JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.174.52

20.83.174.52 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 96%: ?

96%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.174.52

Whois 20.83.174.52

IP Abuse Reports for 20.83.174.52:

This IP address has been reported a total of 30 times from 20 distinct sources. 20.83.174.52 was first reported on April 12th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 lns.bz	2026-06-04 00:01:19 (1 day ago)	.env scanning [BY]	Web App Attack
Anonymous	2026-06-03 11:06:32 (1 day ago)	Portscan: TCP/8443 (3x), TCP/2087 (2x), TCP/2083 (3x), TCP/8080 (3x), TCP/2086 (3x), TCP/2082 (3x), ... show more Portscan: TCP/8443 (3x), TCP/2087 (2x), TCP/2083 (3x), TCP/8080 (3x), TCP/2086 (3x), TCP/2082 (3x), TCP/80 show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-03 06:53:36 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 02:53:28.483231 2026] [security2:error] [pid 8462:tid 8462] [client 20.83.174.52:6583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.69"] [uri "/.git/HEAD"] [unique_id "ah_PaJoJYyUnfEw8q3MsDgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 RAP	2026-06-03 06:24:42 (1 day ago)	2026-06-03 06:24:42 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 06:08:37 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 02:08:30.151892 2026] [security2:error] [pid 511:tid 511] [client 20.83.174.52:6339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.21"] [uri "/.git/HEAD"] [unique_id "ah_E3tkvKpgL1OXeJrZGlAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 rakkor	2026-06-03 05:35:13 (1 day ago)	2026-06-03T06:35:12+01:00 NAS [Wed Jun 03 06:35:12.595131 2026] [authz_core:error] [pid 348:tid 444] ... show more 2026-06-03T06:35:12+01:00 NAS [Wed Jun 03 06:35:12.595131 2026] [authz_core:error] [pid 348:tid 444] [client 20.83.174.52:38894] AH01630: client denied by server configuration: /var/services/web/.DS_Store ... show less	Brute-Force Hacking
🇺🇸 donarev419	2026-06-03 05:34:23 (1 day ago)	Port scan detected on port 8080 (connection without data transfer)	Port Scan
🇧🇷 Peregrine	2026-06-03 05:22:32 (1 day ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: - 20.83.174.52 - - [03/Jun/2026:02:22:21 -0300] "GE ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: - 20.83.174.52 - - [03/Jun/2026:02:22:21 -0300] "GET /.git/HEAD HTTP/1.1" 404 18193 show less	Bad Web Bot
🇩🇪 big-cloud.nl	2026-06-03 05:00:46 (1 day ago)	Try to access /.git/config	Web App Attack
🇧🇷 SOC PR	2026-06-03 04:54:32 (1 day ago)	IPS: Sensitive Configuration File Disclosure.	Hacking
🇫🇷 900cm	2026-06-03 04:43:28 (1 day ago)	[Wed Jun 03 06:43:11.707754 2026] [access_compat:error] [pid 3672063:tid 3672063] [client 20.83.174. ... show more [Wed Jun 03 06:43:11.707754 2026] [access_compat:error] [pid 3672063:tid 3672063] [client 20.83.174.52:49364] AH01797: client denied by server configuration: /var/www/darkintruder/.env.production [Wed Jun 03 06:43:12.264217 2026] [access_compat:error] [pid 3929342:tid 3929342] [client 20.83.174.52:49721] AH01797: client denied by server configuration: /var/www/darkintruder/.env.backup [Wed Jun 03 06:43:27.709596 2026] [access_compat:error] [pid 3929342:tid 3929342] [client 20.83.174.52:49613] AH01797: client denied by server configuration: /var/www/darkintruder/.htpasswd ... show less	Port Scan Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-03 04:25:17 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 00:25:13.724764 2026] [security2:error] [pid 1902:tid 1902] [client 20.83.174.52:50307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.64"] [uri "/.git/HEAD"] [unique_id "ah-sqTZndk2LFTuMnj7sNQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 Inartis	2026-06-03 04:24:35 (1 day ago)	20.83.174.52 - - [03/Jun/2026:04:24:34 +0000] "GET /.git/config HTTP/1.1" 302 444 "-" "Mozilla/5.0 ( ... show more 20.83.174.52 - - [03/Jun/2026:04:24:34 +0000] "GET /.git/config HTTP/1.1" 302 444 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 04:01:49 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 00:01:42.233381 2026] [security2:error] [pid 6225:tid 6244] [client 20.83.174.52:8147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.80"] [uri "/.git/HEAD"] [unique_id "ah-nJmp5dfhduFhVV14EbgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇭 Sawasdee	2026-06-03 03:39:08 (1 day ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.75

🇭🇰 185.227.153.56

🇺🇸 185.191.171.18

🇨🇴 179.33.186.150

🇺🇸 172.105.147.136

🇺🇸 162.252.54.165

🇰🇷 118.37.214.187

🇺🇸 107.180.88.176

🇮🇳 103.177.130.82

🇺🇸 103.144.28.85

🇭🇰 103.103.245.7

🇨🇳 101.16.112.242

🇫🇷 91.108.101.160

🇺🇸 76.133.97.153

🇺🇸 66.132.172.186

🇩🇪 64.89.163.165

🇺🇸 52.91.110.108

🇺🇸 40.80.200.186

🇨🇳 220.180.107.193

🇨🇳 202.112.47.54