JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.251.117.149

20.251.117.149 was found in our database!

This IP was reported 667 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇳🇴 Norway
City	Oslo, Oslo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.251.117.149

Whois 20.251.117.149

IP Abuse Reports for 20.251.117.149:

This IP address has been reported a total of 667 times from 428 distinct sources. 20.251.117.149 was first reported on June 16th 2026, and the most recent report was 6 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-19 18:50:56 (6 minutes ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 jasperedv.de	2026-06-19 18:41:33 (15 minutes ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇳🇱 thedreamer.nl	2026-06-19 18:38:45 (18 minutes ago)	20.251.117.149 - - [19/Jun/2026:20:32:51 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 20.251.117.149 - - [19/Jun/2026:20:32:51 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-" "NO" "Oslo" "59.91330" "10.73890" 20.251.117.149 - - [19/Jun/2026:20:33:01 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 27 "-" "-" "NO" "Oslo" "59.91330" "10.73890" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-19 18:38:28 (18 minutes ago)	[Fri Jun 19 20:38:18.128175 2026] [proxy_fcgi:error] [pid 83117:tid 83149] [client 20.251.117.149:61 ... show more [Fri Jun 19 20:38:18.128175 2026] [proxy_fcgi:error] [pid 83117:tid 83149] [client 20.251.117.149:61231] AH01071: Got error 'Primary script unknown' [Fri Jun 19 20:38:27.006141 2026] [proxy_fcgi:error] [pid 83117:tid 83175] [client 20.251.117.149:56031] AH01071: Got error 'Primary script unknown' [Fri Jun 19 20:38:27.006141 2026] [proxy_fcgi:error] [pid 83117:tid 83175] [client 20.251.117.149:56031] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force Web App Attack
🇨🇭 lufi	2026-06-19 18:30:29 (26 minutes ago)	2026-06-19 20:30:28 20.251.117.149: blacklisted Pattern: wp-content/ ...	Web Spam Brute-Force Hacking Web App Attack
🇵🇱 sledzik1984	2026-06-19 18:27:01 (30 minutes ago)	20.251.117.149 - - [18/Jun/2026:21:12:43 +0200] "GET /wp-good.php HTTP/1.1" 404 153 "-" "-" 20.251.1 ... show more 20.251.117.149 - - [18/Jun/2026:21:12:43 +0200] "GET /wp-good.php HTTP/1.1" 404 153 "-" "-" 20.251.117.149 - - [18/Jun/2026:21:12:43 +0200] "GET /wp-good.php HTTP/1.1" 301 169 "-" "-" 20.251.117.149 - - [19/Jun/2026:20:27:01 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 169 "-" "-" ... show less	Web App Attack
🇺🇸 agenciahypelab.com.br	2026-06-19 18:22:42 (34 minutes ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇮🇩 soc-yk	2026-06-19 18:19:09 (38 minutes ago)	Type: suspicious_network_activity Risk: 100 Events: 554 Evidence: - Persistent suspicious network a ... show more Type: suspicious_network_activity Risk: 100 Events: 554 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇵🇱 strefapi_com	2026-06-19 18:09:59 (47 minutes ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇺🇸 Charlesiv	2026-06-19 18:08:18 (49 minutes ago)	Triggered Cloudflare WAF (botFight) from NO. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Co ... show more Triggered Cloudflare WAF (botFight) from NO. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Corporation) Protocol: HTTP/1.1 (GET method) Endpoint: /minify.php Timestamp: 2026-06-19T16:17:19Z Ray ID: a0e3d7e00c9adcff UA: Empty string show less	Bad Web Bot
🇸🇪 Lemmy	2026-06-19 18:03:32 (53 minutes ago)		Web App Attack
Anonymous	2026-06-19 17:58:40 (58 minutes ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
Anonymous	2026-06-19 17:45:12 (1 hour ago)	/wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇩🇪 Bedios GmbH	2026-06-19 17:37:47 (1 hour ago)	Wordpress hacking attempt	Web App Attack
🇬🇧 Greg Poulson	2026-06-19 17:30:07 (1 hour ago)	Our website was hit by this DDOS at a rate of 39 in 5 minutes.	DDoS Attack Web Spam Brute-Force

Showing 1 to 15 of 667 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.156

🇳🇱 159.223.213.49

🇦🇺 158.178.141.16

🇫🇮 147.185.133.12

🇫🇮 62.60.152.192

🇨🇳 222.222.73.70

🇦🇩 195.178.110.31

🇮🇹 185.56.219.209

🇨🇳 116.171.162.109

🇺🇸 107.150.101.57

🇺🇸 100.30.198.143

🇫🇷 82.67.48.54

🇧🇷 45.235.209.27

🇹🇼 211.22.131.70

🇺🇸 208.80.250.162

🇹🇼 198.235.24.53

🇺🇬 196.0.120.6

🇸🇬 167.172.89.254

🇮🇷 85.198.19.251

🇺🇸 57.151.105.154