JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.212.60.21

20.212.60.21 was found in our database!

This IP was reported 270 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.212.60.21

Whois 20.212.60.21

IP Abuse Reports for 20.212.60.21:

This IP address has been reported a total of 270 times from 230 distinct sources. 20.212.60.21 was first reported on June 23rd 2026, and the most recent report was 34 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-24 04:19:03 (34 minutes ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇺🇸 mnsf	2026-06-24 02:19:00 (2 hours ago)	Too many Status 40X (61) Request Overload (127)	Brute-Force Web App Attack
🇺🇸 mw	2026-06-24 00:01:51 (4 hours ago)	GET /wp-curl-file.php HTTP/1.1	Web App Attack
🇺🇸 chrisj	2026-06-23 22:36:09 (6 hours ago)	[Tue Jun 23 22:36:08.166915 2026] [proxy_fcgi:error] [pid 276594:tid 276680] [client 20.212.60.21:43 ... show more [Tue Jun 23 22:36:08.166915 2026] [proxy_fcgi:error] [pid 276594:tid 276680] [client 20.212.60.21:4360] AH01071: Got error 'Primary script unknown' [Tue Jun 23 22:36:08.610187 2026] [proxy_fcgi:error] [pid 276594:tid 276628] [client 20.212.60.21:4360] AH01071: Got error 'Primary script unknown' [Tue Jun 23 22:36:09.053293 2026] [proxy_fcgi:error] [pid 276594:tid 276655] [client 20.212.60.21:4360] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇷🇺 Deynekin.com	2026-06-23 22:35:07 (6 hours ago)	This IP address has been identified as part of a botnet infrastructure used by threat actors, indica ... show more This IP address has been identified as part of a botnet infrastructure used by threat actors, indicating automated and malicious activity. show less	Fraud Orders Web App Attack SSH Web Spam FTP Brute-Force Phishing Email Spam Port Scan Brute-Force Exploited Host Hacking SQL Injection
🇵🇱 sigurg	2026-06-23 22:30:53 (6 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇩🇪 burlacu.org	2026-06-23 22:30:02 (6 hours ago)	Nginx multi-log analysis detected: 404_scan. Evidence: Excessive 404 scanning with 80 requests. Bloc ... show more Nginx multi-log analysis detected: 404_scan. Evidence: Excessive 404 scanning with 80 requests. Blocked automatically. show less	Port Scan Bad Web Bot
🇫🇷 SpaceHost-Server	2026-06-23 22:29:02 (6 hours ago)		Brute-Force Web App Attack
Anonymous	2026-06-23 22:28:07 (6 hours ago)	...	Web App Attack
🇮🇪 AutosOnShow	2026-06-23 22:27:05 (6 hours ago)	blocked for webapp attack \| path requested: /xs.php \| seen at 2026-06-23 22:26:34.730 \|	Web App Attack
🇺🇸 NXTwoThou	2026-06-23 22:24:19 (6 hours ago)	/wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇳🇱 tpjg	2026-06-23 22:17:55 (6 hours ago)	Automated: 15 requests with error status in 120s window from 20.212.60.21. Evidence: /wo-cn.php:301, ... show more Automated: 15 requests with error status in 120s window from 20.212.60.21. Evidence: /wo-cn.php:301,/core.php:404,/core.php:301,/cookie.php:404,/cookie.php:301,/wp-includes/core.php:404,/wp-includes/core.php:301,/bthil.php:404,/bthil.php:301,/ewdzmqmg.php:404,/ewdzmqmg.php:301,/this_is_a_new_hello_world.php:404,/this_is_a_new_hello_world.php:301,/wp-content/plugins/hellopress/wp_filemanager.php:404,/wp-content/plugins/hellopress/wp_filemanager.php:301 show less	Web App Attack
🇪🇸 alferez	2026-06-23 22:16:18 (6 hours ago)	Searching hacked php files	Hacking Exploited Host Web App Attack
🇺🇦 URAN Publishing Service	2026-06-23 22:15:02 (6 hours ago)	20.212.60.21 - - [24/Jun/2026:01:15:01 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.212.60.21 - - [24/Jun/2026:01:15:01 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 4679 "-" "-" ... show less	Web App Attack
🇷🇴 iulianh	2026-06-23 22:07:23 (6 hours ago)	*	Brute-Force SSH

Showing 1 to 15 of 270 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 131.100.242.102

🇩🇪 130.12.182.143

🇳🇱 89.34.17.130

🇺🇸 73.21.28.14

🇬🇧 193.163.125.191

🇮🇳 117.250.107.180

🇩🇪 64.89.163.156

🇬🇧 62.30.212.66

🇲🇾 47.250.128.13

🇨🇳 221.226.138.234

🇰🇷 119.203.251.187

🇰🇷 118.47.200.96

🇰🇷 114.202.80.152

🇷🇺 95.47.246.223

🇸🇪 83.177.240.110

🇺🇸 81.30.98.225

🇨🇳 203.189.195.8

🇨🇳 202.46.62.3

🇸🇬 145.223.131.24

🇿🇦 102.64.41.189