JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.220.63.208

20.220.63.208 was found in our database!

This IP was reported 195 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.220.63.208

Whois 20.220.63.208

IP Abuse Reports for 20.220.63.208:

This IP address has been reported a total of 195 times from 174 distinct sources. 20.220.63.208 was first reported on June 14th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 zadmind	2026-06-15 15:23:47 (1 hour ago)	Blocked by automated 404 tracking monitoring system.	Hacking Web App Attack
Anonymous	2026-06-15 14:05:43 (2 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
Anonymous	2026-06-15 11:09:15 (5 hours ago)	Honeypot trap fired (Cloudflare Worker). IP requested non-existent credential/admin/scanner-bait pat ... show more Honeypot trap fired (Cloudflare Worker). IP requested non-existent credential/admin/scanner-bait paths: /setup.php. None of these endpoints exist on our service - matched bait pattern. First seen UTC: 2026-06-14 20:12:53. show less	Web App Attack
🇫🇷 andreighitan	2026-06-15 11:02:48 (5 hours ago)	Automated exploit scanner — credential harvesting, webshell scanning, RCE probing against WordPress ... show more Automated exploit scanner — credential harvesting, webshell scanning, RCE probing against WordPress hosting server. Sustained attack campaign since April 2026. show less	Web App Attack
Anonymous	2026-06-15 10:06:22 (6 hours ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-15 09:07:02 (7 hours ago)	Fail2Ban - [WEB]Exploit attempts (SQLi, RCE, path traversal) on webexploits ... [wa02]	Hacking SQL Injection Web App Attack
Anonymous	2026-06-15 07:18:00 (9 hours ago)	Bad behavior 403	Web App Attack Hacking
🇬🇧 openstrike.co.uk	2026-06-15 05:13:45 (11 hours ago)	282 attacks on PHP URLs: GET /flower.php HTTP/1.1	Web App Attack
🇲🇽 octageeks.com	2026-06-15 04:20:32 (12 hours ago)	Wordpress malicious attack:[octascan]	Web App Attack
Anonymous	2026-06-15 01:19:53 (15 hours ago)	Portscan: TCP/80 (8x), TCP/443	Port Scan
🇬🇧 andypiper	2026-06-15 01:02:36 (15 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-15 00:12:33 (16 hours ago)	Too many Status 40X (62) Request Overload (127)	Brute-Force Web App Attack
🇹🇷 joethesleeper	2026-06-15 00:03:30 (16 hours ago)	[Mon Jun 15 03:03:28.614427 2026] [php:error] [pid 795186:tid 795186] [client 20.220.63.208:15322] s ... show more [Mon Jun 15 03:03:28.614427 2026] [php:error] [pid 795186:tid 795186] [client 20.220.63.208:15322] script '/var/lib/roundcube/public_html/this_is_a_new_hello_world.php' not found or unable to stat [Mon Jun 15 03:03:29.057021 2026] [php:error] [pid 795186:tid 795186] [client 20.220.63.208:15322] script '/var/lib/roundcube/public_html/x.php' not found or unable to stat [Mon Jun 15 03:03:29.392290 2026] [php:error] [pid 795186:tid 795186] [client 20.220.63.208:15322] script '/var/lib/roundcube/public_html/wpconf.php' not found or unable to stat [Mon Jun 15 03:03:29.737664 2026] [php:error] [pid 795186:tid 795186] [client 20.220.63.208:15322] script '/var/lib/roundcube/public_html/aaf.php' not found or unable to stat [Mon Jun 15 03:03:29.998490 2026] [php:error] [pid 795186:tid 795186] [client 20.220.63.208:15322] script '/var/lib/roundcube/public_html/tw0.php' not found or unable to stat ... show less	Web App Attack
🇵🇱 Jacqb	2026-06-14 23:55:02 (17 hours ago)	Adres potencjalnie niebezpieczny	Brute-Force Web App Attack Bad Web Bot
🇳🇱 Brict IT	2026-06-14 23:45:49 (17 hours ago)		Bad Web Bot Web App Attack

Showing 1 to 15 of 195 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.216.79

🇫🇷 207.180.255.237

🇺🇸 207.90.244.25

🇧🇪 198.235.24.228

🇳🇱 185.242.226.11

🇳🇱 185.224.128.16

🇺🇸 129.153.145.135

🇨🇳 101.126.46.108

🇨🇳 42.228.220.65

🇺🇸 20.163.32.211

🇰🇷 211.62.73.218

🇺🇸 209.135.168.155

🇷🇴 193.46.255.86

🇮🇳 183.82.108.109

🇳🇱 176.65.139.246

🇫🇷 173.249.53.212

🇬🇧 165.227.238.235

🇺🇸 165.154.134.19

🇺🇸 143.198.238.87

🇭🇰 118.193.33.249