JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.159.2

20.83.159.2 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 96%: ?

96%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.159.2

Whois 20.83.159.2

IP Abuse Reports for 20.83.159.2:

This IP address has been reported a total of 22 times from 20 distinct sources. 20.83.159.2 was first reported on May 25th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-10 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-10 16:59:18 (3 days ago)	Portscan: TCP/2087, TCP/8080, TCP/2082, TCP/8443, TCP/2086, TCP/2083	Port Scan
🇺🇸 RAP	2026-06-10 09:42:10 (3 days ago)	2026-06-10 09:42:10 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 eber965	2026-06-10 09:17:23 (3 days ago)	[Wed Jun 10 05:17:19 2026] [authz_core:error] [pid 3375060:tid 140065367901952] [client 20.83.159.2: ... show more [Wed Jun 10 05:17:19 2026] [authz_core:error] [pid 3375060:tid 140065367901952] [client 20.83.159.2:59874] AH01630: client denied by server configuration: /var/www/html/.git [Wed Jun 10 05:17:19 2026] [authz_core:error] [pid 3286985:tid 140065502119680] [client 20.83.159.2:59855] AH01630: client denied by server configuration: /var/www/html/.git [Wed Jun 10 05:17:20 2026] [authz_core:error] [pid 3286984:tid 140064445163264] [client 20.83.159.2:59863] AH01630: client denied by server configuration: /var/www/html/.env [Wed Jun 10 05:17:21 2026] [authz_core:error] [pid 3286985:tid 140065384687360] [client 20.83.159.2:59333] AH01630: client denied by server configuration: /var/www/html/.env.local [Wed Jun 10 05:17:22 2026] [authz_core:error] [pid 3683847:tid 140065736984320] [client 20.83.159.2:59859] AH01630: client denied by server configuration: /var/www/html/.env.production ... show less	Brute-Force
🇩🇪 jasperedv.de	2026-06-10 08:33:34 (3 days ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-10 05:46:57 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 20.83.159.2 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 20.83.159.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 01:46:52.381734 2026] [security2:error] [pid 18952:tid 18952] [client 20.83.159.2:59661] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.180"] [uri "/.git/HEAD"] [unique_id "aij6TCUqbq3RaLRWe03xhgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-06-10 05:20:22 (3 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇧🇷 SOC-BR	2026-06-08 07:22:01 (5 days ago)	Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-07 1 ... show more Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-07 16:03:27 - Source Port 19752 show less	Port Scan Hacking
🇩🇪 excill	2026-06-08 03:09:43 (5 days ago)	Honeypot mesh observed 520 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇨🇿 Countryman	2026-06-07 19:29:03 (5 days ago)	IPS detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇧🇷 dominioz	2026-06-07 19:05:22 (5 days ago)	2026-06-07 19:04:34 GET /.git/HEAD - - 20.83.159.2 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64 ... show more 2026-06-07 19:04:34 GET /.git/HEAD - - 20.83.159.2 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/124.0.0.0+Safari/537.36 - 404 1459 2026-06-07 19:04:38 GET /.env - - 20.83.159.2 HTTP/1.1 Mozilla/5.0+(Linux;+Android+14;+Pixel+8)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/124.0.0.0+Mobile+Safari/537.36 - 404 1459 2026-06-07 19:04:42 GET /.env.production - - 20.83.159.2 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/124.0.0.0+Safari/537.36 - 404 1459 2026-06-07 19:04:45 GET /.env.backup - - 20.83.159.2 HTTP/1.1 Mozilla/5.0+(X11;+Linux+x86_64;+rv:125.0)+Gecko/20100101+Firefox/125.0 - 404 1459 ... show less	Web App Attack
🇫🇷 GabrielJST	2026-06-07 19:01:27 (5 days ago)	Port Scan detected from 20.83.159.2 (US/United States/-).	Port Scan
Anonymous	2026-06-07 17:47:27 (6 days ago)	20.83.159.2 - - [07/Jun/2026:19:47:26 +0200] "GET /.git/config HTTP/1.1" 301 169 "-" "Mozilla/5.0 (c ... show more 20.83.159.2 - - [07/Jun/2026:19:47:26 +0200] "GET /.git/config HTTP/1.1" 301 169 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http:///)" show less	Web App Attack
🇺🇸 RAP	2026-06-07 17:17:34 (6 days ago)	2026-06-07 17:17:34 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇹🇼 kk_it_man	2026-06-07 16:10:13 (6 days ago)		Port Scan

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 213.66.196.11

🇻🇳 171.231.193.186

🇨🇳 115.190.50.248

🇺🇸 74.235.143.210

🇩🇪 69.5.169.242

🇹🇭 61.7.241.149

🇸🇦 51.211.0.152

🇰🇷 49.167.22.67

🇨🇳 36.144.74.33

🇨🇳 221.234.10.211

🇧🇷 192.140.64.78

🇷🇺 188.43.204.45

🇮🇳 172.83.83.194

🇺🇸 162.216.150.191

🇮🇱 130.185.96.113

🇯🇵 107.155.15.8

🇱🇹 81.30.98.144

🇺🇸 65.38.96.196

🇺🇸 45.79.181.223

🇸🇬 128.199.118.234