JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.83.233.96

13.83.233.96 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.83.233.96

Whois 13.83.233.96

IP Abuse Reports for 13.83.233.96:

This IP address has been reported a total of 151 times from 65 distinct sources. 13.83.233.96 was first reported on October 29th 2025, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 djboddington	2026-06-10 20:57:59 (4 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇫🇮 oh.mg	2026-06-10 20:51:57 (4 hours ago)	[Wed Jun 10 22:51:55.692471 2026] [security2:error] [pid 2363853:tid 2363877] [client 13.83.233.96:1 ... show more [Wed Jun 10 22:51:55.692471 2026] [security2:error] [pid 2363853:tid 2363877] [client 13.83.233.96:13505] [client 13.83.233.96] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "95.216.72.247"] [uri "/.env"] [unique_id "ainOaxafFvI5IqOGcTJIiwAAAJU"] [Wed Jun 10 22:51:56.617423 2026] [security2:error] [pid 2363853:tid 2363859] [client 13.83.233.96:13542] [client 13.83.233.96] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anom ... show less	Web App Attack Bad Web Bot
🇩🇪 strxmpp	2026-06-10 20:47:50 (4 hours ago)	13.83.233.96 - - [10/Jun/2026:22:47:49 +0200] "GET /.git/HEAD HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Ma ... show more 13.83.233.96 - - [10/Jun/2026:22:47:49 +0200] "GET /.git/HEAD HTTP/1.1" 404 495 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Bad Web Bot
🇩🇪 Admins@FBN	2026-06-10 20:03:31 (5 hours ago)	FW-PortScan: Traffic Blocked srcport=15310 dstport=2083	Port Scan
Anonymous	2026-06-10 19:04:39 (6 hours ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇺🇸 kuroneko_omu	2026-06-10 19:02:55 (6 hours ago)	Fail2Ban <webattack> jail detected 5 attempts against 13.83.233.96.	DDoS Attack Hacking Brute-Force Web App Attack
🇨🇦 Tanados	2026-06-10 18:56:02 (6 hours ago)	Blocked by UFW [2086/tcp] Source port: 14372 TTL: 45 Packet length: 60 TOS: 0x00 This report was ge ... show more Blocked by UFW [2086/tcp] Source port: 14372 TTL: 45 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-10 17:55:08 (7 hours ago)	tcp port scan (8 or more attempts)	Port Scan
🇫🇮 Yachiyo Runami	2026-06-10 17:46:02 (7 hours ago)	Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 37-3 ... show more Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 37-38 \| Len: 60B(2x) \| Win: 64240(2) \| F2B/ufw-honeypot@2026-06-10T17:46:01Z show less	Port Scan Hacking
🇨🇳 Peter Yu	2026-06-10 16:54:42 (8 hours ago)		Bad Web Bot Web App Attack
🇬🇧 ISPLtd	2026-06-10 16:53:41 (8 hours ago)	Jun 10 13:53:40 13.83.233.96 TCP SPT=13515 DPT=2087 SYN Jun 10 13:53:40 13.83.233.96 TCP SPT=13528 D ... show more Jun 10 13:53:40 13.83.233.96 TCP SPT=13515 DPT=2087 SYN Jun 10 13:53:40 13.83.233.96 TCP SPT=13528 DPT=2086 SYN Jun 10 13:53:40 13.83.233.96 TCP SPT=13526 DPT=8080 ... show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-10 16:51:03 (8 hours ago)	(mod_security) mod_security (id:210492) triggered by 13.83.233.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 13.83.233.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 12:50:58.034696 2026] [security2:error] [pid 20540:tid 20540] [client 13.83.233.96:13527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.62"] [uri "/.git/HEAD"] [unique_id "aimV8j0SHDb4N0T83JmHiwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 AutosOnShow	2026-06-03 08:24:05 (1 week ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-06-03 08:23:50.370 \|	Web App Attack
🇺🇸 SSP	2026-06-03 08:10:01 (1 week ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇩🇪 KPS	2026-06-03 07:26:46 (1 week ago)	PortscanM	Port Scan

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.220

🇬🇧 195.140.214.22

🇳🇴 185.12.59.117

🇧🇷 177.10.236.110

🇯🇵 161.33.14.212

🇨🇳 120.48.22.219

🇿🇼 102.213.42.110

🇺🇦 91.234.138.14

🇨🇦 51.161.37.53

🇩🇪 45.135.141.7

🇺🇸 34.170.189.242

🇬🇧 213.166.84.43

🇫🇷 173.212.228.191

🇭🇰 152.32.135.217

🇨🇳 120.55.163.52

🇺🇸 104.131.96.68

🇸🇬 45.78.230.231

🇺🇸 24.199.93.185

🇷🇴 2.57.122.177

🇬🇧 194.50.235.133