JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.158.246

20.83.158.246 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 66%: ?

66%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.158.246

Whois 20.83.158.246

IP Abuse Reports for 20.83.158.246:

This IP address has been reported a total of 13 times from 12 distinct sources. 20.83.158.246 was first reported on June 18th 2026, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2026-06-26 07:20:31 (18 hours ago)	Attack detected by Fortinet - web_server: HTPasswd.Access - 2026-06-25 13:00:27 - Source Port 9744	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-25 17:51:07 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 20.83.158.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.83.158.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 13:51:03.973340 2026] [security2:error] [pid 4274:tid 4274] [client 20.83.158.246:8543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.114"] [uri "/.git/HEAD"] [unique_id "aj1qh1AiskYdVNaX9Ye_DAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 sandra361	2026-06-25 16:59:04 (1 day ago)	Port scan detected: 32 attempts across 8 ports (2082,2083,2086,2087,443,80,8080,8443). \| Evidence: R ... show more Port scan detected: 32 attempts across 8 ports (2082,2083,2086,2087,443,80,8080,8443). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=20.83.158.246 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=43800 DF PROTO=TCP SPT=10122 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-25 16:10:12 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 20.83.158.246 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.83.158.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:10:07.012370 2026] [security2:error] [pid 770:tid 770] [client 20.83.158.246:8391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.105"] [uri "/.git/HEAD"] [unique_id "aj1S3wDNjs5PnJu3jhjH4QAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 RAP	2026-06-25 14:32:00 (1 day ago)	2026-06-25 14:32:00 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇬🇧 Nov	2026-06-25 12:41:06 (1 day ago)	Unauthorized access attempt (tcp/2087)	Port Scan
🇧🇾 lns.bz	2026-06-18 07:19:12 (1 week ago)	Too many 404 requests [BY]	Web App Attack
🇺🇸 mnsf	2026-06-18 06:05:34 (1 week ago)	Too many Status 50X (15) Scanning/Probing (14)	Brute-Force Web App Attack
🇺🇸 NXTwoThou	2026-06-18 05:46:57 (1 week ago)	/.git/HEAD	Web App Attack
🇷🇺 genokrad	2026-06-18 04:46:50 (1 week ago)	Website scan TCP 80/443 "/.git/config" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Fir ... show more Website scan TCP 80/443 "/.git/config" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox" show less	Port Scan Web App Attack
🇳🇱 maxxsense	2026-06-18 03:52:58 (1 week ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 20.83.158.246 (US/United ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 20.83.158.246 (US/United States/-) show less	Port Scan
🇫🇷 thecocasio	2026-06-18 02:16:56 (1 week ago)	HellPot honeypot: VCS metadata exposure probe — observed request "GET /.git/HEAD" against a honeypot ... show more HellPot honeypot: VCS metadata exposure probe — observed request "GET /.git/HEAD" against a honeypot host where no such application or resource exists. Detected at 2026-06-18T02:16:56Z. show less	Web App Attack
🇷🇸 Scan	2026-06-18 02:14:32 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2600:1f18:5b75:b800:b2bd:6733:befe:e9f6

🇺🇸 209.141.41.212

🇲🇽 186.96.158.180

🇺🇸 147.185.132.65

🇭🇰 144.48.8.10

🇺🇸 141.11.88.101

🇨🇳 115.190.235.23

🇺🇸 64.62.197.176

🇧🇷 45.229.91.34

🇬🇧 35.203.210.124

🇰🇷 211.223.107.86

🇨🇦 199.126.253.130

🇹🇼 198.235.24.126

🇺🇸 195.242.178.252

🇺🇸 162.216.150.138

🇸🇬 135.136.42.188

🇫🇷 85.217.140.23

🇺🇸 71.65.98.217

🇳🇱 45.153.34.16

🇺🇸 38.154.162.79