JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.237.201.143

20.237.201.143 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.237.201.143

Whois 20.237.201.143

IP Abuse Reports for 20.237.201.143:

This IP address has been reported a total of 34 times from 28 distinct sources. 20.237.201.143 was first reported on May 24th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 strefapi_com	2026-06-04 13:26:18 (6 hours ago)	Brute-force on web app ...	Brute-Force Web App Attack
🇩🇪 piticu iuli	2026-06-04 12:42:35 (7 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 20.237.201.143 (US/United States/-)	SQL Injection
🇺🇸 antlac1	2026-06-04 10:43:19 (9 hours ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇩🇪 Tamsy	2026-06-03 21:15:25 (22 hours ago)	HTTPD - Web Application scripting attack	Web App Attack
🇫🇷 Baking333	2026-06-03 17:57:19 (1 day ago)	[redacted] 20.237.201.143 - - [03/Jun/2026:18:57:16 +0100] "GET /.env HTTP/1.1" 307 379 "-" "Mozilla ... show more [redacted] 20.237.201.143 - - [03/Jun/2026:18:57:16 +0100] "GET /.env HTTP/1.1" 307 379 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" [redacted] 20.237.201.143 - - [03/Jun/2026:18:57:17 +0100] "GET /.[redacted] HTTP/1.1" 307 379 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
Anonymous	2026-06-03 14:42:06 (1 day ago)	20.237.201.143 - - [03/Jun/2026:16:39:40 +0200] "GET /.git/config HTTP/1.1" 404 548 "-" "Mozilla/5.0 ... show more 20.237.201.143 - - [03/Jun/2026:16:39:40 +0200] "GET /.git/config HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" 20.237.201.143 - - [03/Jun/2026:16:42:05 +0200] "GET /backup.sql HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 20.237.201.143 - - [03/Jun/2026:16:42:05 +0200] "GET /dump.sql HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" show less	Web App Attack
🇳🇱 devsecops.cv	2026-06-02 22:04:14 (1 day ago)	20.237.201.143 - - [02/Jun/2026:22:04:13 +0000] "GET /.env HTTP/1.1" 404 414 "-" "Wget/1.21.4" ...	Port Scan Brute-Force Bad Web Bot Web App Attack SSH
🇬🇧 prime_fusion_ld	2026-06-02 11:44:11 (2 days ago)	Blocked by CSF/LFD on vps.primefusion.co.uk. Trigger: 1 Ports: *	Port Scan
🇩🇪 EnthecSolutions	2026-06-01 22:01:30 (2 days ago)	Detected by Enthec Solutions. \| Attempts: 268 in 24h \| Target port: 80	Web App Attack
🇩🇪 Teufel100	2026-06-01 02:52:17 (3 days ago)	ModSecurity rejected a query'	Brute-Force Hacking Web App Attack
🇫🇷 eselpcore.com	2026-05-31 13:48:47 (4 days ago)	Requests to non‑existent PHP scripts (web‑shell probing)	Web App Attack
🇮🇪 AutosOnShow	2026-05-31 12:48:04 (4 days ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-05-31 12:47:44.310 \|	Web App Attack
Anonymous	2026-05-30 20:27:17 (4 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
Anonymous	2026-05-30 15:54:15 (5 days ago)	Reported from Nginx log analysis 19. Log: 20.237.201.143 - - [30/May/2026:xx:xx:xx 0200] "GET /.env ... show more Reported from Nginx log analysis 19. Log: 20.237.201.143 - - [30/May/2026:xx:xx:xx 0200] "GET /.env HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" "-" "US United States San Jose" "AS8075" "Microsoft Corporation" show less	Port Scan Brute-Force SSH
🇺🇸 technojoe99	2026-05-30 04:38:11 (5 days ago)	Exploit scan from 20.237.201.143. GET /.env HTTP/1.1.	Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 118.212.122.122

🇳🇱 190.2.135.111

🇳🇱 185.223.235.12

🇺🇸 136.109.213.90

🇰🇷 59.24.133.197

🇹🇷 5.27.144.198

🇨🇳 222.137.10.130

🇺🇦 178.214.160.4

🇨🇳 101.96.192.88

🇱🇹 81.30.98.158

🇷🇴 2.57.121.25

🇺🇸 216.73.216.75

🇺🇸 209.85.160.197

🇨🇳 171.216.224.102

🇳🇱 45.148.10.147

🇺🇸 40.77.167.130

🇮🇹 31.59.89.180

🇲🇽 186.96.145.241

🇩🇪 131.159.24.205

🇰🇷 121.159.71.249