JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.29.68.224

20.29.68.224 was found in our database!

This IP was reported 322 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.29.68.224

Whois 20.29.68.224

IP Abuse Reports for 20.29.68.224:

This IP address has been reported a total of 322 times from 273 distinct sources. 20.29.68.224 was first reported on May 29th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 nfsec.pl	2026-05-29 22:47:26 (5 days ago)	20.29.68.224 - - [29/May/2026:22:47:23 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.29.68.224 - - [29/May/2026:22:47:23 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 357 "-" "-" 20.29.68.224 - - [29/May/2026:22:47:23 +0000] "GET /adminfuns.php HTTP/1.1" 403 357 "-" "-" 20.29.68.224 - - [29/May/2026:22:47:24 +0000] "GET /sx_pms.php HTTP/1.1" 403 357 "-" "-" 20.29.68.224 - - [29/May/2026:22:47:24 +0000] "GET /wp-info.php HTTP/1.1" 403 357 "-" "-" 20.29.68.224 - - [29/May/2026:22:47:25 +0000] "GET /wp-test.php HTTP/1.1" 403 357 "-" "-" ... show less	Web App Attack Exploited Host
🇪🇸 yvoictra	2026-05-29 22:40:43 (5 days ago)	20.29.68.224 - - [30/May/2026:00:40:42 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.29.68.224 - - [30/May/2026:00:40:42 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 162 "-" "-" 20.29.68.224 - - [30/May/2026:00:40:42 +0200] "GET /adminfuns.php HTTP/1.1" 404 162 "-" "-" 20.29.68.224 - - [30/May/2026:00:40:43 +0200] "GET /sx_pms.php HTTP/1.1" 404 162 "-" "-" 20.29.68.224 - - [30/May/2026:00:40:43 +0200] "GET /wp-info.php HTTP/1.1" 404 162 "-" "-" 20.29.68.224 - - [30/May/2026:00:40:43 +0200] "GET /wp-test.php HTTP/1.1" 404 162 "-" "-" ... show less	Brute-Force Web App Attack
🇦🇺 artful	2026-05-29 22:38:00 (5 days ago)	Excessive errors ~1k in recent hours	Web App Attack
🇳🇱 MM-bot	2026-05-29 22:35:41 (5 days ago)	URL-probe: HTTP/1.1 GET request on /wp-content/plugins/hellopress/wp_filemanager.php (2026-05-30 00: ... show more URL-probe: HTTP/1.1 GET request on /wp-content/plugins/hellopress/wp_filemanager.php (2026-05-30 00:35:41 UTC+2) show less	Web App Attack Hacking
Anonymous	2026-05-29 22:23:13 (5 days ago)	Logfile match	Web App Attack
🇺🇸 MPL	2026-05-29 22:20:21 (5 days ago)	tcp/80 (10 or more attempts)	Port Scan
🇫🇷 GoodOldTOS	2026-05-29 22:18:09 (5 days ago)	Bad keywords detected in request: /wp-content/	Web App Attack
🇦🇹 SchiWaGoA	2026-05-29 22:14:48 (5 days ago)	This IP was detected by CrowdSec trigger from crowdsecurity/http-probing	Web App Attack Hacking
🇪🇸 Gem	2026-05-29 22:11:14 (5 days ago)	Unauthorized web scan.	Web App Attack
🇫🇷 devsecops.cv	2026-05-29 22:06:33 (5 days ago)	Auto-Ban [2026-05-30 00:06:24]: CRITICAL: Exploit trap paths (1); DC: Microsoft Corporation [Paths: ... show more Auto-Ban [2026-05-30 00:06:24]: CRITICAL: Exploit trap paths (1); DC: Microsoft Corporation [Paths: 95] \| Details: Exploit trap paths: /wp-content/plugins/hellopress/wp_filemanager.php \| Sensitive files/paths: /dostshell.php \| 404 errors (95): /wp-link-snpm.php, /link.php, /xs.php, /ng.php, /a1.php, /bthil.php, /2026w.php, /ggb.php, /xltt.php, /edit.php (and 85 more) show less	Web App Attack Hacking
🇺🇸 infra-monitor	2026-05-29 22:00:05 (5 days ago)	Automated ban via infra-monitor: wp-sensitive-paths, webshell-high-confidence, wordpress-probe, +1 m ... show more Automated ban via infra-monitor: wp-sensitive-paths, webshell-high-confidence, wordpress-probe, +1 more show less	Hacking Web App Attack
🇺🇸 NXTwoThou	2026-05-29 21:59:26 (5 days ago)	/wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-29 21:59:15 (5 days ago)	Auto-ban: >3000 req/min op 2026-05-29	Web App Attack SSH Hacking
🇫🇷 LRNP	2026-05-29 21:56:26 (5 days ago)	mirror2.urbanterror.info:443 20.29.68.224 - - [29/May/2026:21:02:43 +0000] "GET /cilus.php HTTP/1.1" ... show more mirror2.urbanterror.info:443 20.29.68.224 - - [29/May/2026:21:02:43 +0000] "GET /cilus.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:25 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:25 +0000] "GET /adminfuns.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:25 +0000] "GET /sx_pms.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:25 +0000] "GET /wp-info.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:25 +0000] "GET /wp-test.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:26 +0000] "GET /like.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:26 +0000] "GET /we.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:26 +0000] "GET /wp.php HTTP/1.1" 404 146 "-" "-" _:80 20.29.68.224 - - [29/May/2026:21:56:26 +0000] "GET /wp-indx.php HTTP/1.1" 404 146 "-" "-" ... show less	Bad Web Bot Web App Attack
🇺🇸 ersei.net	2026-05-29 21:54:11 (5 days ago)	Brute force multiple 403s	Brute-Force

Showing 46 to 60 of 322 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 2804:30f8:229:c400:e07d:cabc:10d3:ff77

🇺🇸 185.180.141.10

🇲🇽 177.229.209.2

🇺🇸 82.26.162.39

🇺🇸 64.62.197.157

🇺🇸 45.79.207.13

🇿🇼 197.221.232.44

🇺🇸 195.184.76.12

🇸🇬 193.37.32.43

🇯🇵 172.105.218.179

🇺🇸 143.110.141.191

🇸🇬 129.226.95.93

🇮🇳 98.70.48.241

🇺🇸 3.131.24.55

🇺🇸 216.133.145.160

🇧🇷 187.8.120.90

🇺🇸 185.180.141.8

🇬🇧 165.232.104.200

🇺🇸 143.59.90.82

🇻🇺 138.226.239.10