JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.24.71.195

20.24.71.195 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.24.71.195

Whois 20.24.71.195

IP Abuse Reports for 20.24.71.195:

This IP address has been reported a total of 43 times from 41 distinct sources. 20.24.71.195 was first reported on June 28th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 polycoda	2026-06-28 22:19:05 (4 hours ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - ↪️ Excessive 30X Errors (Decay-Based)	Hacking Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-28 21:59:49 (5 hours ago)	Auto-ban: >3000 req/min op 2026-06-28	Web App Attack SSH Hacking
🇳🇱 thedreamer.nl	2026-06-28 21:20:21 (5 hours ago)	20.24.71.195 - - [28/Jun/2026:23:20:08 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.24.71.195 - - [28/Jun/2026:23:20:08 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" 20.24.71.195 - - [28/Jun/2026:23:20:11 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" 20.24.71.195 - - [28/Jun/2026:23:20:14 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" 20.24.71.195 - - [28/Jun/2026:23:20:16 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 499 0 "-" "-" "HK" "Hong Kong" "22.28420" "114.17590" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-06-28 20:39:05 (6 hours ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /miru1.php UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-28 20:30:04 (6 hours ago)	\| [Dangerous/Hong Kong] Aggressive IP 20.24.71.195 (~30 hits). Type: DoS Defender- Web server 400 er ... show more \| [Dangerous/Hong Kong] Aggressive IP 20.24.71.195 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
Anonymous	2026-06-28 20:03:33 (6 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 conrad10781	2026-06-28 19:56:01 (7 hours ago)	nginx-4xx	Web App Attack
🇺🇸 WellSpring	2026-06-28 19:48:45 (7 hours ago)	wordpress scan on 252.today/wp-content/plugins/hellopress/wp_filemanager.php — WellSpr.ing/NetSentin ... show more wordpress scan on 252.today/wp-content/plugins/hellopress/wp_filemanager.php — WellSpr.ing/NetSentinel civic-AI security layer show less	Bad Web Bot Web App Attack
🇫🇷 bazter.pro	2026-06-28 19:13:11 (7 hours ago)	Fail2Ban: plesk-scanner - 10 failures	Port Scan Hacking Brute-Force Web App Attack
Anonymous	2026-06-28 19:10:46 (7 hours ago)	[Sun Jun 28 21:10:44.458112 2026] [authz_core:error] [pid 16925:tid 16935] [client 20.24.71.195:6846 ... show more [Sun Jun 28 21:10:44.458112 2026] [authz_core:error] [pid 16925:tid 16935] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/wp-content [Sun Jun 28 21:10:44.696166 2026] [authz_core:error] [pid 16925:tid 16930] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/this_is_a_new_hello_world.php [Sun Jun 28 21:10:44.944555 2026] [authz_core:error] [pid 16925:tid 16934] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/7.php [Sun Jun 28 21:10:45.177116 2026] [authz_core:error] [pid 16925:tid 16950] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/faze.php [Sun Jun 28 21:10:45.413586 2026] [authz_core:error] [pid 16925:tid 16936] [client 20.24.71.195:6846] AH01630: client denied by server configuration: /var/www/html/011i.php ... show less	Web App Attack
🇩🇪 igerman	2026-06-28 18:44:24 (8 hours ago)	caddy probes: web: GET /011i.php(DROP), GET /7.php(DROP), GET /Q1.php(DROP), GET /Q3.php(DROP), GET ... show more caddy probes: web: GET /011i.php(DROP), GET /7.php(DROP), GET /Q1.php(DROP), GET /Q3.php(DROP), GET /asdf.php(DROP), GET /auu.php(DROP), GET /axds.php(DROP), GET /biufile.php(DROP), GET /class.php(DROP), GET /class14.php(DROP), GET /ctex1.php(DROP), GET /faze.php(DROP), GET /link.php(DROP), GET /miru1.php(DROP), GET /nz.php(DROP), GET /root.php(DROP), GET /solo1.php(DROP), GET /spurwing.php(DROP), GET /this_is_a_new_hello_world.php(DROP), GET /xa.php(DROP), GET /xll.asp(401), GET /znar.php(DROP) \| wordpress: GET /wp-blink.php(DROP), GET /wp-content/plugins/hellopress/wp_filemanager.php(DROP), GET /wp-head.php(DROP) show less	Web App Attack
🇫🇷 lindi	2026-06-28 18:15:29 (8 hours ago)	Probing for resource vulnerabilities ...	Web Spam Brute-Force Bad Web Bot Exploited Host Web App Attack
🇩🇪 webanyone	2026-06-28 17:45:38 (9 hours ago)	Apache web server attack detected by Fail2Ban in plesk-apache jail	Web App Attack
🇺🇸 MPL	2026-06-28 17:23:19 (9 hours ago)	tcp/80 (10 or more attempts)	Port Scan
🇩🇪 todix	2026-06-28 17:00:09 (9 hours ago)	WebAttack or semilar from 20.24.71.195	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 69.5.169.166

🇳🇱 45.148.10.141

🇵🇰 202.163.68.166

🇵🇱 195.3.220.7

🇬🇧 193.163.125.79

🇨🇱 186.103.169.12

🇻🇪 186.95.181.126

🇩🇪 178.20.101.93

🇺🇸 143.198.73.73

🇺🇸 141.11.88.6

🇮🇩 103.149.42.250

🇰🇷 59.26.132.170

🇺🇸 44.59.86.206

🇵🇰 36.255.33.115

🇺🇸 20.65.193.244

🇨🇳 8.138.47.89

🇷🇺 212.188.11.50

🇬🇧 193.163.125.70

🇨🇦 167.99.188.83

🇩🇪 157.230.101.182