JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.204.136.73

20.204.136.73 was found in our database!

This IP was reported 638 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇳 India
City	Pune, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.204.136.73

Whois 20.204.136.73

IP Abuse Reports for 20.204.136.73:

This IP address has been reported a total of 638 times from 234 distinct sources. 20.204.136.73 was first reported on May 27th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-01 07:58:37 (3 days ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (39/60 min)'; Requests=39	Port Scan
🇮🇩 soc-yk	2026-06-01 07:54:13 (3 days ago)	Type: suspicious_network_activity Threat: unknown Risk: 71 Events: 4446 Evidence: - Persistent susp ... show more Type: suspicious_network_activity Threat: unknown Risk: 71 Events: 4446 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇨🇭 4server	2026-06-01 07:46:45 (3 days ago)	[MonJun0109:46:40.5550412026][security2:error][pid3721267:tid3721641][client20.204.136.73:0]ModSecur ... show more [MonJun0109:46:40.5550412026][security2:error][pid3721267:tid3721641][client20.204.136.73:0]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof\"rx/index\\\\\\\\.php\$\"against\"REQUEST_FILENAME\"required.[file\"/etc/apache2/conf.d/modsec_rules/51_asl_wordpress_extra.conf\"][line\"33\"][id\"333149\"][rev\"21\"][msg\"Atomicorp.comWAFRules:PossiblePHPwebshelldetectedandblocked\"][severity\"CRITICAL\"][hostname\"aidconsultancy.ch\"][uri\"/wp-content/uploads/admin.php\"][unique_id\"ah044B5T581-K1oAHH7UjwAAAQ4\"] show less	Hacking Web App Attack
🇮🇩 soc-yk	2026-06-01 07:30:10 (3 days ago)	Type: web_scanning Threat: unknown Risk: 71 Events: 4446 Evidence: - Automated hostile web probing ... show more Type: web_scanning Threat: unknown Risk: 71 Events: 4446 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Web App Attack
🇩🇪 macrob	2026-06-01 07:22:57 (3 days ago)	2026/06/01 07:22:54 [error] 478279#478279: 272088319 access forbidden by rule, client: 20.204.136.7 ... show more 2026/06/01 07:22:54 [error] 478279#478279: 272088319 access forbidden by rule, client: 20.204.136.73, server: binixo.es, request: "GET /admin.php HTTP/2.0", host: "binixo.es" 2026/06/01 07:22:54 [error] 478277#478277: 272088252 access forbidden by rule, client: 20.204.136.73, server: binixo.es, request: "GET /adminfuns.php HTTP/2.0", host: "binixo.es" 2026/06/01 07:22:56 [error] 478279#478279: 272088085 access forbidden by rule, client: 20.204.136.73, server: binixo.es, request: "GET /wp-admin/ HTTP/2.0", host: "binixo.es" ... show less	Web App Attack
🇳🇱 WinnieHoneypots	2026-06-01 07:22:26 (3 days ago)	Aggressive scanner producing constant 404s	Port Scan Bad Web Bot Web App Attack
🇮🇪 Jim Keir	2026-06-01 07:01:16 (3 days ago)	2026-06-01 07:01:16 20.204.136.73 File scanning, blocking 20.204.136.73 for 5 minutes	Web App Attack
🇷🇺 ago.su	2026-06-01 06:59:18 (3 days ago)	F2B blocked nginx bad bot [otd]	Hacking Web App Attack
🇫🇷 devsecops.cv	2026-06-01 06:58:42 (3 days ago)	Fail2Ban: apache-ratelimit - 20 failures	Port Scan Bad Web Bot Web App Attack
Anonymous	2026-06-01 06:39:10 (3 days ago)	20.204.136.73 - - [01/Jun/2026:08:39:05 +0200] "GET /wp-content/themes/haha.php HTTP/1.1" 404 52838 ... show more 20.204.136.73 - - [01/Jun/2026:08:39:05 +0200] "GET /wp-content/themes/haha.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:06 +0200] "GET /wp-content/themes/theme/about.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:06 +0200] "GET /xmr.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:07 +0200] "GET /about.php HTTP/1.1" 404 52837 20.204.136.73 - - [01/Jun/2026:08:39:07 +0200] "GET /admin.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:07 +0200] "GET /adminfuns.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:08 +0200] "GET /as.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:08 +0200] "GET /bolt.php HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:09 +0200] "GET /cgi-bin/ HTTP/1.1" 404 52838 20.204.136.73 - - [01/Jun/2026:08:39:09 +0200] "GET /class-t.api.php HTTP/1.1" 404 52838 ... show less	Web Spam Web App Attack
🇺🇸 deskpass.com	2026-06-01 06:19:20 (3 days ago)	GET /wp-links-opml.php	Web App Attack
🇫🇷 solution.it	2026-06-01 06:04:30 (3 days ago)	[Mon Jun 01 08:04:29.283609 2026] [php7:error] [pid 121886:tid 121886] [client 20.204.136.73:1989] s ... show more [Mon Jun 01 08:04:29.283609 2026] [php7:error] [pid 121886:tid 121886] [client 20.204.136.73:1989] script '/var/www/html/blog.solution.it/wp-content/themes/haha.php' not found or unable to stat show less	Web App Attack
🇧🇷 Peregrine	2026-06-01 03:12:58 (3 days ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 20.204.136.73 172.70.218.107 - - [28/May/2026:06:40 ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 20.204.136.73 172.70.218.107 - - [28/May/2026:06:40:51 -0300] "GET /inputs.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇩🇪 macrob	2026-06-01 02:21:25 (3 days ago)	2026/06/01 02:21:22 [error] 417839#417839: 271553519 access forbidden by rule, client: 20.204.136.7 ... show more 2026/06/01 02:21:22 [error] 417839#417839: 271553519 access forbidden by rule, client: 20.204.136.73, server: fn.binixo.es, request: "GET /admin.php HTTP/1.1", host: "binixo.bg" 2026/06/01 02:21:22 [error] 417839#417839: 271553519 access forbidden by rule, client: 20.204.136.73, server: fn.binixo.es, request: "GET /adminfuns.php HTTP/1.1", host: "binixo.bg" 2026/06/01 02:21:23 [error] 417839#417839: 271553519 access forbidden by rule, client: 20.204.136.73, server: fn.binixo.es, request: "GET /wp-admin/ HTTP/1.1", host: "binixo.bg" ... show less	Web App Attack
🇩🇪 Philister11	2026-06-01 00:00:55 (3 days ago)	CrowdSec: crowdsecurity/http-probing (IN/AS8075)	Web App Attack Hacking

Showing 226 to 240 of 638 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 178.210.229.116

🇧🇷 177.86.178.106

🇳🇱 176.65.148.147

🇯🇵 136.110.103.183

🇩🇪 91.99.210.171

🇺🇸 47.251.253.223

🇬🇧 35.203.210.251

🇩🇪 185.137.164.17

🇧🇷 177.159.150.111

🇺🇸 136.117.195.252

🇺🇸 66.240.236.116

🇺🇸 65.49.1.26

🇱🇹 62.60.130.128

🇱🇹 45.227.254.170

🇷🇺 5.3.149.246

🇮🇶 204.157.178.138

🇩🇪 194.88.98.90

🇩🇪 185.137.164.13

🇮🇶 185.122.255.190

🇮🇶 185.106.29.190