JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.212.6.161

20.212.6.161 was found in our database!

This IP was reported 356 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.212.6.161

Whois 20.212.6.161

IP Abuse Reports for 20.212.6.161:

This IP address has been reported a total of 356 times from 225 distinct sources. 20.212.6.161 was first reported on February 21st 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2026-03-04 20:11:52 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 ghostwarriors	2026-03-02 13:51:41 (3 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-02-28 02:30:29 (3 months ago)	Excessive multi-domain requests	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-26 20:11:46 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2026-02-25 10:21:56 (3 months ago)	FortiWeb WAF: 24 attacks detected. Threat Score: 20600. Types: Client Management(12), Block IP List( ... show more FortiWeb WAF: 24 attacks detected. Threat Score: 20600. Types: Client Management(12), Block IP List(12). Origin: Singapore. show less	Web App Attack
🇬🇧 openstrike.co.uk	2026-02-25 06:14:01 (3 months ago)	137 attacks on ACME URLs, PHP URLs: GET /.well-known/acme-challenge/index.php HTTP/1.1 GET /user-new ... show more 137 attacks on ACME URLs, PHP URLs: GET /.well-known/acme-challenge/index.php HTTP/1.1 GET /user-new.php HTTP/1.1 show less	Web App Attack
🇹🇷 rtbh.com.tr	2026-02-24 20:11:44 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 YF	2026-02-24 19:10:14 (3 months ago)	404 errors (Vulnerability scan)	Brute-Force Web App Attack
🇬🇧 kiwi.network	2026-02-24 18:40:14 (3 months ago)	Web application fingerprinting: Binary file (standard input) matches	Hacking Web App Attack Exploited Host
🇺🇸 myagent.site	2026-02-24 18:16:43 (3 months ago)	Blocking for trying to access an exploit file: /style.php	Hacking
🇩🇪 McClay	2026-02-24 17:47:25 (3 months ago)	HTTP-404 spam:20.212.6.161 - - [24/Feb/2026:18:47:22 +0100] "GET /wp-content/plugins/hellopress/wp_f ... show more HTTP-404 spam:20.212.6.161 - - [24/Feb/2026:18:47:22 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 995 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:22 +0100] "GET /gaigu.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:22 +0100] "GET /c99.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:23 +0100] "GET /2.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:23 +0100] "GET /0x.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:23 +0100] "GET /abcd.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:23 +0100] "GET /i.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:23 +0100] "GET /goat.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:24 +0100] "GET /asd67.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:24 +0100] "GET /x12.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 - - [24/Feb/2026:18:47:24 +0100] "GET /41.php HTTP/1.1" 404 190 "-" "-" 20.212.6.161 ... show less	Web App Attack
🇺🇸 Epimetheus	2026-02-24 17:36:47 (3 months ago)	Unauthorized access attempts: [GET] /go.php [GET] /wp-cache.php [GET] /aa.php [GET] /wp-includes/Si ... show more Unauthorized access attempts: [GET] /go.php [GET] /wp-cache.php [GET] /aa.php [GET] /wp-includes/SimplePie/index.php [GET] /sys.php [GET] /wp-info.php [GET] /gettest.php [GET] /term.php [GET] /cgi-bin/lsd.php [GET] /media-upload.php [GET] /wp-content/cc13.php [GET] /new4.php [GET] /sad8rd1.php [GET] /x12.php UA: Unknown show less	Web App Attack
🇩🇪 barbarella	2026-02-24 16:27:34 (3 months ago)	Multiple (128) times attack on https port 443: unauthorized access to Wordpress files (GET /wp-conte ... show more Multiple (128) times attack on https port 443: unauthorized access to Wordpress files (GET /wp-content/plugins/hellopress/wp_filemanager.php) 16:27:34 Hacking attempt of vulnerable PHP Script (GET /gaigu.php) 16:27:35 Hacking attempt of vulnerable PHP Script (GET /c99.php) 16:27:35 Hacking attempt of vulnerable PHP Script (GET /2.php) 16:27:36 Hacking attempt of vulnerable PHP Script (GET /0x.php) 16:27:36 Hacking attempt of vulnerable PHP Script (GET /abcd.php) 16:27:37 Hacking attempt of vulnerable PHP Script (GET /i.php) 16:27:37 Hacking attempt of vulnerable PHP Script (GET /goat.php) 16:27:38 Hacking attempt of vulnerable PHP Script (GET /asd67.php) show less	Hacking Web App Attack
🇩🇪 Kreapptivo	2026-02-24 16:19:39 (3 months ago)	[24/Feb/2026:17:19:34 +0100] Web-Request: "GET /wp-includes/pomo/wp-login.php", User-Agent: "-" [24/ ... show more [24/Feb/2026:17:19:34 +0100] Web-Request: "GET /wp-includes/pomo/wp-login.php", User-Agent: "-" [24/Feb/2026:17:19:35 +0100] Web-Request: "GET /wp-includes/pomo/wp-login.php", User-Agent: "-" show less	Bad Web Bot Web App Attack
Anonymous	2026-02-24 15:55:00 (3 months ago)	Aggressive web scan	Web App Attack

Showing 1 to 15 of 356 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇦 102.64.46.106

🇺🇸 97.107.141.150

🇭🇰 47.82.75.232

🇺🇸 44.200.217.98

🇭🇰 43.154.140.188

🇬🇧 35.203.211.254

🇬🇧 35.203.211.83

🇨🇳 14.103.84.166

🇹🇭 202.29.225.158

🇮🇹 188.152.238.126

🇭🇺 185.111.209.32

🇬🇧 178.62.13.188

🇫🇷 163.172.143.147

🇫🇮 147.185.133.19

🇺🇸 146.190.134.221

🇿🇦 102.64.39.217

🇨🇳 101.71.210.23

🇩🇪 69.5.169.141

🇺🇸 64.62.156.117

🇺🇸 2607:f8b0:4001:c32::129