JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.42.9.226

20.42.9.226 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.42.9.226

Whois 20.42.9.226

IP Abuse Reports for 20.42.9.226:

This IP address has been reported a total of 29 times from 24 distinct sources. 20.42.9.226 was first reported on May 18th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 lns.bz	2026-06-03 21:00:07 (4 days ago)	.env scanning [DOPP]	Web App Attack
🇧🇷 SOC-BR	2026-06-03 07:29:24 (5 days ago)	Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-02 0 ... show more Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-02 06:26:06 - Source Port 60933 show less	Port Scan Hacking
🇺🇸 cwytech	2026-06-03 06:10:56 (5 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/web-asn-lockdown-high.	Bad Web Bot Web App Attack
🇺🇸 RAP	2026-06-03 05:37:56 (5 days ago)	2026-06-03 05:37:56 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇳🇱 lns.bz	2026-06-03 05:13:33 (5 days ago)	Too many 404 requests [DOPP]	Web App Attack
🇹🇭 Sawasdee	2026-06-03 05:09:04 (5 days ago)	Port Scan ...	Port Scan
🇫🇷 masterguru	2026-06-03 04:30:33 (5 days ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 20.42.9.226 (US/United States/-): 1 in the las ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 20.42.9.226 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇺🇸 MPL	2026-06-03 04:12:50 (5 days ago)	tcp port scan (32 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-03 03:30:02 (5 days ago)	Imunify360 WAF block (graylisted)	Web App Attack
🇹🇼 ip4.tw	2026-06-03 03:10:02 (5 days ago)	Malicious web scan	Hacking Web App Attack
🇮🇹 www.tana.it	2026-06-03 01:19:50 (5 days ago)	PHP scan	Web App Attack
🇺🇸 MPL	2026-06-03 01:14:23 (5 days ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-03 01:08:10 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 20.42.9.226 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 20.42.9.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 21:08:02.674582 2026] [security2:error] [pid 18899:tid 18899] [client 20.42.9.226:60325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.42"] [uri "/.git/HEAD"] [unique_id "ah9-cmfcHEGKEsnTkOFRkQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 NxtGenIT	2026-06-03 01:05:54 (5 days ago)	CiscoASA Honeypot hit, Payload: "GET /.DS_Store HTTP/1.1" 404 -,	Brute-Force
🇧🇾 lns.bz	2026-06-03 00:57:10 (5 days ago)	Too many 404 requests [BY]	Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 212.135.208.32

🇹🇳 197.5.145.150

🇨🇳 118.248.157.25

🇹🇼 106.1.8.107

🇳🇱 45.148.10.151

🇧🇪 35.205.128.250

🇻🇪 206.0.171.11

🇻🇳 171.244.37.97

🇹🇭 171.101.20.43

🇨🇳 120.243.125.25

🇺🇸 107.150.99.126

🇮🇩 103.191.14.243

🇭🇰 103.146.159.173

🇹🇷 95.10.17.91

🇮🇹 93.92.73.81

🇬🇧 91.233.83.203

🇺🇸 82.29.87.237

🇮🇪 52.169.217.131

🇺🇸 8.229.198.19

🇷🇴 2.57.122.177