JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.215.180.121

104.215.180.121 was found in our database!

This IP was reported 197 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.215.180.121

Whois 104.215.180.121

IP Abuse Reports for 104.215.180.121:

This IP address has been reported a total of 197 times from 170 distinct sources. 104.215.180.121 was first reported on June 25th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 andreighitan	2026-06-26 08:56:48 (1 day ago)	Automated credential/webshell/config harvesting scanner targeting WordPress installations. Paths inc ... show more Automated credential/webshell/config harvesting scanner targeting WordPress installations. Paths include wp-config, .env, .git/config, credentials.json, and webshell uploads. Part of ongoing coordinated attack campaign active since April 2026. show less	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-26 05:16:10 (2 days ago)	226 attacks on PHP URLs: GET /load.php HTTP/1.1	Web App Attack
🇧🇪 taivas.nl	2026-06-26 04:32:39 (2 days ago)	Many_bad_calls	Web App Attack
🇲🇽 octageeks.com	2026-06-26 04:17:49 (2 days ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇺🇸 EricTheRedFL	2026-06-26 01:33:19 (2 days ago)	web.ab-data.us:80 104.215.180.121 - - [25/Jun/2026:21:33:15 -0400] "GET /wp-content/plugins/hellopre ... show more web.ab-data.us:80 104.215.180.121 - - [25/Jun/2026:21:33:15 -0400] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 685 "-" "-" web.ab-data.us:80 104.215.180.121 - - [25/Jun/2026:21:33:16 -0400] "GET /this_is_a_new_hello_world.php HTTP/1.1" 301 647 "-" "-" web.ab-data.us:80 104.215.180.121 - - [25/Jun/2026:21:33:17 -0400] "GET /inputs.php HTTP/1.1" 301 609 "-" "-" web.ab-data.us:80 104.215.180.121 - - [25/Jun/2026:21:33:17 -0400] "GET /admin.php HTTP/1.1" 301 607 "-" "-" web.ab-data.us:80 104.215.180.121 - - [25/Jun/2026:21:33:17 -0400] "GET /goods.php HTTP/1.1" 301 607 "-" "-" ... show less	Hacking Brute-Force Web App Attack
Anonymous	2026-06-26 01:31:22 (2 days ago)	104.215.180.121 - - [26/Jun/2026:01:31:21 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager. ... show more 104.215.180.121 - - [26/Jun/2026:01:31:21 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 302 539 "-" "-" ... show less	Bad Web Bot Web App Attack
🇬🇧 djboddington	2026-06-26 01:25:32 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/appsec-vpatch	Web App Attack
Anonymous	2026-06-26 01:21:07 (2 days ago)	104.215.180.121 - autoconfig.sliver85.eu - [26/Jun/2026:03:21:02 +0200] "GET /wp-content/plugins/hel ... show more 104.215.180.121 - autoconfig.sliver85.eu - [26/Jun/2026:03:21:02 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 "-" 104.215.180.121 - autoconfig.sliver85.eu - [26/Jun/2026:03:21:04 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 "-" 104.215.180.121 - autoconfig.sliver85.eu - [26/Jun/2026:03:21:05 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 "-" ... show less	Brute-Force Web App Attack
🇩🇪 IVski	2026-06-26 01:12:30 (2 days ago)	IVski WAF \| WordPress scanner detected - probing wp-content, xmlrpc or wp-login	Port Scan Brute-Force Web App Attack
🇩🇪 Nevermind	2026-06-26 01:04:39 (2 days ago)	104.215.180.121 - - [26/Jun/2026:03:04:38 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager. ... show more 104.215.180.121 - - [26/Jun/2026:03:04:38 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 6312 "-" "-" 104.215.180.121 - - [26/Jun/2026:03:04:38 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 5484 "-" "-" 104.215.180.121 - - [26/Jun/2026:03:04:38 +0200] "GET /inputs.php HTTP/1.1" 404 5484 "-" "-" 104.215.180.121 - - [26/Jun/2026:03:04:39 +0200] "GET /admin.php HTTP/1.1" 404 5484 "-" "-" ... show less	Web App Attack
🇬🇧 andypiper	2026-06-26 01:01:20 (2 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇮 23p02732	2026-06-26 01:00:28 (2 days ago)	Mailserver and mailaccount attacks	Brute-Force Bad Web Bot Exploited Host Web App Attack
🇸🇬 WMK965	2026-06-26 00:46:23 (2 days ago)	104.215.180.121 - - [26/Jun/2026:08:46:22 +0800] "GET /wp-content/plugins/hellopress/wp_filemanager. ... show more 104.215.180.121 - - [26/Jun/2026:08:46:22 +0800] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 3258 "-" "-" "-" 104.215.180.121 - - [26/Jun/2026:08:46:22 +0800] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 3258 "-" "-" "-" 104.215.180.121 - - [26/Jun/2026:08:46:22 +0800] "GET /inputs.php HTTP/1.1" 404 3258 "-" "-" "-" 104.215.180.121 - - [26/Jun/2026:08:46:22 +0800] "GET /admin.php HTTP/1.1" 404 3258 "-" "-" "-" 104.215.180.121 - - [26/Jun/2026:08:46:22 +0800] "GET /goods.php HTTP/1.1" 404 3258 "-" "-" "-" show less	Port Scan Web App Attack
🇩🇪 sigurg	2026-06-26 00:42:29 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
Anonymous	2026-06-26 00:34:10 (2 days ago)	T: f2b 404 5x	Web App Attack

Showing 1 to 15 of 197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 89.46.33.248

🇺🇸 2001:470:1:c84::140

🇺🇸 199.189.225.34

🇹🇷 188.58.197.243

🇺🇸 66.132.195.20

🇳🇱 45.148.10.244

🇯🇵 37.19.205.221

🇺🇸 35.169.198.198

🇺🇸 162.216.149.211

🇺🇸 124.198.131.39

🇬🇧 18.133.199.181

🇺🇸 205.210.31.70

🇲🇽 189.130.252.67

🇹🇼 111.70.38.248

🇸🇬 101.47.158.56

🇺🇸 76.49.199.97

🇺🇸 66.132.186.169

🇳🇱 45.198.224.46

🇨🇳 14.103.107.26

🇵🇱 194.180.48.148