JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.202.38.22

172.202.38.22 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.202.38.22

Whois 172.202.38.22

IP Abuse Reports for 172.202.38.22:

This IP address has been reported a total of 22 times from 18 distinct sources. 172.202.38.22 was first reported on June 24th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-25 21:22:49 (2 days ago)	Too many Status 40X (13)	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-24 22:03:50 (3 days ago)	Auto-ban: >3000 req/min op 2026-06-24	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-06-24 20:10:32 (3 days ago)	4.977 requests from abuseipdb.com blacklisted IP (1yr8mos17h)	Brute-Force Bad Web Bot
🇲🇾 Rizzy	2026-06-24 19:01:57 (3 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-24 18:53:53 (3 days ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-135)	Hacking Web App Attack
🇫🇷 cydit.eu	2026-06-24 18:25:18 (3 days ago)	phpMyAdmin attack detected by fail2ban on thor.cydit.eu	Web App Attack
🇳🇱 Site.eu	2026-06-24 18:23:26 (3 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 updown.io	2026-06-24 16:56:49 (3 days ago)	{"level":"info","ts":1782319947.0187757,"logger":"http.log.access.log0","msg":"handled request","req ... show more {"level":"info","ts":1782319947.0187757,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"172.202.38.22","remote_port":"4992","client_ip":"172.202.38.22","proto":"HTTP/1.1","method":"GET","host":"ugdf.status.updown.io","uri":"/wp-content/plugins/hellopress/wp_filemanager.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.00009437,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://ugdf.status.updown.io/wp-content/plugins/hellopress/wp_filemanager.php"],"Content-Type":[]}} {"level":"info","ts":1782319953.961057,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"172.202.38.22","remote_port":"8683","client_ip":"172.202.38.22","proto":"HTTP/1.1","method":"GET","host":"ugdf.status.updown.io","uri":"/this_is_a_new_hello_world.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000070555,"size":0,"status":308,"resp_headers":{"Connection":["close"],"Location":["https://u ... show less	DDoS Attack Web App Attack
🇨🇦 polycoda	2026-06-24 16:39:13 (3 days ago)	🔥 VERY AGGRESSIVE SCANNER probed over 200 inexistent files and PHP scripts in less than an hour.	Hacking Web App Attack
🇨🇦 polycoda	2026-06-24 16:04:02 (3 days ago)	🔥 VERY AGGRESSIVE SCANNER probed over 100 inexistent files and PHP scripts in less than an hour.	Hacking Web App Attack
🇫🇷 Octopuce	2026-06-24 15:43:12 (3 days ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/hellopress/wp_filemanager.php /this_i ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/hellopress/wp_filemanager.php /this_is_a_new_hello_world.php /x.php /by.php /cxs ... show less	Web App Attack
🇫🇷 masterguru	2026-06-24 15:41:25 (3 days ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-201)	Hacking
🇫🇷 Dorian GRANDHAY	2026-06-24 15:37:45 (3 days ago)	(PERMBLOCK) 172.202.38.22 (US/United States/-) has had more than 4 temp blocks in the last 604800 se ... show more (PERMBLOCK) 172.202.38.22 (US/United States/-) has had more than 4 temp blocks in the last 604800 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇳🇱 wlt-blocker	2026-06-24 15:04:47 (3 days ago)	Unauthorized access to webpage admin	Web App Attack
Anonymous	2026-06-24 14:54:37 (3 days ago)	Aggressive web scan	Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 74.125.186.93

🇩🇪 64.89.163.131

🇳🇱 45.156.128.74

🇸🇦 8.213.37.231

🇩🇿 193.194.91.218

🇧🇷 177.27.76.210

🇺🇸 162.241.50.50

🇺🇸 162.216.150.216

🇯🇵 149.88.103.94

🇺🇸 135.119.89.68

🇬🇧 35.203.210.243

🇬🇧 35.203.210.88

🇳🇱 203.55.131.5

🇹🇼 198.235.24.120

🇳🇱 195.178.110.26

🇺🇸 192.241.152.86

🇬🇧 185.216.145.172

🇺🇸 162.216.149.105

🇳🇱 134.209.200.233

🇬🇧 134.209.183.14