JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.91.210.252

20.91.210.252 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇪 Sweden
City	Gavle, Gavleborg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.91.210.252

Whois 20.91.210.252

IP Abuse Reports for 20.91.210.252:

This IP address has been reported a total of 99 times from 83 distinct sources. 20.91.210.252 was first reported on March 2nd 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2026-03-05 20:11:54 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇳🇱 homeshowdomain.nl	2026-03-04 22:59:05 (3 months ago)	Auto-ban: 40 malicious requests on 2026-03-03 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 40 malicious requests on 2026-03-03 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇹🇷 rtbh.com.tr	2026-03-04 20:11:52 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 openstrike.co.uk	2026-03-04 06:14:56 (3 months ago)	161 attacks on ACME URLs, PHP URLs: GET /.well-known/acme-challenge/index.php HTTP/1.1 GET /dapa.php ... show more 161 attacks on ACME URLs, PHP URLs: GET /.well-known/acme-challenge/index.php HTTP/1.1 GET /dapa.php? HTTP/1.1 show less	Web App Attack
🇺🇸 octageeks.com	2026-03-04 05:06:44 (3 months ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇳🇱 homeshowdomain.nl	2026-03-03 23:01:08 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-03	Web App Attack SSH Hacking
🇳🇱 oisecnet	2026-03-03 22:01:38 (3 months ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-03-03. 13 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-03-03. 13 requests from this IP. show less	Brute-Force Web App Attack SSH
Anonymous	2026-03-03 13:25:13 (3 months ago)		Web App Attack
Anonymous	2026-03-03 13:22:03 (3 months ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
🇮🇹 VHosting	2026-03-03 13:20:05 (3 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇦🇺 paulshipley.com.au	2026-03-03 13:02:55 (3 months ago)	balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:37 +1100] "GET /zwso.php HTTP/1.1" 4 ... show more balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:37 +1100] "GET /zwso.php HTTP/1.1" 404 83716 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:41 +1100] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 403 725 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:42 +1100] "GET /class19.php HTTP/1.1" 404 83719 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:44 +1100] "GET /class20.php HTTP/1.1" 404 83719 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:48 +1100] "GET /admin.php HTTP/1.1" 404 83717 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:51 +1100] "GET /randkeyword.php HTTP/1.1" 404 83723 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:54 +1100] "GET /fwe.php HTTP/1.1" 404 83715 "-" "-" balcomberetreat.com.au:443 20.91.210.252 - - [04/Mar/2026:00:01:57 +1100] "GET /ioxi-o.php HTTP/1.1" 404 83718 "-" "-" balcomberetreat.com.au:443 20.91.2 ... show less	Web App Attack
🇫🇷 masterguru	2026-03-03 13:00:37 (3 months ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-135)	Hacking Web App Attack
Anonymous	2026-03-03 12:57:01 (3 months ago)	Brute Force attempts	Brute-Force Exploited Host
🇳🇿 Antinson	2026-03-03 12:45:33 (3 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇺🇸 xmission.com	2026-03-03 12:34:02 (3 months ago)	Blocked by UFW (TCP on 80) Source port: 1095 TTL: 106 Packet length: 52 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 1095 TTL: 106 Packet length: 52 TOS: 0x00 This report (for 20.91.210.252) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇹 170.82.210.134

🇮🇳 122.187.229.12

🇧🇪 34.79.229.88

🇰🇷 211.221.158.216

🇵🇱 188.125.33.54

🇺🇸 34.181.134.245

🇨🇳 220.182.18.165

🇧🇷 189.89.13.14

🇩🇪 118.193.58.20

🇨🇦 85.217.149.69

🇺🇸 64.62.156.95

🇮🇳 61.246.127.138

🇮🇳 58.146.101.29

🇺🇸 100.29.192.35

🇳🇱 91.92.42.182

🇺🇸 66.132.186.209

🇳🇱 45.148.10.151

🇷🇺 178.176.82.44

🇺🇸 64.62.156.143

🇮🇹 185.208.104.85