JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 4.205.23.164

4.205.23.164 was found in our database!

This IP was reported 213 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 4.205.23.164

Whois 4.205.23.164

IP Abuse Reports for 4.205.23.164:

This IP address has been reported a total of 213 times from 135 distinct sources. 4.205.23.164 was first reported on May 26th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 Christopher Hughes	2026-05-27 02:34:24 (1 week ago)	[Wed May 27 03:34:23.040410 2026] [proxy_fcgi:error] [pid 66325:tid 139773645669952] [client 4.205.2 ... show more [Wed May 27 03:34:23.040410 2026] [proxy_fcgi:error] [pid 66325:tid 139773645669952] [client 4.205.23.164:44286] AH01071: Got error 'Primary script unknown' [Wed May 27 03:34:23.173981 2026] [proxy_fcgi:error] [pid 66325:tid 139773670848064] [client 4.205.23.164:44286] AH01071: Got error 'Primary script unknown' [Wed May 27 03:34:23.487284 2026] [proxy_fcgi:error] [pid 66325:tid 139773628884544] [client 4.205.23.164:44286] AH01071: Got error 'Primary script unknown' [Wed May 27 03:34:23.621022 2026] [proxy_fcgi:error] [pid 66325:tid 139775050794560] [client 4.205.23.164:44286] AH01071: Got error 'Primary script unknown' [Wed May 27 03:34:23.888691 2026] [proxy_fcgi:error] [pid 66325:tid 139774803306048] [client 4.205.23.164:44286] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-05-27 02:30:26 (1 week ago)	levellagiftware.com.au:443 4.205.23.164 - - [27/May/2026:12:30:23 +1000] "GET /inputs.php HTTP/1.1" ... show more levellagiftware.com.au:443 4.205.23.164 - - [27/May/2026:12:30:23 +1000] "GET /inputs.php HTTP/1.1" 404 197635 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 jcbriar	2026-05-27 01:46:42 (1 week ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇳🇱 CryptoYakari	2026-05-27 01:32:28 (1 week ago)	[Wed May 27 04:32:24.517747 2026] [proxy_fcgi:error] [pid 783596:tid 783647] [client 4.205.23.164:0] ... show more [Wed May 27 04:32:24.517747 2026] [proxy_fcgi:error] [pid 783596:tid 783647] [client 4.205.23.164:0] AH01071: Got error 'Primary script unknown' [Wed May 27 04:32:24.620208 2026] [proxy_fcgi:error] [pid 783594:tid 783601] [client 4.205.23.164:0] AH01071: Got error 'Primary script unknown' [Wed May 27 04:32:24.893273 2026] [proxy_fcgi:error] [pid 783594:tid 783611] [client 4.205.23.164:0] AH01071: Got error 'Primary script unknown' ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇬🇧 andypiper	2026-05-27 01:00:31 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-05-27 01:00:27 (1 week ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇸🇪 nekopavel	2026-05-27 00:59:20 (1 week ago)	4.205.23.164 - - [27/May/2026:02:59:16 +0200]"GET /wp-content/uploads/index.php HTTP/1.1" 404 50902" ... show more 4.205.23.164 - - [27/May/2026:02:59:16 +0200]"GET /wp-content/uploads/index.php HTTP/1.1" 404 50902"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36""0.006" "0.000""Toronto" "CA" 4.205.23.164 - - [27/May/2026:02:59:17 +0200]"GET /wp-admin/user/index.php HTTP/1.1" 404 50900"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36""0.006" "0.000""Toronto" "CA" 4.205.23.164 - - [27/May/2026:02:59:17 +0200]"GET /wp-conf.php HTTP/1.1" 404 50891"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36""0.010" "0.000""Toronto" "CA" ... show less	Hacking Bad Web Bot Web App Attack
🇹🇭 MWA SOC	2026-05-27 00:49:23 (1 week ago)		Hacking
🇩🇪 Philister11	2026-05-27 00:35:23 (1 week ago)	CrowdSec: crowdsecurity/http-admin-interface-probing (CA/AS8075)	Web App Attack Hacking
🇺🇸 WellSpring	2026-05-27 00:34:59 (1 week ago)	wordpress scan on 307.today/wp-content/themes/hideo/network.php — WellSpr.ing/NetSentinel civic-AI s ... show more wordpress scan on 307.today/wp-content/themes/hideo/network.php — WellSpr.ing/NetSentinel civic-AI security layer show less	Bad Web Bot Web App Attack
🇫🇷 lindi	2026-05-27 00:31:32 (1 week ago)	Probing for resource vulnerabilities ...	Web Spam Brute-Force Bad Web Bot Exploited Host Web App Attack
🇫🇷 masterguru	2026-05-27 00:25:37 (1 week ago)	PHP execution attempt in wp-content/uploads blocked. Pattern match "(?i)/wp-content/uploads/.\\\\.p ... show more PHP execution attempt in wp-content/uploads blocked. Pattern match "(?i)/wp-content/uploads/.\\\\.php" at REQUEST_URI. (5100-197) show less	Hacking
🇩🇪 macrob	2026-05-27 00:11:08 (1 week ago)	2026/05/27 00:11:05 [error] 3807049#3807049: 259027286 access forbidden by rule, client: 4.205.23.1 ... show more 2026/05/27 00:11:05 [error] 3807049#3807049: 259027286 access forbidden by rule, client: 4.205.23.164, server: fastcredit.net.ua, request: "GET /wp-content/uploads/index.php HTTP/2.0", host: "fastcredit.net.ua" 2026/05/27 00:11:06 [error] 3807046#3807046: 259027486 access forbidden by rule, client: 4.205.23.164, server: fastcredit.net.ua, request: "GET /wp-content/themes/hideo/network.php HTTP/2.0", host: "fastcredit.net.ua" 2026/05/27 00:11:07 [error] 3807048#3807048: 259028071 access forbidden by rule, client: 4.205.23.164, server: fastcredit.net.ua, request: "GET /wp-login.php HTTP/2.0", host: "fastcredit.net.ua" ... show less	Web App Attack
Anonymous	2026-05-27 00:02:13 (1 week ago)	Aggressive web scan	Bad Web Bot Web App Attack
🇧🇪 taivas.nl	2026-05-27 00:02:11 (1 week ago)	Bad_requests	Bad Web Bot

Showing 106 to 120 of 213 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 165.245.247.96

🇳🇱 213.177.179.160

🇳🇱 212.30.37.119

🇫🇮 147.185.133.13

🇩🇪 130.12.181.102

🇻🇳 123.20.0.117

🇳🇱 86.54.31.46

🇺🇸 162.241.152.21

🇨🇳 139.170.72.148

🇭🇰 123.58.215.196

🇭🇰 103.230.240.59

🇱🇹 81.30.98.144

🇳🇱 45.148.10.147

🇫🇮 204.168.213.65

🇭🇰 199.45.154.190

🇲🇽 187.251.123.104

🇨🇳 117.48.216.110

🇩🇪 87.106.29.151

🇨🇳 60.188.42.51

🇳🇱 45.148.10.157