JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.107.204.22

20.107.204.22 was found in our database!

This IP was reported 524 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇪 Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.107.204.22

Whois 20.107.204.22

IP Abuse Reports for 20.107.204.22:

This IP address has been reported a total of 524 times from 360 distinct sources. 20.107.204.22 was first reported on June 25th 2026, and the most recent report was 24 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 jalim	2026-06-28 20:26:24 (24 minutes ago)	Fail2Ban (11cc81a08e1b): 10 attempts from 20.107.204.22 triggered caddy-404 jail. Ban time: 3600s. A ... show more Fail2Ban (11cc81a08e1b): 10 attempts from 20.107.204.22 triggered caddy-404 jail. Ban time: 3600s. Attack patterns detected in mail server logs. show less	Web App Attack
🇩🇪 on-com	2026-06-28 20:25:12 (25 minutes ago)	URL scan	Brute-Force Web App Attack
🇺🇸 kadour	2026-06-28 20:04:29 (46 minutes ago)	[Sun Jun 28 15:04:27.745973 2026] [proxy_fcgi:error] [pid 3416162:tid 3416193] [client 20.107.204.22 ... show more [Sun Jun 28 15:04:27.745973 2026] [proxy_fcgi:error] [pid 3416162:tid 3416193] [client 20.107.204.22:50839] AH01071: Got error 'Primary script unknown' [Sun Jun 28 15:04:28.051723 2026] [proxy_fcgi:error] [pid 3416162:tid 3416192] [client 20.107.204.22:50839] AH01071: Got error 'Primary script unknown' [Sun Jun 28 15:04:28.363802 2026] [proxy_fcgi:error] [pid 3416162:tid 3416195] [client 20.107.204.22:50839] AH01071: Got error 'Primary script unknown' [Sun Jun 28 15:04:28.591548 2026] [proxy_fcgi:error] [pid 3416162:tid 3416196] [client 20.107.204.22:50839] AH01071: Got error 'Primary script unknown' [Sun Jun 28 15:04:28.799037 2026] [proxy_fcgi:error] [pid 3416162:tid 3416194] [client 20.107.204.22:50839] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇪🇸 loadsoporte	2026-06-28 19:51:47 (59 minutes ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇩🇪 pscriptos	2026-06-28 19:51:25 (59 minutes ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇮🇹 VHosting	2026-06-28 19:45:03 (1 hour ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 iNetWorker	2026-06-28 19:40:38 (1 hour ago)	firewall-block, port(s): 80/tcp	Port Scan
🇮🇹 adm2palazzon	2026-06-28 19:30:35 (1 hour ago)	[Sun Jun 28 21:30:32.975472 2026] [php:error] [pid 25557:tid 25557] [client 20.107.204.22:17558] scr ... show more [Sun Jun 28 21:30:32.975472 2026] [php:error] [pid 25557:tid 25557] [client 20.107.204.22:17558] script '/srv/www/htdocs/this_is_a_new_hello_world.php' not found or unable to stat [Sun Jun 28 21:30:33.143582 2026] [php:error] [pid 25557:tid 25557] [client 20.107.204.22:17558] script '/srv/www/htdocs/7.php' not found or unable to stat [Sun Jun 28 21:30:33.758539 2026] [php:error] [pid 25557:tid 25557] [client 20.107.204.22:17558] script '/srv/www/htdocs/faze.php' not found or unable to stat ... show less	Brute-Force SSH
Anonymous	2026-06-28 19:21:08 (1 hour ago)	20.107.204.22 - - [28/Jun/2026:21:20:51 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.107.204.22 - - [28/Jun/2026:21:20:51 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 123658 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:53 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 123453 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:55 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 117561 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:54 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 117782 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:55 +0200] "GET /7.php HTTP/1.1" 404 117566 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:56 +0200] "GET /7.php HTTP/1.1" 404 117345 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:57 +0200] "GET /faze.php HTTP/1.1" 404 117593 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:58 +0200] "GET /faze.php HTTP/1.1" 404 117372 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:58 +0200] "GET /011i.php HTTP/1.1" 404 117593 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:20:59 +0200] "GET /011i.php HTT ... show less	Bad Web Bot Web App Attack
🇪🇸 yvoictra	2026-06-28 19:05:07 (1 hour ago)	20.107.204.22 - - [28/Jun/2026:21:05:05 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 20.107.204.22 - - [28/Jun/2026:21:05:05 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 19 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:05:06 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 19 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:05:06 +0200] "GET /7.php HTTP/1.1" 404 19 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:05:06 +0200] "GET /faze.php HTTP/1.1" 404 19 "-" "-" 20.107.204.22 - - [28/Jun/2026:21:05:06 +0200] "GET /011i.php HTTP/1.1" 404 19 "-" "-" ... show less	Brute-Force Web App Attack
🇲🇾 Rizzy	2026-06-28 18:23:49 (2 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 Lunix	2026-06-28 17:44:14 (3 hours ago)		Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-28 17:23:57 (3 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/rdg-local-lockdown-high.	Bad Web Bot Web App Attack
🇧🇪 Saec	2026-06-28 17:00:03 (3 hours ago)	Jarvis auto-ban: CF top attacker on saec.me (49 hits, IE)	Port Scan Web App Attack
Anonymous	2026-06-28 16:52:17 (3 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking

Showing 1 to 15 of 524 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 159.223.196.183

🇩🇪 139.59.208.49

🇹🇭 203.150.107.244

🇺🇸 170.178.236.147

🇩🇪 159.89.23.112

🇺🇸 103.143.10.140

🇧🇬 79.124.56.138

🇺🇸 65.51.166.246

🇺🇸 45.79.181.179

🇺🇸 45.79.163.53

🇧🇷 167.249.149.89

🇮🇳 152.57.198.206

🇨🇳 120.194.50.39

🇺🇸 20.127.238.81

🇷🇴 2.57.121.112

🇧🇷 205.210.31.231

🇺🇸 205.210.31.68

🇵🇰 182.190.222.123

🇩🇪 148.153.140.235

🇵🇱 138.124.20.112