇬🇪 91.239.206.123

🇺🇸 66.132.186.235

🇫🇷 51.75.127.195

🇸🇬 47.79.206.42

🇺🇸 43.153.59.240

🇭🇰 34.92.111.98

🇺🇸 20.163.34.54

🇺🇸 20.115.49.134

🇫🇷 217.76.50.198