JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.226.80.52

20.226.80.52 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.226.80.52

Whois 20.226.80.52

IP Abuse Reports for 20.226.80.52:

This IP address has been reported a total of 126 times from 114 distinct sources. 20.226.80.52 was first reported on June 6th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 zadmind	2026-06-08 16:45:03 (1 week ago)	Blocked by automated 404 tracking monitoring system.	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2026-06-08 05:13:14 (1 week ago)	110 attacks on PHP URLs: GET /mini.php HTTP/1.1	Web App Attack
🇲🇽 octageeks.com	2026-06-08 04:19:50 (1 week ago)	Wordpress malicious attack:[octascan]	Web App Attack
Anonymous	2026-06-08 03:07:17 (1 week ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: BR, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-07 23:03:33 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇭🇺 DumaNet	2026-06-07 23:00:00 (1 week ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 07. 18:13:58 Source IP: 20.226 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 07. 18:13:58 Source IP: 20.226.80.52 Portion of the log(s): 20.226.80.52 - [07/Jun/2026:18:13:58 +0200] "GET /plugins.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:58 +0200] "GET /mah.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:58 +0200] "GET /default.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:58 +0200] "GET /wp-file.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:58 +0200] "GET /wp-theme.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:57 +0200] "GET /alfa.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:57 +0200] "GET /wk/index.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:57 +0200] "GET /index/function.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:56 +0200] "GET /file2.php HTTP/1.1" 404 153 "-" "-" 20.226.80.52 - [07/Jun/2026:18:13:55 +0200] "GET /inputs.php HTTP/1.1" 404 153 "-" "-" show less	Web App Attack
🇮🇹 Inartis	2026-06-07 18:38:32 (1 week ago)	[Sun Jun 07 20:38:31.725959 2026] [proxy_fcgi:error] [pid 3815167:tid 126864970458816] [client 20.22 ... show more [Sun Jun 07 20:38:31.725959 2026] [proxy_fcgi:error] [pid 3815167:tid 126864970458816] [client 20.226.80.52:9113] AH01071: Got error 'Primary script unknown' [Sun Jun 07 20:38:32.146551 2026] [proxy_fcgi:error] [pid 3815167:tid 126865225447104] [client 20.226.80.52:9113] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oralunal	2026-06-07 18:02:13 (1 week ago)	IP banned by Fail2Ban in jail ah-suss access.log mvfnds ...	Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-07 17:55:35 (1 week ago)	20.226.80.52 - - [07/Jun/2026:11:55:26 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.226.80.52 - - [07/Jun/2026:11:55:26 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:27 -0600] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:27 -0600] "GET /core/init.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:27 -0600] "GET /aa.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:28 -0600] "GET /xmrlpc.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:29 -0600] "GET /class.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:29 -0600] "GET /goods.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:29 -0600] "GET /info.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:30 -0600] "GET /as.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:30 -0600] "GET /bb.php HTTP/1.1" 404 27 "-" "-" 20.226.80.52 - - [07/Jun/2026:11:55:30 -0600] "GET /about.php HTTP/1.1" 404 ... show less	Web App Attack
🇫🇷 tecnoacquisti.com	2026-06-07 17:44:11 (1 week ago)	PrestaShop Security Module: Calls WordPress paths probing known vulnerabilities	Web App Attack
🇵🇱 strefapi_com	2026-06-07 17:20:37 (1 week ago)	Brute-force on web app ...	Brute-Force Web App Attack
🇸🇪 Lemmy	2026-06-07 17:18:14 (1 week ago)		Web App Attack
🇩🇪 FeG Deutschland	2026-06-07 17:13:33 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack
🇦🇺 aranguren.org	2026-06-07 17:10:08 (1 week ago)	20.226.80.52 - - [08/Jun/2026:03:10:06 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.226.80.52 - - [08/Jun/2026:03:10:06 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 986 "-" "-" 20.226.80.52 - - [08/Jun/2026:03:10:07 +1000] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 16 "-" "-" 20.226.80.52 - - [08/Jun/2026:03:10:07 +1000] "GET /core/init.php HTTP/1.1" 404 986 "-" "-" 20.226.80.52 - - [08/Jun/2026:03:10:07 +1000] "GET /aa.php HTTP/1.1" 404 16 "-" "-" 20.226.80.52 - - [08/Jun/2026:03:10:07 +1000] "GET /xmrlpc.php HTTP/1.1" 404 16 "-" "-" 20.226.80.52 - - [08/Jun/2026:03:10:08 +1000] "GET /class.php HTTP/1.1" 404 16 "-" "-" ... show less	Bad Web Bot
🇺🇸 entangled_mongoose	2026-06-07 17:06:32 (1 week ago)	Probed /wp-content/plugins/hellopress/wp_filemanager.php.	Web App Attack

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.181.108.80

🇺🇸 185.180.141.5

🇪🇸 185.120.142.233

🇳🇱 176.65.139.44

🇺🇸 162.216.150.229

🇳🇱 160.119.76.34

🇫🇷 157.173.102.12

🇺🇸 147.185.132.204

🇺🇸 97.210.133.186

🇷🇴 80.94.92.168

🇺🇸 64.225.17.153

🇺🇸 64.62.197.29

🇺🇸 64.62.156.32

🇮🇳 49.204.142.140

🇸🇬 8.222.228.116

🇫🇷 92.205.57.72

🇷🇴 80.94.92.186

🇺🇸 66.132.186.237

🇧🇿 45.227.254.156

🇮🇩 23.40.63.70