JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.5.101.115

20.5.101.115 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.5.101.115

Whois 20.5.101.115

IP Abuse Reports for 20.5.101.115:

This IP address has been reported a total of 130 times from 108 distinct sources. 20.5.101.115 was first reported on May 26th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-05-28 05:14:04 (1 week ago)	90 attacks on PHP URLs: GET /y.php HTTP/1.1	Web App Attack
🇫🇷 SpaceHost-Server	2026-05-27 22:27:43 (1 week ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-27 22:00:21 (1 week ago)	Auto-ban: 273 malicious requests on 2026-05-26 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 273 malicious requests on 2026-05-26 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
Anonymous	2026-05-27 14:07:32 (1 week ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: AU, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: AU, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
🇫🇷 Flo Flo	2026-05-27 06:55:50 (1 week ago)	20.5.101.115 - - - [27/May/2026:08:55:49 +0200] "flad.xyz" "GET /1.php HTTP/1.1" 444 0 "-" "Mozilla/ ... show more 20.5.101.115 - - - [27/May/2026:08:55:49 +0200] "flad.xyz" "GET /1.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 0.000 ... show less	Web App Attack
🇬🇧 cybersteve99	2026-05-27 06:06:58 (1 week ago)	Too many 4xx Requests -	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-05-27 05:30:08 (1 week ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇬🇧 openstrike.co.uk	2026-05-27 05:13:59 (1 week ago)	460 attacks on ACME URLs, PHP URLs: GET /.well-known/acme-challenge/index.php HTTP/1.1 GET /admin/fu ... show more 460 attacks on ACME URLs, PHP URLs: GET /.well-known/acme-challenge/index.php HTTP/1.1 GET /admin/function.php HTTP/1.1 show less	Web App Attack
Anonymous	2026-05-27 04:13:48 (1 week ago)	wp admin page access attempt ...	Hacking Web App Attack
🇺🇸 octageeks.com	2026-05-27 04:06:27 (1 week ago)	Wordpress malicious attack:[octablocked]	Web App Attack
Anonymous	2026-05-27 03:54:11 (1 week ago)	20.5.101.115 - - [27/May/2026:05:54:04 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 434 " ... show more 20.5.101.115 - - [27/May/2026:05:54:04 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 434 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.5.101.115 - - [27/May/2026:05:54:04 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 241 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.5.101.115 - - [27/May/2026:05:54:10 +0200] "GET /wp-includes/Text/Diff/Engine.php HTTP/1.1" 404 241 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.5.101.115 - - [27/May/2026:05:54:10 +0200] "GET /wp-includes/Text/Diff/Engine.php HTTP/1.1" 404 434 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.5.101.115 - - [27/May/2026:05:54:10 +0200] "GET /wp-content/admin.php HTTP/1.1" 404 241 "-" "Mozilla/5.0 (Windows NT 10.0 ... show less	Brute-Force Web App Attack
🇧🇪 Saec	2026-05-27 03:17:19 (1 week ago)	Jarvis auto-ban: CF top attacker on saec.me (107 hits, AU)	Port Scan Web App Attack
🇪🇸 el-brujo	2026-05-27 03:15:11 (1 week ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: ns2.elhacker.net userAgent: Mozilla/ ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Action: managed_challenge Source: firewallManaged ASN Description: Microsoft Corporation Country: AU Method: GET Timestamp: 2026-05-27T03:15:11Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-05-27 03:14:49 (1 week ago)	[Wed May 27 05:14:48.513298 2026] [proxy_fcgi:error] [pid 1572198:tid 1572295] [remote 20.5.101.115: ... show more [Wed May 27 05:14:48.513298 2026] [proxy_fcgi:error] [pid 1572198:tid 1572295] [remote 20.5.101.115:0] AH01071: Got error 'Primary script unknown' [Wed May 27 05:14:49.119233 2026] [proxy_fcgi:error] [pid 1572198:tid 1572211] [remote 20.5.101.115:0] AH01071: Got error 'Primary script unknown' ... show less	Hacking Web App Attack
🇳🇱 ParaBug	2026-05-27 02:58:32 (1 week ago)	20.5.101.115 - - [27/May/2026:04:58:32 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 403 3074 ... show more 20.5.101.115 - - [27/May/2026:04:58:32 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 403 3074 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Phishing Brute-Force Web App Attack

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 172.94.9.75

🇺🇸 162.216.149.200

🇵🇱 87.251.64.145

🇺🇸 45.92.229.202

🇺🇸 45.55.185.224

🇨🇳 211.95.159.159

🇲🇾 202.59.10.238

🇮🇳 182.95.182.66

🇫🇮 147.185.133.192

🇺🇸 136.144.35.55

🇺🇸 102.129.152.95

🇰🇼 94.129.158.246

🇬🇧 87.236.176.246

🇩🇪 87.106.70.198

🇺🇸 65.49.1.216

🇱🇹 62.60.130.210

🇳🇱 45.76.43.26

🇿🇦 41.76.213.108

🇬🇧 35.203.211.240

🇨🇱 34.176.177.173