JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.219.49.21

20.219.49.21 was found in our database!

This IP was reported 251 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇳 India
City	Pune, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.219.49.21

Whois 20.219.49.21

IP Abuse Reports for 20.219.49.21:

This IP address has been reported a total of 251 times from 223 distinct sources. 20.219.49.21 was first reported on June 23rd 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 JCB	2026-06-24 07:45:00 (1 hour ago)	20.219.49.21 - - [23/Jun/2026:21:53:38 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 236 ... show more 20.219.49.21 - - [23/Jun/2026:21:53:38 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 236 "-" "-" 20.219.49.21 - - [23/Jun/2026:21:53:39 +0300] "GET /asasxe.php HTTP/1.1" 404 236 "-" "-" ... show less	Web App Attack
🇳🇱 JCB	2026-06-24 06:29:00 (2 hours ago)	20.219.49.21 - - [23/Jun/2026:21:51:35 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 196 ... show more 20.219.49.21 - - [23/Jun/2026:21:51:35 +0300] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 196 "-" "-" 20.219.49.21 - - [23/Jun/2026:21:51:35 +0300] "GET /ewdzmqmg.php HTTP/1.1" 404 196 "-" "-" ... show less	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-24 05:14:56 (3 hours ago)	292 attacks on PHP URLs: GET /xy.php HTTP/1.1	Web App Attack
🇲🇽 octageeks.com	2026-06-24 04:18:33 (4 hours ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇭🇺 DumaNet	2026-06-24 03:26:00 (5 hours ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 23. 23:32:42 Source IP: 20.219 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 23. 23:32:42 Source IP: 20.219.49.21 Portion of the log(s): 20.219.49.21 - [23/Jun/2026:23:32:41 +0200] "GET /fz.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:41 +0200] "GET /thoms.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:41 +0200] "GET /bdroot.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:41 +0200] "GET /xmini.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:40 +0200] "GET /xmu.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:40 +0200] "GET /wp-wp.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:40 +0200] "GET /wp-manager2.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:39 +0200] "GET /filemanger2.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:39 +0200] "GET /get.php HTTP/1.1" 404 153 "-" "-" 20.219.49.21 - [23/Jun/2026:23:32:39 +0200] "GET /nwflm.php HTTP/1.1" 404 153 "-" "-" show less	Web App Attack
🇺🇸 mnsf	2026-06-24 02:17:30 (6 hours ago)	Too many Status 40X (61) Request Overload (125)	Brute-Force Web App Attack
🇺🇸 amarmicro	2026-06-24 01:39:27 (7 hours ago)	Automated abuse detection (Apache log analyser). Triggered: 404 scanner, no user-agent. Ban events: ... show more Automated abuse detection (Apache log analyser). Triggered: 404 scanner, no user-agent. Ban events: 2. Sample log lines: h=20.219.49.21 u=- t=2026-06-23 15:04:32 bk=04 m=GET URL=/wp-content/plugins/hellopress/wp_filemanager.php s=301 b=359 ref=- ua=- v=blogs.amar.com XF=- h=20.219.49.21 u=- t=2026-06-23 15:04:33 bk=04 m=GET URL=/wp-content/plugins/hellopress/wp_filemanager.php s=500 b=613 ref=- ua=- v=blogs.amar.com XF=- h=20.219.49.21 u=- t=2026-06-23 15:04:33 bk=04 m=GET URL=/this_is_a_new_hello_world.php s=301 b=340 ref=- ua=- v=blogs.amar.com XF=- h=20.219.49.21 u=- t=2026-06-23 15:04:34 bk=04 m=GET URL=/this_is_a_new_hello_world.php s=404 b=277 ref=- ua=- v=blogs.amar.com XF=- h=20.219.49.21 u=- t=2026-06-23 15:04:34 bk=04 m=GET URL=/asasxe.php s=301 b=321 ref=- ua=- v=blogs.amar.com XF=- h=20.219.49.21 u=- t=2026-06-23 15:04:34 bk=04 m=GET URL=/asasxe.php s=404 b=277 ref=- ua=- v=blogs.amar.com XF=- h=20.219.49.21 u=- t=2026-06-23 15:04:34 bk=04 m=GET URL=/z60.php s=301 b=318 ref=- ua=- v=blogs.amar.co show less	Bad Web Bot Web App Attack
🇺🇸 mw	2026-06-24 00:01:53 (8 hours ago)	GET /wp-admin/maint/admin.php HTTP/1.1	Web App Attack
Anonymous	2026-06-23 23:17:13 (9 hours ago)	[Tue Jun 23 23:58:39.702887 2026] [access_compat:error] [pid 1785820:tid 1785820] [client 20.219.49. ... show more [Tue Jun 23 23:58:39.702887 2026] [access_compat:error] [pid 1785820:tid 1785820] [client 20.219.49.21:18060] AH01797: client denied by server configuration: /var/www/html/wp-content [Tue Jun 23 23:58:39.702887 2026] [access_compat:error] [pid 1785820:tid 1785820] [client 20.219.49.21:18060] AH01797: client denied by server configuration: /var/www/html/wp-content ... show less	Bad Web Bot Web App Attack
🇫🇷 ol.st	2026-06-23 22:30:36 (10 hours ago)	This IP accessed the path /wp-admin/maint/admin.php from , which is banned. Powered by ListenCaddy	Bad Web Bot Web App Attack
🇩🇪 hbrks	2026-06-23 22:26:22 (10 hours ago)	33 attack(s) detected, such as these: {"event":"web_block","ip":"20.219.49.21","host":"dev.marche-be ... show more 33 attack(s) detected, such as these: {"event":"web_block","ip":"20.219.49.21","host":"dev.marche-be.com","request":"GET /xy.php HTTP/1.1","user_agent":"","reason":"Status-503","timestamp":"2026-06-23T22:26:22 00:00","logentry":"dev.marche-be.com 20.219.49.21 - - [23/Jun/2026:22:26:22 0000] \"GET /xy.php HTTP/1.1\" 503 190 \"-\" \"-\" \"-\""} * Report Details : https://p4u.xyz/CBVSMLFTSVT/1 IP Details *: https://p4u.xyz/CBVSMLFTSVT/2 show less	Web Spam Hacking Bad Web Bot
🇳🇱 0xffffffff	2026-06-23 22:23:47 (10 hours ago)	[2026-06-24 01:23:45.384912] [authz_core:error] [pid 900896:tid 136824471140032] [client 20.219.49.2 ... show more [2026-06-24 01:23:45.384912] [authz_core:error] [pid 900896:tid 136824471140032] [client 20.219.49.21:20199] AH01630: client denied by server configuration: /var/www/html/wp-content , error_notes:wrong-host , URI:'/wp-content/plugins/hellopress/wp_filemanager.php' [2026-06-24 01:23:45.516847] [authz_core:error] [pid 900896:tid 136824462747328] [client 20.219.49.21:20199] AH01630: client denied by server configuration: /var/www/html/this_is_a_new_hello_world.php , error_notes:wrong-host , URI:'/this_is_a_new_hello_world.php' [2026-06-24 01:23:45.649264] [authz_core:error] [pid 900896:tid 136824445961920] [client 20.219.49.21:20199] AH01630: client denied by server configuration: /var/www/html/joomla.php , error_notes:wrong-host , URI:'/joomla.php' [2026-06-24 01:23:45.781042] [authz_core:error] [pid 900896:tid 136824496318144] [client 20.219.49.21:20199] AH01630: client denied by server configuration: /var/www/html/dao.php , error_notes:wrong-host , URI:'/dao.php' [2026-06-24 01:23:45.914699] [authz_core:error show less	Web App Attack Bad Web Bot
🇺🇸 masterguru	2026-06-23 22:22:41 (10 hours ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-169)	Hacking Web App Attack
Anonymous	2026-06-23 22:21:28 (10 hours ago)	Web App Attack	Brute-Force Web App Attack
🇺🇸 Gabriel Camargo	2026-06-23 22:08:16 (10 hours ago)	20.219.49.21 - - [23/Jun/2026:17:08:14 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.219.49.21 - - [23/Jun/2026:17:08:14 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 178 "-" "-" 20.219.49.21 - - [23/Jun/2026:17:08:15 -0500] "GET /this_is_a_new_hello_world.php HTTP/1.1" 301 178 "-" "-" 20.219.49.21 - - [23/Jun/2026:17:08:15 -0500] "GET /ewdzmqmg.php HTTP/1.1" 301 178 "-" "-" ... show less	Brute-Force SSH

Showing 1 to 15 of 251 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 168.0.224.102

🇿🇲 165.56.14.124

🇺🇸 20.64.106.118

🇲🇩 185.164.81.156

🇫🇷 176.31.40.175

🇸🇬 152.42.181.18

🇺🇸 135.237.127.225

🇧🇩 103.136.212.246

🇮🇹 93.149.172.249

🇫🇷 85.217.140.25

🇳🇱 45.148.10.141

🇳🇱 31.14.32.7

🇳🇱 185.136.15.13

🇺🇦 178.171.90.23

🇻🇳 171.231.181.52

🇭🇰 152.32.215.226

🇳🇵 113.199.199.152

🇳🇱 45.148.10.157

🇪🇬 41.234.74.144

🇮🇳 34.100.248.63