JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.62.204.22

20.62.204.22 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 49%: ?

49%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.62.204.22

Whois 20.62.204.22

IP Abuse Reports for 20.62.204.22:

This IP address has been reported a total of 17 times from 11 distinct sources. 20.62.204.22 was first reported on April 9th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-10 04:03:59 (1 week ago)	PORT & IP Scan.	Port Scan Brute-Force
🇷🇸 Scan	2026-06-10 00:15:56 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 xmission.com	2026-06-10 00:11:07 (1 week ago)	Blocked by UFW (TCP on 2083) Source port: 37062 TTL: 46 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2083) Source port: 37062 TTL: 46 Packet length: 60 TOS: 0x00 This report (for 20.62.204.22) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 14:07:33 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 10:07:26.801893 2026] [security2:error] [pid 17214:tid 17234] [client 20.62.204.22:34864] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.124"] [uri "/.git/HEAD"] [unique_id "ah7jnvydcnyKhKNX3IEgawAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-02 14:03:07 (2 weeks ago)	PROTO=TCP DPT=2082	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-02 13:38:45 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 09:38:39.749098 2026] [security2:error] [pid 6329:tid 6329] [client 20.62.204.22:34870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.26"] [uri "/.git/HEAD"] [unique_id "ah7c3wT_Ht-bw0CD_e6kSQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-02 13:05:01 (2 weeks ago)	suspicious request in access.log	Web App Attack
🇩🇪 Enno	2026-06-02 11:51:08 (2 weeks ago)	P04::Fail2Ban: automated bot scanning / credential probing detected.	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-02 10:43:42 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 06:43:35.518495 2026] [security2:error] [pid 23492:tid 23711] [client 20.62.204.22:35219] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.24"] [uri "/.git/HEAD"] [unique_id "ah6z1wjYge4aRdKFXtYEiwAAANM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 10:10:38 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 06:10:35.145802 2026] [security2:error] [pid 25112:tid 25112] [client 20.62.204.22:34859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.192"] [uri "/.git/HEAD"] [unique_id "ah6sG2rQquejS7PfhkxDNwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-02 10:03:50 (2 weeks ago)	Blocked by UFW (TCP on 2083) Source port: 34874 TTL: 111 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 2083) Source port: 34874 TTL: 111 Packet length: 40 TOS: 0x00 This report (for 20.62.204.22) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇾 lns.bz	2026-06-02 09:10:09 (2 weeks ago)	Too many 404 requests [BY]	Web App Attack
🇫🇮 6kilowatti	2026-06-02 09:02:21 (2 weeks ago)	2026-06-02T12:02:20.935562+03:00 oh6ah kernel: [UFW BLOCK] IN=enp2s0 OUT= MAC=00:26:18:a8:d6:75:2e:2 ... show more 2026-06-02T12:02:20.935562+03:00 oh6ah kernel: [UFW BLOCK] IN=enp2s0 OUT= MAC=00:26:18:a8:d6:75:2e:2d:5e:71:aa:73:08:00 SRC=20.62.204.22 DST=192.168.0.102 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=11529 DF PROTO=TCP SPT=35083 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 MPL	2026-06-02 08:49:22 (2 weeks ago)	tcp/80	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 08:45:38 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.62.204.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 04:45:31.044664 2026] [security2:error] [pid 27634:tid 27634] [client 20.62.204.22:34856] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.111"] [uri "/.git/config"] [unique_id "ah6YK5GZOP3b_zp3QxJIDwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.148.224.183

🇵🇭 175.176.70.13

🇨🇳 106.12.153.125

🇮🇹 72.146.2.223

🇫🇮 65.108.125.120

🇨🇳 39.104.63.170

🇬🇧 35.203.210.109

🇳🇱 192.42.116.63

🇨🇳 139.226.100.109

🇫🇮 94.183.234.128

🇪🇸 80.66.112.53

🇺🇸 72.14.178.148

🇺🇸 71.6.242.200

🇩🇪 2.26.64.64

🇬🇧 188.240.59.42

🇧🇷 179.108.83.130

🇫🇮 178.20.210.151

🇺🇸 147.185.132.165

🇨🇳 121.11.239.225

🇺🇸 71.6.241.173