JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.15.228.216

20.15.228.216 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 90%: ?

90%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.15.228.216

Whois 20.15.228.216

IP Abuse Reports for 20.15.228.216:

This IP address has been reported a total of 36 times from 31 distinct sources. 20.15.228.216 was first reported on June 2nd 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-03 11:05:47 (3 weeks ago)	Portscan: TCP/443, TCP/2083, TCP/2082, TCP/2086, TCP/80, TCP/8443, TCP/8080, TCP/2087	Port Scan
🇮🇩 hermawan	2026-06-03 04:54:48 (3 weeks ago)	1780462478.379291 20.15.228.216 103.166.156.58 64240_2-4-8-1-3_1440_10 2026-06-03 11:54:38 WIB ...	Email Spam Hacking
Anonymous	2026-06-03 04:17:16 (3 weeks ago)	Unauthorized access (tcp/80/http)	Port Scan Web App Attack
🇺🇸 RAP	2026-06-03 03:48:05 (3 weeks ago)	2026-06-03 03:48:05 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
Anonymous	2026-06-03 03:44:45 (3 weeks ago)	(mod_security) mod_security triggered on hostname [redacted] 20.15.228.216 (US/United States/-)	SQL Injection
Anonymous	2026-06-03 03:34:41 (3 weeks ago)	Port Scan detected from 20.15.228.216 (US/United States/-). 5 hits in the last 50 seconds	Brute-Force Port Scan
🇺🇸 Neosmith20	2026-06-03 03:30:18 (3 weeks ago)	Knock-Knock honeypot brute-force: proto8 (18 total hits)	Brute-Force
🇩🇪 EGP Abuse Dept	2026-06-03 03:27:50 (3 weeks ago)	Scanning for web/db/file exploits on tpc-template.espresso-gridpoint.net	SQL Injection Bad Web Bot Web App Attack
🇸🇪 donarev419	2026-06-03 02:56:35 (3 weeks ago)	Port scan detected on port 8080 (connection without data transfer)	Port Scan
Anonymous	2026-06-03 02:45:03 (3 weeks ago)	PROTO=TCP DPT=2082	Port Scan Hacking
🇺🇸 ipblock.com	2026-06-03 02:45:00 (3 weeks ago)	IPBlock protected site ID [1365-l]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 02:44:28 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.15.228.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.15.228.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:44:22.379807 2026] [security2:error] [pid 9147:tid 9147] [client 20.15.228.216:62917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.219"] [uri "/.git/HEAD"] [unique_id "ah-VBsFZkxTxAXH0fAKSDAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 02:09:29 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 Apache	2026-06-03 01:48:37 (3 weeks ago)	(mod_security) mod_security (id:920350) triggered by 20.15.228.216 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:920350) triggered by 20.15.228.216 (US/United States/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 193.39.9.191

🇺🇸 136.118.121.194

🇸🇬 118.26.111.107

🇺🇸 44.122.74.195

🇪🇸 185.202.108.234

🇨🇳 113.201.207.206

🇫🇮 65.21.150.20

🇺🇸 44.87.212.98

🇧🇪 34.34.129.116

🇨🇦 20.48.252.12

🇳🇱 5.83.143.123

🇮🇳 223.185.60.227

🇨🇳 221.228.203.3

🇺🇸 216.180.246.139

🇭🇰 198.44.182.203

🇳🇱 192.253.248.142

🇺🇸 165.154.182.53

🇺🇸 68.168.145.172

🇺🇸 66.132.186.226

🇺🇸 48.217.84.135