JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.203.162.38

20.203.162.38 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.203.162.38

Whois 20.203.162.38

IP Abuse Reports for 20.203.162.38:

This IP address has been reported a total of 147 times from 123 distinct sources. 20.203.162.38 was first reported on June 26th 2026, and the most recent report was 46 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 mravb	2026-06-26 18:58:03 (46 seconds ago)	20.203.162.38 - - [26/Jun/2026:21:58:02 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.203.162.38 - - [26/Jun/2026:21:58:02 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 401 188 "-" "-" ... show less	Web App Attack Hacking
🇫🇷 bazter.pro	2026-06-26 18:42:19 (16 minutes ago)	Fail2Ban: plesk-scanner - 10 failures	Port Scan Hacking Brute-Force Web App Attack
Anonymous	2026-06-26 18:41:57 (16 minutes ago)	20.203.162.38 - - [26/Jun/2026:20:41:05 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.203.162.38 - - [26/Jun/2026:20:41:05 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 146740 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:20 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 146721 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:23 +0200] "GET /blurbs.php HTTP/1.1" 404 146702 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:25 +0200] "GET /bajah.php HTTP/1.1" 404 146701 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:27 +0200] "GET /ewdzmqmg.php HTTP/1.1" 404 146704 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:29 +0200] "GET /yytahmjj.php HTTP/1.1" 404 146704 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:31 +0200] "GET /qc0tfrqg.php HTTP/1.1" 404 146704 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:33 +0200] "GET /l4nj78im.php HTTP/1.1" 404 146704 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:34 +0200] "GET /i7jxlwce.php HTTP/1.1" 404 146704 "-" "-" 20.203.162.38 - - [26/Jun/2026:20:41:36 +0200] "GET /8jwcuapc.php HTTP/1.1" 404 146704 "-" "-" 20 ... show less	Web App Attack
🇩🇪 todix	2026-06-26 18:38:10 (20 minutes ago)	WebAttack or semilar from 20.203.162.38	Web App Attack
🇷🇴 INTEQ	2026-06-26 18:15:21 (43 minutes ago)	Web attack from 20.203.162.38	Web App Attack
🇺🇸 alecj.com	2026-06-26 18:07:56 (50 minutes ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇩🇪 LRob.fr	2026-06-26 18:00:08 (58 minutes ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇺🇦 URAN Publishing Service	2026-06-26 17:50:48 (1 hour ago)	20.203.162.38 - - [26/Jun/2026:20:50:47 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.203.162.38 - - [26/Jun/2026:20:50:47 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 709 "-" "-" ... show less	Web App Attack
🇧🇬 pa4080	2026-06-26 17:47:36 (1 hour ago)	Detected by ModSecurity. Request URI: /wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇩🇪 itsolon	2026-06-26 17:46:45 (1 hour ago)	[26/Jun/2026:19:46:44 +0200] 178249600424.331813 20.203.162.38 61905 217.154.7.177 443 [26/Jun/2026: ... show more [26/Jun/2026:19:46:44 +0200] 178249600424.331813 20.203.162.38 61905 217.154.7.177 443 [26/Jun/2026:19:46:44 +0200] 178249600450.010745 20.203.162.38 61905 217.154.7.177 443 [26/Jun/2026:19:46:45 +0200] 178249600588.507227 20.203.162.38 61905 217.154.7.177 443 [26/Jun/2026:19:46:45 +0200] 178249600579.999251 20.203.162.38 61905 217.154.7.177 443 [26/Jun/2026:19:46:45 +0200] 178249600534.304558 20.203.162.38 61905 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇨🇭 dalslab ltd	2026-06-26 17:44:49 (1 hour ago)	[26/Jun/2026:19:44:46 +0200] - 404 404 - GET https converter.dalslab.com "/wp-content/plugins/hellop ... show more [26/Jun/2026:19:44:46 +0200] - 404 404 - GET https converter.dalslab.com "/wp-content/plugins/hellopress/wp_filemanager.php" [Client 20.203.162.38] [Length 9] [Gzip -] [Sent-to 10.1.1.229] "-" "-" [26/Jun/2026:19:44:47 +0200] - 404 404 - GET https converter.dalslab.com "/this_is_a_new_hello_world.php" [Client 20.203.162.38] [Length 9] [Gzip -] [Sent-to 10.1.1.229] "-" "-" [26/Jun/2026:19:44:47 +0200] - 404 404 - GET https converter.dalslab.com "/x.php" [Client 20.203.162.38] [Length 9] [Gzip -] [Sent-to 10.1.1.229] "-" "-" [26/Jun/2026:19:44:48 +0200] - 404 404 - GET https converter.dalslab.com "/wss.php" [Client 20.203.162.38] [Length 9] [Gzip -] [Sent-to 10.1.1.229] "-" "-" [26/Jun/2026:19:44:48 +0200] - 404 404 - GET https converter.dalslab.com "/ty.php?p=" [Client 20.203.162.38] [Length 9] [Gzip -] [Sent-to 10.1.1.229] "-" "-" ... show less	Web Spam Brute-Force Bad Web Bot Web App Attack
🇮🇹 Inartis	2026-06-26 17:38:08 (1 hour ago)	20.203.162.38 - - [26/Jun/2026:19:38:07 +0200] "GET /adminfuns.php HTTP/1.1" 301 509 "-" "-" 20.203. ... show more 20.203.162.38 - - [26/Jun/2026:19:38:07 +0200] "GET /adminfuns.php HTTP/1.1" 301 509 "-" "-" 20.203.162.38 - - [26/Jun/2026:19:38:07 +0200] "GET /admin.php HTTP/1.1" 302 437 "-" "-" 20.203.162.38 - - [26/Jun/2026:19:38:07 +0200] "GET /admin.php HTTP/1.1" 301 501 "-" "-" ... show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Feelautom	2026-06-26 17:35:51 (1 hour ago)	[FeelAutom Auto-Ban] SuspiciousExtension: /ewdzmqmg.php (Score: 200)	Port Scan
🇨🇭 Ribeye375	2026-06-26 17:31:43 (1 hour ago)	HIPS nginx-access-errors - Block tcp/http,https	Brute-Force
🇩🇪 webanyone	2026-06-26 17:30:38 (1 hour ago)	Apache web server attack detected by Fail2Ban in plesk-apache jail	Web App Attack

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 166.77.36.7

🇻🇳 113.161.222.150

🇮🇹 93.150.81.249

🇸🇪 82.118.29.220

🇳🇱 45.148.10.152

🇺🇸 45.132.115.185

🇰🇷 14.63.196.175

🇺🇸 216.25.89.111

🇩🇪 141.95.34.214

🇷🇴 92.118.39.57

🇫🇷 51.68.107.144

🇩🇪 47.245.143.73

🇸🇬 47.84.109.187

🇻🇳 42.96.19.37

🇬🇧 35.203.211.252

🇺🇸 13.86.104.14

🇺🇸 192.227.210.218

🇲🇾 175.136.5.80

🇺🇸 151.245.231.208

🇨🇳 112.53.123.177