JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.169.53.118

20.169.53.118 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 73%: ?

73%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.169.53.118

Whois 20.169.53.118

IP Abuse Reports for 20.169.53.118:

This IP address has been reported a total of 17 times from 15 distinct sources. 20.169.53.118 was first reported on June 14th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Mr.Singh	2026-06-28 18:30:41 (7 hours ago)	NFT blocked 20.169.53.118 after 3 rejections on 29-Jun-2026.	Port Scan Brute-Force
🇮🇪 AutosOnShow	2026-06-28 15:12:05 (11 hours ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-06-28 15:11:50.818 \|	Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 14:35:45 (11 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.169.53.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.169.53.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 10:35:41.956240 2026] [security2:error] [pid 12446:tid 12446] [client 20.169.53.118:30369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.91"] [uri "/.git/HEAD"] [unique_id "akExPd6x2jsX2q6cCDKETgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-06-28 12:22:18 (14 hours ago)	Too many 404 requests [BY]	Web App Attack
Anonymous	2026-06-15 05:15:33 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇺🇸 RH5	2026-06-15 04:54:06 (1 week ago)	Restricted URL probing (/.git) (UTC 2026-06-15 04:54)	Web App Attack
🇫🇮 oh.mg	2026-06-15 03:58:30 (1 week ago)	[Mon Jun 15 05:58:29.394951 2026] [security2:error] [pid 3199276:tid 3199279] [client 20.169.53.118: ... show more [Mon Jun 15 05:58:29.394951 2026] [security2:error] [pid 3199276:tid 3199279] [client 20.169.53.118:63751] [client 20.169.53.118] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "95.216.72.247"] [uri "/.git/HEAD"] [unique_id "ai94ZW5fxiZuoXxBbtPpbwAAAUA"] [Mon Jun 15 05:58:30.089561 2026] [security2:error] [pid 3199276:tid 3199295] [client 20.169.53.118:63550] [client 20.169.53.118] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [ver "OWASP_CRS/4.10.0-dev"] [ ... show less	Web App Attack Bad Web Bot
🇦🇹 begou.dev	2026-06-15 03:45:02 (1 week ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/2095	Port Scan
🇺🇸 mnsf	2026-06-15 02:05:55 (2 weeks ago)	Too many Status 50X (16)	Brute-Force Web App Attack
🇩🇪 pigro	2026-06-15 02:05:41 (2 weeks ago)	20.169.53.118 - - [15/Jun/2026:04:05:39 +0200] "GET /.git/HEAD HTTP/1.1" 404 188 "-" "Mozilla/5.0 (L ... show more 20.169.53.118 - - [15/Jun/2026:04:05:39 +0200] "GET /.git/HEAD HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" 20.169.53.118 - - [15/Jun/2026:04:05:41 +0200] "GET /.env HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:55:58 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 20.169.53.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.169.53.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:55:53.582134 2026] [security2:error] [pid 20252:tid 20252] [client 20.169.53.118:63955] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.223"] [uri "/.git/HEAD"] [unique_id "ai9bqRrDw6h4ZK9oUQdZQAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 pm33	2026-06-15 01:52:26 (2 weeks ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇫🇷 dynamix	2026-06-15 01:45:54 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇷🇸 Scan	2026-06-15 01:34:21 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇹🇼 kk_it_man	2026-06-15 01:33:02 (2 weeks ago)	ET INFO Request to Hidden Environment File - Inbound ET WEB_SERVER WEB-PHP phpinfo access GPL WE ... show more ET INFO Request to Hidden Environment File - Inbound ET WEB_SERVER WEB-PHP phpinfo access GPL WEB_SERVER .htpasswd access show less	Port Scan

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.248

🇻🇳 171.244.37.103

🇮🇹 81.57.15.243

🇧🇬 79.124.49.226

🇪🇨 181.188.237.210

🇺🇸 172.236.228.86

🇺🇸 172.216.11.11

🇺🇸 172.105.147.32

🇺🇸 166.169.16.141

🇨🇳 118.145.238.115

🇨🇳 114.88.168.69

🇵🇰 101.53.229.17

🇩🇪 85.215.250.135

🇸🇪 83.191.106.238

🇺🇸 75.88.182.186

🇺🇸 65.49.1.221

🇳🇱 46.151.178.13

🇮🇳 4.224.40.94

🇨🇳 218.13.26.42

🇹🇳 197.5.145.102