JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.239.192.136

20.239.192.136 was found in our database!

This IP was reported 1,454 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.239.192.136

Whois 20.239.192.136

IP Abuse Reports for 20.239.192.136:

This IP address has been reported a total of 1,454 times from 316 distinct sources. 20.239.192.136 was first reported on April 27th 2026, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 2000cn.com.au	2026-04-28 17:46:46 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
Anonymous	2026-04-28 17:04:52 (1 month ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
🇩🇪 www.mammazone.it	2026-04-28 16:35:18 (1 month ago)	mammazone.it:443 20.239.192.136 - - [28/Apr/2026:18:35:09 +0200] "GET /test1.php HTTP/1.1" 404 18552 ... show more mammazone.it:443 20.239.192.136 - - [28/Apr/2026:18:35:09 +0200] "GET /test1.php HTTP/1.1" 404 18552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" mammazone.it:443 20.239.192.136 - - [28/Apr/2026:18:35:17 +0200] "GET /xmlrpc.php HTTP/1.1" 404 18552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Hacking
🇩🇪 macrob	2026-04-28 16:08:02 (1 month ago)	2026/04/28 16:07:57 [error] 3150519#3150519: 185249461 access forbidden by rule, client: 20.239.192 ... show more 2026/04/28 16:07:57 [error] 3150519#3150519: 185249461 access forbidden by rule, client: 20.239.192.136, server: behemoti.com, request: "GET /admin/function.php HTTP/2.0", host: "behemoti.com" 2026/04/28 16:07:59 [error] 3150520#3150520: 185249531 access forbidden by rule, client: 20.239.192.136, server: behemoti.com, request: "GET /wp-content/themes/admin.php HTTP/2.0", host: "behemoti.com" 2026/04/28 16:08:01 [error] 3150519#3150519: 185249478 access forbidden by rule, client: 20.239.192.136, server: behemoti.com, request: "GET /wp-content/admin.php HTTP/2.0", host: "behemoti.com" ... show less	Web App Attack
Anonymous	2026-04-28 16:05:03 (1 month ago)	PHP file probing detected by Fail2Ban	Web App Attack
🇵🇱 sefinek.net	2026-04-28 15:39:38 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /wp-content/uploads/index.php \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇱 CryptoYakari	2026-04-28 15:30:06 (1 month ago)	20.239.192.136 - - [28/Apr/2026:18:30:00 +0300] "GET /1.php HTTP/1.0" 404 201 "-" "Mozilla/5.0 (Wind ... show more 20.239.192.136 - - [28/Apr/2026:18:30:00 +0300] "GET /1.php HTTP/1.0" 404 201 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.239.192.136 - - [28/Apr/2026:18:30:00 +0300] "GET /wp-content/uploads/2024/ HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.239.192.136 - - [28/Apr/2026:18:30:00 +0300] "GET /wp-content/uploads/wp-login.php HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.239.192.136 - - [28/Apr/2026:18:30:00 +0300] "GET /wp-corn-sample.php HTTP/1.0" 404 201 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.239.192.136 - - [28/Apr/2026:18:30:00 +0300] "GET /wp-content/uploads/ HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537. ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇩🇪 ger-stg-sifi1	2026-04-28 15:20:11 (1 month ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇱🇻 garmtech.com	2026-04-28 14:50:36 (1 month ago)	Attempted access to sensitive endpoint (/wp-content/themes/admin.php) detected. Automated scan or un ... show more Attempted access to sensitive endpoint (/wp-content/themes/admin.php) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇭🇳 unph	2026-04-28 14:33:44 (1 month ago)	Intento de acceso sospechoso bloqueado por AbuseIPDB Blocker Plugin	Brute-Force
🇩🇪 FeG Deutschland	2026-04-28 14:28:47 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇦🇺 afleventoffice.com.au	2026-04-28 13:52:46 (1 month ago)	GET /inputs.php HTTP/1.1	Web App Attack
🇬🇧 consul.to	2026-04-28 13:40:10 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-28 13:39:14 (1 month ago)	20.239.192.136 - - [28/Apr/2026:16:39:14 +0300] "GET /wp-content/themes/admin.php HTTP/1.1" 404 783 ... show more 20.239.192.136 - - [28/Apr/2026:16:39:14 +0300] "GET /wp-content/themes/admin.php HTTP/1.1" 404 783 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇳🇱 Site.eu	2026-04-28 13:11:30 (1 month ago)	Excessive multi-domain requests	Brute-Force

Showing 1291 to 1305 of 1454 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.141.9.161

🇺🇿 176.101.56.244

🇸🇪 171.25.158.68

🇭🇰 103.230.240.59

🇷🇺 94.180.250.11

🇬🇭 41.242.115.84

🇮🇳 38.137.56.111

🇬🇧 35.203.210.116

🇯🇵 207.56.229.243

🇲🇾 175.142.202.183

🇩🇪 164.92.203.205

🇮🇳 124.253.181.52

🇺🇸 107.172.252.155

🇳🇬 105.127.8.136

🇷🇴 80.94.92.182

🇨🇳 27.10.17.214

🇨🇳 8.135.29.109

🇰🇷 211.182.48.125

🇬🇧 185.93.89.130

🇧🇷 108.174.147.128