JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.41.99.60

20.41.99.60 was found in our database!

This IP was reported 168 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.41.99.60

Whois 20.41.99.60

IP Abuse Reports for 20.41.99.60:

This IP address has been reported a total of 168 times from 135 distinct sources. 20.41.99.60 was first reported on June 24th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-25 21:20:50 (11 hours ago)	Too many Status 40X (55)	Brute-Force Web App Attack
Anonymous	2026-06-25 17:03:51 (16 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: KR, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: KR, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇺🇸 EvilTurkey	2026-06-25 12:13:38 (21 hours ago)	Web app attack against financial institution website.	Web App Attack Hacking
🇬🇧 openstrike.co.uk	2026-06-25 05:14:23 (1 day ago)	392 attacks on PHP URLs, ACME URLs: GET /wp-admin/index.php HTTP/1.1 GET /.well-known/acme-challenge ... show more 392 attacks on PHP URLs, ACME URLs: GET /wp-admin/index.php HTTP/1.1 GET /.well-known/acme-challenge/index.php HTTP/1.1 show less	Web App Attack
🇧🇪 taivas.nl	2026-06-25 04:33:05 (1 day ago)	Many_bad_calls	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-24 22:28:30 (1 day ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-24 22:01:01 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-24	Web App Attack SSH Hacking
🇫🇷 tecnicorioja	2026-06-24 22:00:28 (1 day ago)	wp-login attack [24/Jun/2026:20:20:06	Brute-Force Web App Attack
🇮🇩 soc-yk	2026-06-24 20:30:14 (1 day ago)	Type: suspicious_network_activity Risk: 63 Events: 656 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 63 Events: 656 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇯🇵 beon	2026-06-24 20:03:57 (1 day ago)	[DateTime=>2026-06-24T20:03:57Z to 2026-06-24T20:04:06Z (UTC)] , [HoneyPot_Hits=>107 times] , [Honey ... show more [DateTime=>2026-06-24T20:03:57Z to 2026-06-24T20:04:06Z (UTC)] , [HoneyPot_Hits=>107 times] , [HoneyPots=>/wp-content/plugins/hellopress/wp_filemanager.php, /this_is_a_new_hello_world.php, /admin.php, /public/css.php, /classwithtostring.php, /wp-includes/block-supports/ and others] , [404target=>/wicked.php] , [total_Hits=>108 times] , [hit_per_second=>12] , [Keyword=>WordPress, .well-known, PHP web shells] show less	Bad Web Bot Web App Attack Hacking
🇬🇧 Mendip_Defender	2026-06-24 19:58:21 (1 day ago)	20.41.99.60 - - [24/Jun/2026:20:58:13 +0100] "GET /wp-includes/ID3/ HTTP/1.1" 404 4866 "-" "Mozilla/ ... show more 20.41.99.60 - - [24/Jun/2026:20:58:13 +0100] "GET /wp-includes/ID3/ HTTP/1.1" 404 4866 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.41.99.60 - - [24/Jun/2026:20:58:14 +0100] "GET /166.php HTTP/1.1" 404 4037 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.41.99.60 - - [24/Jun/2026:20:58:14 +0100] "GET /server.php HTTP/1.1" 404 4037 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇷🇺 sms.ru	2026-06-24 19:50:33 (1 day ago)	/wp-admin/css/	Web App Attack
🇸🇬 anotherwatcher	2026-06-24 19:43:08 (1 day ago)	bad bot	Bad Web Bot
🇺🇸 Epimetheus	2026-06-24 19:38:12 (1 day ago)	Unauthorized access attempts: [GET] /wpc.php [GET] /k.php [GET] /db.php [GET] /test.php [GET] /simp ... show more Unauthorized access attempts: [GET] /wpc.php [GET] /k.php [GET] /db.php [GET] /test.php [GET] /simple.php [GET] /a7.php [GET] /wp-includes/js/tinymce/skins/wordpress/images/index.php [GET] /tfm.php [GET] /wp-admin/images/about.php [GET] /wp-includes/SimplePie/about.php [GET] /wp-admin/includes/xmrlpc.php [GET] /wp-admin/images/install.php [GET] /wp-conflg.php [GET] /.info.php [GET] /css/admin.php [GET] /o.php [GET] /wp-includes/css/dist/block-library/ [GET] /anonse/lock360.php [GET] /wp-includes/css/ [GET] /moon.php [GET] /wp-admin/js/about.php [GET] /bypass.php [GET] /wp-the.php [GET] /wp-admin/css/ [GET] /perodua-malaysia//classwithtostring.php [GET] /templates/beez3/index.php [GET] /123.php [GET] /server.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇺🇸 antlac1	2026-06-24 19:33:47 (1 day ago)	crowdsecurity/http-backdoors-attempts	Brute-Force Web App Attack

Showing 1 to 15 of 168 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 131.108.162.24

🇧🇩 103.127.222.196

🇫🇷 51.210.11.38

🇨🇳 8.166.135.185

🇳🇱 2001:67c:e60:c0c:192:42:116:115

🇺🇸 185.226.196.17

🇫🇮 147.185.133.92

🇵🇰 103.162.41.159

🇺🇸 91.230.168.4

🇸🇬 47.128.18.106

🇲🇦 41.248.236.27

🇺🇸 35.197.47.72

🇮🇷 5.250.114.90

🇩🇪 2400:cb00:933:1000:e9ed:794:96d8:857f

🇰🇿 185.234.63.250

🇺🇸 172.71.254.180

🇺🇸 172.69.7.153

🇫🇮 147.185.133.218

🇺🇸 141.11.88.108

🇺🇸 98.93.196.27