JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.212.57.244

20.212.57.244 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.212.57.244

Whois 20.212.57.244

IP Abuse Reports for 20.212.57.244:

This IP address has been reported a total of 93 times from 79 distinct sources. 20.212.57.244 was first reported on May 15th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Selckie	2026-05-16 06:35:15 (2 weeks ago)	fail2ban: NGINX unusual impact	Web App Attack
🇫🇷 masterguru	2026-05-16 06:30:46 (2 weeks ago)	PHP execution attempt in wp-content/uploads blocked. Pattern match "(?i)/wp-content/uploads/.\\\\.p ... show more PHP execution attempt in wp-content/uploads blocked. Pattern match "(?i)/wp-content/uploads/.\\\\.php" at REQUEST_URI. (5100-196) show less	Hacking
🇩🇪 Skyrider	2026-05-16 06:26:39 (2 weeks ago)	20.212.57.244 - - [16/May/2026:08:26:38 +0200] "GET /inputs.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (W ... show more 20.212.57.244 - - [16/May/2026:08:26:38 +0200] "GET /inputs.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.212.57.244 - - [16/May/2026:08:26:38 +0200] "GET /ioxi-o.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.212.57.244 - - [16/May/2026:08:26:38 +0200] "GET /function/function.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.212.57.244 - - [16/May/2026:08:26:38 +0200] "GET /rip.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.212.57.244 - - [16/May/2026:08:26:38 +0200] "GET /admin.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 antlac1	2026-05-16 06:24:49 (2 weeks ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇺🇸 ipblock.com	2026-05-16 06:24:00 (2 weeks ago)	IPBlock protected site ID [3390-wh]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇫🇷 sthoyer.de	2026-05-16 06:09:02 (2 weeks ago)	20.212.57.244 - - [16/May/2026:08:09:01 +0200] "GET /inputs.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 ( ... show more 20.212.57.244 - - [16/May/2026:08:09:01 +0200] "GET /inputs.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.212.57.244 - - [16/May/2026:08:09:01 +0200] "GET /ioxi-o.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.212.57.244 - - [16/May/2026:08:09:01 +0200] "GET /function/function.php HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-05-16 06:05:04 (2 weeks ago)	PHP file probing detected by Fail2Ban	Web App Attack
🇪🇸 el-brujo	2026-05-16 05:45:15 (2 weeks ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: ns2.elhacker.net userAgent: Mozilla/ ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Action: managed_challenge Source: firewallManaged ASN Description: Microsoft Corporation Country: SG Method: GET Timestamp: 2026-05-16T05:45:15Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-05-16 05:44:55 (2 weeks ago)	[Sat May 16 07:44:54.110053 2026] [proxy_fcgi:error] [pid 1844512:tid 1844604] [remote 20.212.57.244 ... show more [Sat May 16 07:44:54.110053 2026] [proxy_fcgi:error] [pid 1844512:tid 1844604] [remote 20.212.57.244:0] AH01071: Got error 'Primary script unknown' [Sat May 16 07:44:54.662657 2026] [proxy_fcgi:error] [pid 1844512:tid 1844554] [remote 20.212.57.244:0] AH01071: Got error 'Primary script unknown' ... show less	Hacking Web App Attack
🇳🇱 ParaBug	2026-05-16 05:29:33 (2 weeks ago)	20.212.57.244 - - [16/May/2026:07:29:33 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 403 3072 ... show more 20.212.57.244 - - [16/May/2026:07:29:33 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 403 3072 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Phishing Brute-Force Web App Attack
Anonymous	2026-05-16 05:24:00 (2 weeks ago)	20.212.57.244 - - [16/May/2026:07:23:37 +0200] "GET /wp-content/plugins/admin.php HTTP/2.0" 404 329 ... show more 20.212.57.244 - - [16/May/2026:07:23:37 +0200] "GET /wp-content/plugins/admin.php HTTP/2.0" 404 329 20.212.57.244 - - [16/May/2026:07:23:37 +0200] "GET /admin.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:38 +0200] "GET /wk/index.php HTTP/2.0" 404 288 20.212.57.244 - - [16/May/2026:07:23:38 +0200] "GET /supyffqkrnyxagxcjucnCdefault.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:38 +0200] "GET /elp.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:38 +0200] "GET /adminfuns.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:39 +0200] "GET /php8.php HTTP/2.0" 404 288 20.212.57.244 - - [16/May/2026:07:23:39 +0200] "GET /inputs.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:39 +0200] "GET /goods.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:39 +0200] "GET /classwithtostring.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:39 +0200] "GET /simple.php HTTP/2.0" 404 265 20.212.57.244 - - [16/May/2026:07:23:40 +0200] "G ... show less	Web Spam Web App Attack
🇳🇴 doofy	2026-05-16 05:19:11 (2 weeks ago)	[Sat May 16 07:17:25.283600 2026] [access_compat:error] [pid 1645117:tid 1645177] [client 20.212.57. ... show more [Sat May 16 07:17:25.283600 2026] [access_compat:error] [pid 1645117:tid 1645177] [client 20.212.57.244:4478] AH01797: client denied by server configuration: /www/famjohnsen.no/wp-content/plugins/admin.php [Sat May 16 07:17:54.582517 2026] [access_compat:error] [pid 1645117:tid 1645208] [client 20.212.57.244:4478] AH01797: client denied by server configuration: /www/famjohnsen.no/wp-content/themes/admin.php [Sat May 16 07:18:09.021787 2026] [access_compat:error] [pid 1645117:tid 1645179] [client 20.212.57.244:4478] AH01797: client denied by server configuration: /www/famjohnsen.no/wp-content/uploads/index.php [Sat May 16 07:18:38.874632 2026] [access_compat:error] [pid 1645117:tid 1645217] [client 20.212.57.244:4478] AH01797: client denied by server configuration: /www/famjohnsen.no/wp-content/themes/index.php [Sat May 16 07:19:10.688623 2026] [access_compat:error] [pid 1645117:tid 1645205] [client 20.212.57.244:4478] AH01797: client denied by server configuration: /www/famjohnsen.no/w ... show less	Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-05-16 05:14:38 (2 weeks ago)	100 attacks on PHP URLs, ACME URLs: GET /admin/function.php HTTP/1.1 GET /.well-known/acme-challenge ... show more 100 attacks on PHP URLs, ACME URLs: GET /admin/function.php HTTP/1.1 GET /.well-known/acme-challenge/index.php HTTP/1.1 show less	Web App Attack
🇺🇸 deskpass.com	2026-05-16 05:06:15 (2 weeks ago)	GET /wp-content/about.php	Web App Attack
🇩🇪 ger-stg-sifi1	2026-05-16 04:54:42 (2 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack

Showing 16 to 30 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.116

🇩🇪 193.124.20.235

🇳🇱 176.65.139.233

🇧🇷 148.227.83.210

🇮🇳 103.174.34.49

🇺🇸 71.12.42.216

🇺🇸 71.6.233.2

🇩🇪 69.5.169.155

🇲🇾 49.124.150.249

🇲🇾 49.124.149.199

🇩🇪 46.249.99.46

🇨🇴 45.171.180.186

🇧🇬 5.188.206.34

🇳🇱 212.56.48.55

🇧🇷 187.86.3.219

🇧🇷 186.221.147.38

🇬🇪 185.228.135.197

🇮🇹 185.15.169.81

🇳🇱 176.65.148.242

🇮🇩 103.166.200.226