JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.24.71.195

20.24.71.195 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.24.71.195

Whois 20.24.71.195

IP Abuse Reports for 20.24.71.195:

This IP address has been reported a total of 48 times from 42 distinct sources. 20.24.71.195 was first reported on June 28th 2026, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-29 22:01:29 (21 hours ago)	Auto-ban: 245 malicious requests on 2026-06-28 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 245 malicious requests on 2026-06-28 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
Anonymous	2026-06-29 20:04:49 (23 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 chronos	2026-06-29 06:55:19 (1 day ago)	[AUTORAVALT][[29/06/2026 - 03:55:19 -03:00 UTC] Attack from [Microsoft Corporation] [20.24.71.195] A ... show more [AUTORAVALT][[29/06/2026 - 03:55:19 -03:00 UTC] Attack from [Microsoft Corporation] [20.24.71.195] Action: BLocKed DDoS Attack -> Participating in distributed denial-of-service. Phishing -> Phishing websites and/or email. Web Spam -> Comment/forum spam, HTTP referer spam, or other CMS spam. Blog Spam -> CMS blog comment spam. Web App Attack -> Attempts to prob] ... show less	DDoS Attack Phishing Web Spam Blog Spam Web App Attack
🇺🇸 chronos	2026-06-29 06:18:05 (1 day ago)	[AUTORAVALT][[29/06/2026 - 03:18:05 -03:00 UTC] Attack from [Microsoft Corporation] [20.24.71.195] A ... show more [AUTORAVALT][[29/06/2026 - 03:18:05 -03:00 UTC] Attack from [Microsoft Corporation] [20.24.71.195] Action: BLocKed DDoS Attack -> Participating in distributed denial-of-service. Phishing -> Phishing websites and/or email. Web Spam -> Comment/forum spam, HTTP referer spam, or other CMS spam. Blog Spam -> CMS blog comment spam. Web App Attack -> Attempts to prob] ... show less	DDoS Attack Phishing Web Spam Blog Spam Web App Attack
🇲🇽 octageeks.com	2026-06-29 04:16:24 (1 day ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇨🇦 polycoda	2026-06-28 22:19:05 (1 day ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - ↪️ Excessive 30X Errors (Decay-Based)	Hacking Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-28 21:59:49 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-28	Web App Attack SSH Hacking
🇳🇱 thedreamer.nl	2026-06-28 21:20:21 (1 day ago)	20.24.71.195 - - [28/Jun/2026:23:20:08 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.24.71.195 - - [28/Jun/2026:23:20:08 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" 20.24.71.195 - - [28/Jun/2026:23:20:11 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" 20.24.71.195 - - [28/Jun/2026:23:20:14 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" 20.24.71.195 - - [28/Jun/2026:23:20:16 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-06-28 20:39:05 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /miru1.php UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-28 20:30:04 (1 day ago)	\| [Dangerous/Hong Kong] Aggressive IP 20.24.71.195 (~30 hits). Type: DoS Defender- Web server 400 er ... show more \| [Dangerous/Hong Kong] Aggressive IP 20.24.71.195 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
Anonymous	2026-06-28 20:03:33 (1 day ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 conrad10781	2026-06-28 19:56:01 (1 day ago)	nginx-4xx	Web App Attack
🇺🇸 WellSpring	2026-06-28 19:48:45 (1 day ago)	wordpress scan on 252.today/wp-content/plugins/hellopress/wp_filemanager.php — WellSpr.ing/NetSentin ... show more wordpress scan on 252.today/wp-content/plugins/hellopress/wp_filemanager.php — WellSpr.ing/NetSentinel civic-AI security layer show less	Bad Web Bot Web App Attack
🇫🇷 bazter.pro	2026-06-28 19:13:11 (2 days ago)	Fail2Ban: plesk-scanner - 10 failures	Port Scan Hacking Brute-Force Web App Attack
Anonymous	2026-06-28 19:10:46 (2 days ago)	[Sun Jun 28 21:10:44.458112 2026] [authz_core:error] [pid 16925:tid 16935] [client 20.24.71.195:6846 ... show more [Sun Jun 28 21:10:44.458112 2026] [authz_core:error] [pid 16925:tid 16935] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/wp-content [Sun Jun 28 21:10:44.696166 2026] [authz_core:error] [pid 16925:tid 16930] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/this_is_a_new_hello_world.php [Sun Jun 28 21:10:44.944555 2026] [authz_core:error] [pid 16925:tid 16934] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/7.php [Sun Jun 28 21:10:45.177116 2026] [authz_core:error] [pid 16925:tid 16950] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/faze.php [Sun Jun 28 21:10:45.413586 2026] [authz_core:error] [pid 16925:tid 16936] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/011i.php ... show less	Web App Attack

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇦 185.132.186.11

🇳🇱 178.16.54.88

🇺🇸 162.216.150.73

🇻🇳 113.164.66.10

🇸🇪 64.137.14.157

🇬🇧 35.203.211.40

🇺🇸 35.196.119.151

🇺🇸 216.25.89.95

🇮🇩 202.72.196.75

🇨🇳 125.47.122.103

🇨🇳 117.181.128.112

🇸🇪 83.233.149.204

🇫🇷 46.105.28.235

🇻🇪 45.186.208.76

🇳🇱 45.148.10.152

🇭🇰 45.144.137.15

🇷🇺 45.91.64.7

🇩🇪 43.228.157.9

🇿🇦 41.122.2.219

🇩🇪 185.242.3.195