JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.43.19.237

20.43.19.237 was found in our database!

This IP was reported 838 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.43.19.237

Whois 20.43.19.237

IP Abuse Reports for 20.43.19.237:

This IP address has been reported a total of 838 times from 486 distinct sources. 20.43.19.237 was first reported on April 14th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-04-14 12:00:10 (1 month ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇩🇪 BlueWire Hosting	2026-04-14 11:58:14 (1 month ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
🇱🇻 garmtech.com	2026-04-14 11:58:07 (1 month ago)	IM360 WAF: Block access to the shell MV:/wso.php	Hacking
🇩🇪 FeG Deutschland	2026-04-14 11:58:04 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇬🇧 Oakley	2026-04-14 11:57:55 (1 month ago)	(mod_security) mod_security (id:900191) triggered by 20.43.19.237 (CA/Canada/-): 5 in the last 900 s ... show more (mod_security) mod_security (id:900191) triggered by 20.43.19.237 (CA/Canada/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇫🇷 masterguru	2026-04-14 11:56:27 (1 month ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-195)	Hacking
🇩🇪 R.G.	2026-04-14 11:56:12 (1 month ago)	(ScanningForFiles) Scanning for files triggerd 20.43.19.237 (CA/Canada/-): 10 in the last 900 secs; ... show more (ScanningForFiles) Scanning for files triggerd 20.43.19.237 (CA/Canada/-): 10 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇩🇪 seal	2026-04-14 11:55:05 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	SSH Brute-Force
🇳🇱 ipoac.nl	2026-04-14 11:54:21 (1 month ago)	ipoac.nl:80 20.43.19.237 - - [14/Apr/2026:13:54:20 +0200] - "GET /wp-admin/atomlib.php HTTP/1.1" 403 ... show more ipoac.nl:80 20.43.19.237 - - [14/Apr/2026:13:54:20 +0200] - "GET /wp-admin/atomlib.php HTTP/1.1" 403 1623 "-" "-" show less	Bad Web Bot
🇩🇪 updown.io	2026-04-14 11:54:07 (1 month ago)	{"level":"info","ts":1776166957.1398294,"logger":"http.log.access.log0","msg":"handled request","req ... show more {"level":"info","ts":1776166957.1398294,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"20.43.19.237","remote_port":"18427","client_ip":"20.43.19.237","proto":"HTTP/1.1","method":"GET","host":"dmj5.status.updown.io","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.00005799,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://dmj5.status.updown.io/wp-content/plugins/hellopress/wp_filemanager.php"],"Content-Type":[]}} {"level":"info","ts":1776166998.3740227,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"20.43.19.237","remote_port":"61212","client_ip":"20.43.19.237","proto":"HTTP/1.1","method":"GET","host":"dmj5.status.updown.io","uri":"/users.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000081216,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://dmj ... show less	DDoS Attack Web App Attack
🇦🇹 penguin-solutions.at	2026-04-14 11:52:44 (1 month ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-04-14 11:52:38 (1 month ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 wlt-blocker	2026-04-14 11:51:59 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
🇮🇩 Burayot	2026-04-14 11:51:48 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.43.19.237 (CA/Canada/-): 1 in th ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.43.19.237 (CA/Canada/-): 1 in the last 3600 secs show less	Web App Attack
Anonymous	2026-04-14 11:49:59 (1 month ago)	Aggressive web scan	Web App Attack

Showing 811 to 825 of 838 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇭 103.62.153.174

🇹🇷 89.252.131.17

🇬🇧 35.203.210.191

🇬🇧 198.178.235.37

🇫🇷 195.25.231.241

🇸🇬 165.154.205.128

🇷🇺 94.198.1.94

🇮🇹 93.92.76.223

🇪🇬 41.39.200.191

🇺🇦 185.177.191.128

🇨🇳 182.43.76.81

🇧🇷 181.218.9.86

🇵🇰 175.107.2.43

🇧🇷 74.244.184.185

🇳🇱 45.148.10.240

🇦🇷 45.7.208.168

🇨🇳 221.226.232.42

🇳🇱 176.65.139.130

🇳🇬 102.88.137.213

🇩🇪 64.188.83.134