JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.89.101.2

13.89.101.2 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.89.101.2

Whois 13.89.101.2

IP Abuse Reports for 13.89.101.2:

This IP address has been reported a total of 136 times from 73 distinct sources. 13.89.101.2 was first reported on September 6th 2025, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SpaceHost-Server	2025-09-11 22:26:13 (9 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2025-09-11 20:08:44 (9 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 SpaceHost-Server	2025-09-10 22:25:41 (9 months ago)		Brute-Force Web App Attack
Anonymous	2025-09-10 20:11:29 (9 months ago)	13.89.101.2 - - [10/Sep/2025:22:11:28 +0200] "GET /xmlrpc.php HTTP/2.0" 301 169 "-" "-"	Web App Attack
🇹🇷 rtbh.com.tr	2025-09-10 20:08:43 (9 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 Ba-Yu	2025-09-10 20:08:17 (9 months ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇧🇷 n33	2025-09-10 19:24:27 (9 months ago)	Attack detected detected by fail2ban. Service: nginx-ghost-upstream. Banned after 3 failed attempts.	Hacking Web App Attack
🇩🇪 thesimonmanuel	2025-09-10 19:00:44 (9 months ago)	13.89.101.2 - - [11/Sep/2025:00:30:43 +0530] "GET /chosen HTTP/1.1" 404 3143 "-" "-" "-" 13.89.101.2 ... show more 13.89.101.2 - - [11/Sep/2025:00:30:43 +0530] "GET /chosen HTTP/1.1" 404 3143 "-" "-" "-" 13.89.101.2 - - [11/Sep/2025:00:30:43 +0530] "GET /buy.php HTTP/1.1" 404 146 "-" "-" "-" 13.89.101.2 - - [11/Sep/2025:00:30:43 +0530] "GET /item.php HTTP/1.1" 404 146 "-" "-" "-" 13.89.101.2 - - [11/Sep/2025:00:30:43 +0530] "GET /x.php HTTP/1.1" 404 146 "-" "-" "-" 13.89.101.2 - - [11/Sep/2025:00:30:44 +0530] "GET /k.php HTTP/1.1" 404 146 "-" "-" "-" show less	Hacking Web App Attack
Anonymous	2025-09-10 18:48:44 (9 months ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇱🇹 juozaspo	2025-09-10 14:13:46 (9 months ago)	Automatic Report: Too much requests to non-existing pages in a very short time, auto-banned	Bad Web Bot Web App Attack
🇮🇩 securejdprop	2025-09-10 13:41:33 (9 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/crowdsec-appsec-outofband. Ip 13.89.101.2 ... show more This IP was detected by CrowdSec triggering crowdsecurity/crowdsec-appsec-outofband. Ip 13.89.101.2 performed 'crowdsecurity/crowdsec-appsec-outofband' (6 events over 2.749012612s) at 2025-09-10 13:41:31.811486838 +0000 UTC show less	Web App Attack
🇫🇷 COMAITE	2025-09-10 13:08:20 (9 months ago)	Multiple web server 400 error codes from same source ip 13.89.101.2.	Web App Attack
🇫🇮 Christopher Hughes	2025-09-10 12:40:47 (9 months ago)	[Wed Sep 10 13:40:46.111449 2025] [proxy_fcgi:error] [pid 3587571:tid 140344549168704] [client 13.89 ... show more [Wed Sep 10 13:40:46.111449 2025] [proxy_fcgi:error] [pid 3587571:tid 140344549168704] [client 13.89.101.2:2578] AH01071: Got error 'Primary script unknown' [Wed Sep 10 13:40:46.249895 2025] [proxy_fcgi:error] [pid 3587571:tid 140346151388736] [client 13.89.101.2:2578] AH01071: Got error 'Primary script unknown' [Wed Sep 10 13:40:46.388227 2025] [proxy_fcgi:error] [pid 3587571:tid 140345161541184] [client 13.89.101.2:2578] AH01071: Got error 'Primary script unknown' [Wed Sep 10 13:40:46.526514 2025] [proxy_fcgi:error] [pid 3587571:tid 140345589339712] [client 13.89.101.2:2578] AH01071: Got error 'Primary script unknown' [Wed Sep 10 13:40:46.665043 2025] [proxy_fcgi:error] [pid 3587571:tid 140345639695936] [client 13.89.101.2:2578] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇺🇸 ph	2025-09-10 11:55:58 (9 months ago)	Bad web bot attempting to run wp-content on non-WP site	Hacking Bad Web Bot Web App Attack
🇫🇷 pm33	2025-09-10 10:19:23 (9 months ago)	Unauthorized connections HTTP 403	Web App Attack

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a04:c300:400::1f2

🇺🇸 198.186.15.157

🇺🇦 185.237.106.243

🇺🇸 172.185.40.47

🇷🇺 82.204.185.138

🇨🇳 14.103.108.102

🇸🇦 8.213.80.17

🇸🇬 167.172.89.254

🇨🇳 118.196.78.123

🇺🇦 91.211.90.117

🇬🇧 82.1.100.225

🇩🇪 69.5.169.61

🇰🇷 222.117.120.157

🇺🇦 217.147.172.235

🇧🇷 189.51.43.54

🇲🇽 187.141.71.166

🇫🇷 185.230.138.151

🇺🇸 136.110.135.152

🇮🇱 85.65.225.68

🇺🇸 74.125.186.148