JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.193.144.20

20.193.144.20 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇳 India
City	Pune, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.193.144.20

Whois 20.193.144.20

IP Abuse Reports for 20.193.144.20:

This IP address has been reported a total of 25 times from 19 distinct sources. 20.193.144.20 was first reported on July 3rd 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇸 Smel	2024-07-05 06:49:18 (1 year ago)	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	Email Spam Hacking Brute-Force
🇩🇪 CommanderRoot	2024-07-05 05:07:18 (1 year ago)	HTTP request flood	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2024-07-05 02:05:59 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 22:05:52.122556 2024] [security2:error] [pid 19420] [client 20.193.144.20:43434] [client 20.193.144.20] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 20.193.144.20 (+1 hits since last alert)\|antonyg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "antonyg.com"] [uri "/xmlrpc.php"] [unique_id "ZodVANhshHTec8oFK8j9ogAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 syokadmin	2024-07-04 21:15:12 (1 year ago)	(smtpauth) Failed SMTP AUTH login from 20.193.144.20 (IN/India/-): 2 in the last 3600 secs	Brute-Force
Anonymous	2024-07-04 19:39:47 (1 year ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-07-04 17:12:06 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 13:11:58.233007 2024] [security2:error] [pid 30961] [client 20.193.144.20:34202] [client 20.193.144.20] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 20.193.144.20 (+1 hits since last alert)\|www.avalderlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.avalderlaw.com"] [uri "/xmlrpc.php"] [unique_id "ZobX3mbbiNeaISTsAwQMzQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-07-04 16:59:33 (1 year ago)	Bot / scanning and/or hacking attempts: GET /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇩🇪 ger-stg-sifi1	2024-07-04 16:43:41 (1 year ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2024-07-04 15:48:02 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 11:47:57.214694 2024] [security2:error] [pid 16709] [client 20.193.144.20:45288] [client 20.193.144.20] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 20.193.144.20 (+1 hits since last alert)\|georgesmarina.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "georgesmarina.com"] [uri "/xmlrpc.php"] [unique_id "ZobELWVSsjr0q2n6uLVuNwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-07-04 14:57:23 (1 year ago)	Brute-Force	Brute-Force
🇲🇾 syokadmin	2024-07-04 10:24:57 (1 year ago)	20.193.144.20 (IN/India/-), 3 distributed smtpauth attacks on account [[email protected]] in ... show more 20.193.144.20 (IN/India/-), 3 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force
🇺🇸 TPI-Abuse	2024-07-04 10:23:29 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 20.193.144.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 04 06:23:23.234657 2024] [security2:error] [pid 24919] [client 20.193.144.20:36846] [client 20.193.144.20] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 20.193.144.20 (+1 hits since last alert)\|www.doreenkimura.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.doreenkimura.com"] [uri "/xmlrpc.php"] [unique_id "ZoZ4G4ZOofLJaea758AJIgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2024-07-04 08:03:04 (1 year ago)	6 packets to port 587	Brute-Force
🇳🇱 maxxsense	2024-07-04 07:57:10 (1 year ago)	(wordpress) Failed wordpress login from 20.193.144.20 (IN/India/-)	Brute-Force
🇲🇾 syokadmin	2024-07-04 05:19:49 (1 year ago)	(cpanel) Failed cPanel login from 20.193.144.20 (IN/India/-): 1 in the last 3600 secs	Brute-Force Web App Attack

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.217.83

🇬🇧 193.176.29.12

🇩🇪 158.94.208.66

🇿🇦 156.155.14.28

🇹🇼 111.70.32.46

🇺🇸 107.174.56.94

🇹🇼 101.13.4.124

🇨🇳 223.109.252.202

🇧🇷 192.141.107.6

🇰🇷 175.206.113.91

🇺🇸 66.132.172.120

🇳🇱 45.148.10.152

🇳🇱 40.126.32.72

🇨🇳 203.110.233.225

🇩🇪 128.1.123.106

🇵🇱 83.168.71.135

🇧🇩 58.147.171.11

🇵🇸 213.6.105.154

🇧🇪 198.235.24.244

🇷🇺 185.40.30.168