JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.24.211.231

20.24.211.231 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.24.211.231

Whois 20.24.211.231

IP Abuse Reports for 20.24.211.231:

This IP address has been reported a total of 46 times from 45 distinct sources. 20.24.211.231 was first reported on June 28th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 IRISIO	2026-06-29 08:16:39 (1 hour ago)	scans/SQL injection/spam posts : 49 queries	Web App Attack SQL Injection
🇩🇪 ghostwarriors	2026-06-28 22:20:22 (11 hours ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-28 22:02:19 (11 hours ago)	Auto-ban: >3000 req/min op 2026-06-28	Web App Attack SSH Hacking
Anonymous	2026-06-28 21:40:04 (11 hours ago)	\| [Dangerous/Hong Kong] Aggressive IP 20.24.211.231 (~30 hits). Type: DoS Defender- Web server 400 e ... show more \| [Dangerous/Hong Kong] Aggressive IP 20.24.211.231 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇩🇪 rh24	2026-06-28 21:26:48 (11 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 20.24.211.231 (HK/Hong Kong/-)	SQL Injection
🇫🇷 masterguru	2026-06-28 21:23:22 (11 hours ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-197)	Hacking
🇩🇪 yvoictra	2026-06-28 21:08:43 (12 hours ago)	Bloqueado automáticamente por CrowdSec. Escenario: crowdsecurity/http-probing	Web App Attack
🇦🇺 Anytech	2026-06-28 20:58:57 (12 hours ago)	Blocked by Conn-Monitor: Web scanning activity	Web App Attack
🇨🇭 dalslab ltd	2026-06-28 20:08:19 (13 hours ago)	[28/Jun/2026:22:08:16 +0200] - 404 404 - GET https ntfy.dalslab.com "/wp-content/plugins/hellopress/ ... show more [28/Jun/2026:22:08:16 +0200] - 404 404 - GET https ntfy.dalslab.com "/wp-content/plugins/hellopress/wp_filemanager.php" [Client 20.24.211.231] [Length 51] [Gzip -] [Sent-to 10.1.1.232] "-" "-" [28/Jun/2026:22:08:17 +0200] - 404 404 - GET https ntfy.dalslab.com "/this_is_a_new_hello_world.php" [Client 20.24.211.231] [Length 51] [Gzip -] [Sent-to 10.1.1.232] "-" "-" [28/Jun/2026:22:08:17 +0200] - 404 404 - GET https ntfy.dalslab.com "/7.php" [Client 20.24.211.231] [Length 51] [Gzip -] [Sent-to 10.1.1.232] "-" "-" [28/Jun/2026:22:08:18 +0200] - 404 404 - GET https ntfy.dalslab.com "/faze.php" [Client 20.24.211.231] [Length 51] [Gzip -] [Sent-to 10.1.1.232] "-" "-" [28/Jun/2026:22:08:18 +0200] - 404 404 - GET https ntfy.dalslab.com "/011i.php" [Client 20.24.211.231] [Length 51] [Gzip -] [Sent-to 10.1.1.232] "-" "-" ... show less	Web Spam Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-28 20:00:01 (13 hours ago)	WordPress plugin direct access attempt: 20.24.211.231 - - [28/Jun/2026:20:54:02 +0100] "GET /wp-con ... show more WordPress plugin direct access attempt: 20.24.211.231 - - [28/Jun/2026:20:54:02 +0100] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 285 "-" "-" show less	Hacking Web App Attack
🇩🇪 Dominik Lysiak	2026-06-28 19:55:41 (13 hours ago)	20.24.211.231 - - [28/Jun/2026:21:55:40 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.24.211.231 - - [28/Jun/2026:21:55:40 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" 20.24.211.231 - - [28/Jun/2026:21:55:40 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" 20.24.211.231 - - [28/Jun/2026:21:55:41 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 444 0 "-" "-" ... show less	Web App Attack
🇩🇪 raph	2026-06-28 18:24:05 (14 hours ago)	[PROTECTED PATHS] crawler credentials.ini, aws.ini, aws.yml, etc.	Bad Web Bot Web App Attack
🇫🇷 lindi	2026-06-28 18:12:50 (15 hours ago)	Probing for resource vulnerabilities ...	Web Spam Brute-Force Bad Web Bot Exploited Host Web App Attack
🇫🇷 dwmp	2026-06-28 18:01:21 (15 hours ago)	Url probing: /xll.asp	Web App Attack
🇩🇪 FeG Deutschland	2026-06-28 17:39:59 (15 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 178.27.90.142

🇲🇽 177.229.197.38

🇵🇰 153.117.32.232

🇺🇸 146.19.91.181

🇧🇩 103.109.56.141

🇨🇳 101.96.195.62

🇨🇦 85.217.149.45

🇬🇧 81.19.219.249

🇨🇳 61.155.106.101

🇰🇷 59.22.201.143

🇨🇳 220.189.253.198

🇩🇴 201.229.176.103

🇧🇷 191.37.22.4

🇵🇪 177.91.251.215

🇨🇦 148.170.156.248

🇦🇷 143.0.171.28

🇬🇧 87.106.35.227

🇺🇸 66.187.5.104

🇺🇸 66.132.195.97

🇺🇸 40.67.183.183