JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.119.102.83

20.119.102.83 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 50%: ?

50%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.119.102.83

Whois 20.119.102.83

IP Abuse Reports for 20.119.102.83:

This IP address has been reported a total of 17 times from 13 distinct sources. 20.119.102.83 was first reported on April 10th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Mainpine	2026-06-17 05:42:13 (12 hours ago)	probing for vulnerable web apps	Web App Attack
Anonymous	2026-06-17 05:34:51 (12 hours ago)	Shorewall log file match.	Port Scan
🇨🇭 flaus	2026-06-17 04:30:21 (13 hours ago)	$f2bV_matches	Hacking Bad Web Bot Web App Attack
🇧🇷 SOC PR	2026-06-17 03:13:37 (14 hours ago)	IPS: Web Server Enforcement Violation.	Hacking
🇺🇸 Axel	2026-06-17 02:53:45 (14 hours ago)	Blocked by UFW on MVI [2082/tcp] \| SPT: 23005 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2082/tcp] \| SPT: 23005 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-06-17 01:32:37 (16 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-06-17 00:36:33 (17 hours ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-04-27 23:28:51 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 19:28:44.232408 2026] [security2:error] [pid 13607:tid 13607] [client 20.119.102.83:46942] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paardekooper.info"] [uri "/.git/config"] [unique_id "ae_xLMR7HrEY4KWmluwdfwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-04-11 21:59:19 (2 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-10. show less	Web App Attack SSH Hacking
🇫🇷 IRISIO	2026-04-10 09:05:52 (2 months ago)	scans/SQL injection/spam posts : 5 queries	Web App Attack SQL Injection
🇺🇸 Charlesiv	2026-04-10 06:01:33 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 8075 (MICROSOFT-CORP-MSN ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 8075 (MICROSOFT-CORP-MSN-AS-BLOCK - Microsoft Corporation) Protocol: HTTP/2 (GET method) Endpoint: /.git/config Timestamp: 2026-04-10T04:13:53Z Ray ID: 9e9eebe64c046147 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-10 04:10:10 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 00:10:02.775755 2026] [security2:error] [pid 1235144:tid 1235144] [client 20.119.102.83:1501] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jessicalevant.com"] [uri "/.git/config"] [unique_id "adh4GkEmUtkGKl14VNq4gQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-04-10 03:48:04 (2 months ago)	. Matched phrase "/.git/" at REQUEST_URI. (210492-123)	Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 03:34:08 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 23:34:00.287470 2026] [security2:error] [pid 1785177:tid 1785177] [client 20.119.102.83:1165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamedayteamwear.com.gamedayincentives.com"] [uri "/.git/config"] [unique_id "adhvqAtoEbcqfRfUHER1fgAAAAk"], referer: https://www.yahoo.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 02:32:39 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.119.102.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 22:32:36.172018 2026] [security2:error] [pid 1255969:tid 1255969] [client 20.119.102.83:1484] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "a1laha.com"] [uri "/.git/config"] [unique_id "adhhRKZ0D_RSaz3Npw3LjwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.81

🇮🇹 176.201.152.113

🇳🇱 88.151.32.61

🇳🇱 85.11.167.7

🇲🇾 49.124.151.84

🇳🇱 195.178.110.30

🇩🇪 193.122.2.186

🇻🇳 125.212.217.143

🇬🇧 81.77.196.19

🇸🇬 8.219.104.103

🇳🇱 5.61.209.43

🇵🇱 194.180.49.145

🇩🇪 185.242.3.195

🇺🇸 154.49.181.46

🇺🇿 84.54.115.46

🇧🇬 79.124.40.138

🇳🇱 45.148.10.157

🇨🇦 40.85.241.15

🇳🇱 204.76.203.51

🇳🇱 176.65.132.24