JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.228.220.114

20.228.220.114 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 97%: ?

97%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.228.220.114

Whois 20.228.220.114

IP Abuse Reports for 20.228.220.114:

This IP address has been reported a total of 37 times from 30 distinct sources. 20.228.220.114 was first reported on May 23rd 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 21:59:20 (6 days ago)	Auto-ban: >3000 req/min op 2026-06-15	Web App Attack SSH Hacking
🇫🇷 Version Net	2026-06-15 11:10:59 (1 week ago)	IPS Detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
Anonymous	2026-06-15 08:04:47 (1 week ago)	Aggressive web scan	Web App Attack
Anonymous	2026-06-15 07:42:22 (1 week ago)	Port Scan Attack.	Port Scan
🇫🇷 dynamix	2026-06-15 06:22:45 (1 week ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-10 16:58:53 (1 week ago)	Portscan: TCP/2087, TCP/443, TCP/2083, TCP/2086, TCP/8080, TCP/80, TCP/2082, TCP/8443	Port Scan
Anonymous	2026-06-10 13:10:00 (1 week ago)	HTPasswd.Access Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇺🇸 Floofie	2026-06-10 06:09:00 (1 week ago)	20.228.220.114 - - [10/Jun/2026:02:08:58 -0400] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Ma ... show more 20.228.220.114 - - [10/Jun/2026:02:08:58 -0400] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 20.228.220.114 - - [10/Jun/2026:02:08:59 -0400] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" 20.228.220.114 - - [10/Jun/2026:02:08:59 -0400] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 www.winos.me	2026-06-10 05:35:56 (1 week ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-10 05:23:08 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 20.228.220.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 20.228.220.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 01:23:04.266583 2026] [security2:error] [pid 17218:tid 17218] [client 20.228.220.114:33417] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.170"] [uri "/.git/HEAD"] [unique_id "aij0uGNEELrg4VhZUCkBSAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Zdeněk Svancar	2026-06-10 04:59:20 (1 week ago)	20.228.220.114 - - [10/Jun/2026:04:59:13 +0000] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windo ... show more 20.228.220.114 - - [10/Jun/2026:04:59:13 +0000] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" 20.228.220.114 - - [10/Jun/2026:04:59:18 +0000] "GET /wp-config.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Port Scan Bad Web Bot Web App Attack
🇩🇪 EGP Abuse Dept	2026-06-10 04:03:07 (1 week ago)	Scanning for web/db/file exploits on tpc-040.mach3builders.nl	SQL Injection Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 03:56:57 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 20.228.220.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 20.228.220.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 23:56:51.377018 2026] [security2:error] [pid 9958:tid 9958] [client 20.228.220.114:34526] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.176"] [uri "/.git/HEAD"] [unique_id "aijgg0p-jMy4UG-N47xZwgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 sandra361	2026-06-01 12:06:01 (3 weeks ago)	Port scan detected: 7 attempts across 7 ports (2082,2083,2086,2087,443,8080,8443). \| Evidence: GHOST ... show more Port scan detected: 7 attempts across 7 ports (2082,2083,2086,2087,443,8080,8443). \| Evidence: GHOST_SCAN:IN=enp1s0f0 OUT= SRC=20.228.220.114 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=25098 DF PROTO=TCP SPT=26632 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Port Scan
🇬🇧 PeravixGroup	2026-06-01 10:30:23 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 171.231.180.249

🇨🇳 116.228.233.93

🇨🇳 116.171.245.252

🇺🇸 2604:a880:400:d1:0:4:9e8f:d001

🇩🇪 216.26.247.177

🇨🇷 190.112.222.28

🇹🇼 114.42.143.186

🇱🇻 91.105.57.241

🇪🇸 80.102.218.187

🇵🇱 57.128.225.99

🇺🇬 41.210.131.212

🇺🇸 20.98.153.37

🇹🇿 197.186.9.173

🇷🇴 193.46.255.86

🇯🇵 139.162.113.212

🇨🇳 123.145.27.142

🇩🇪 78.94.166.221

🇨🇳 122.97.209.177

🇻🇳 116.98.104.138

🇮🇷 5.53.35.1