AbuseIPDB » 20.243.137.74

Check an IP Address, Domain Name, or Subnet

e.g. 44.210.21.70, microsoft.com, or 5.188.10.0/24

20.243.137.74 was found in our database!

This IP was reported 101 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
Domain Name	microsoft.com
Country	Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 20.243.137.74

Whois 20.243.137.74

IP Abuse Reports for 20.243.137.74:

This IP address has been reported a total of 101 times from 56 distinct sources. 20.243.137.74 was first reported on June 26th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
expandmade.com	24 Jul 2022	user enumeration [24/Jul/2022:10:34:20 "GET //?author=1"]	Web App Attack
websase.com	24 Jul 2022	WordPress XMLRPC Brute Force Attacks	Brute-Force Web App Attack
Maykson	23 Jul 2022	20.243.137.74 - - [23/Jul/2022:22:03:08 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 301 784 ... show more20.243.137.74 - - [23/Jul/2022:22:03:08 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 301 784 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" ... show less	Exploited Host Web App Attack
nextweb	23 Jul 2022	(mod_security) mod_security (id:210410) triggered by 20.243.137.74 (JP/Japan/Tokyo/Tokyo/-/[AS8075 M ... show more(mod_security) mod_security (id:210410) triggered by 20.243.137.74 (JP/Japan/Tokyo/Tokyo/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 5 in the last 3600 secs (CF_ENABLE) show less	Brute-Force
yvoictra	23 Jul 2022	20.243.137.74 - - [23/Jul/2022:23:23:09 +0200] "POST //xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 ... show more20.243.137.74 - - [23/Jul/2022:23:23:09 +0200] "POST //xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 20.243.137.74 - - [23/Jul/2022:23:23:09 +0200] "POST //xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 20.243.137.74 - - [23/Jul/2022:23:23:10 +0200] "POST //xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 20.243.137.74 - - [23/Jul/2022:23:23:10 +0200] "POST //xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 20.243.137.74 - - [23/Jul/2022:23:23:11 +0200] "POST //xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome ... show less	Brute-Force Web App Attack
Maykson	22 Jul 2022	20.243.137.74 - - [22/Jul/2022:23:44:08 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 651 ... show more20.243.137.74 - - [22/Jul/2022:23:44:08 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 651 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" ... show less	Exploited Host Web App Attack
Maykson	22 Jul 2022	20.243.137.74 - - [22/Jul/2022:20:03:35 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 549 ... show more20.243.137.74 - - [22/Jul/2022:20:03:35 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 549 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" ... show less	Exploited Host Web App Attack
QUADEMU Abuse	22 Jul 2022	Noxious/Nuisible/вредоносный Host.	Hacking Web App Attack
nextweb	22 Jul 2022	(mod_security) mod_security (id:210410) triggered by 20.243.137.74 (JP/Japan/Tokyo/Tokyo/-/[AS8075 M ... show more(mod_security) mod_security (id:210410) triggered by 20.243.137.74 (JP/Japan/Tokyo/Tokyo/-/[AS8075 MICROSOFT-CORP-MSN-AS-BLOCK]): 5 in the last 3600 secs (CF_ENABLE) show less	Brute-Force
dwmosaics	20 Jul 2022	"GET //website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 494 "-" "Mozilla/5...	Brute-Force Web App Attack
expandmade.com	20 Jul 2022	user enumeration [20/Jul/2022:04:49:03 "GET //?author=1"]	Web App Attack
websase.com	19 Jul 2022	WordPress XMLRPC Brute Force Attacks	Brute-Force Web App Attack
☠ MaXiWall ☠	19 Jul 2022	[bad_ip: 20.243.137.74 [alert_level: High Risk [inbound(0)+outbound(13): 13 [target_port: 61363 [cla ... show more[bad_ip: 20.243.137.74 [alert_level: High Risk [inbound(0)+outbound(13): 13 [target_port: 61363 [class: Attempted Information Leak [msg: GPL WEB_SERVER 403 Forbidden [csf_block_status: ip-already-blocked [blcheck_ip_score: 96.84% (6/190) [blcheck_domain: "bl.fmb.la,all.s5h.net,cbl.abuseat.org,sbl-xbl.spamhaus.org,xbl.spamhaus.org,zen.spamhaus.org" [blcheck_comment: "blcheck IPv4+IPv6 scanner v0.7.8 @ github.com/sofibox/blcheck" [log_suspicious_score: 5.26% [mod_security_alert: false [has_cidr24_network: false(1) show less	Port Scan
☠ MaXiWall ☠	19 Jul 2022	[bad_ip: 20.243.137.74 [alert_level: High Risk [inbound(0)+outbound(5): 5 [target_port: 56454 [class ... show more[bad_ip: 20.243.137.74 [alert_level: High Risk [inbound(0)+outbound(5): 5 [target_port: 56454 [class: Attempted Information Leak [msg: GPL WEB_SERVER 403 Forbidden [csf_block_status: ip-already-blocked [blcheck_ip_score: 96.84% (6/190) [blcheck_domain: "bl.fmb.la,all.s5h.net,cbl.abuseat.org,sbl-xbl.spamhaus.org,xbl.spamhaus.org,zen.spamhaus.org" [blcheck_comment: "blcheck IPv4+IPv6 scanner v0.7.8 @ github.com/sofibox/blcheck" [log_suspicious_score: 5.26% [mod_security_alert: false [has_cidr24_network: false(1) show less	Port Scan
Maykson	19 Jul 2022	20.243.137.74 - - [19/Jul/2022:13:26:15 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 403 433 ... show more20.243.137.74 - - [19/Jul/2022:13:26:15 -0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 403 433 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" ... show less	Exploited Host Web App Attack