JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.174.53

20.83.174.53 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.174.53

Whois 20.83.174.53

IP Abuse Reports for 20.83.174.53:

This IP address has been reported a total of 24 times from 20 distinct sources. 20.83.174.53 was first reported on April 27th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-06-14 15:31:49 (2 hours ago)	trying to access non-authorized port	Port Scan
🇺🇸 kosada.com	2026-06-14 15:29:31 (2 hours ago)	Web vulnerability probing: /.env.backup	Web App Attack
🇵🇱 sefinek.net	2026-06-14 15:18:42 (2 hours ago)	Blocked by UFW on PL02 [2082/tcp] \| SPT: 60468 \| TTL: 46 \| LEN: 60 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on PL02 [2082/tcp] \| SPT: 60468 \| TTL: 46 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-14 14:52:44 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 10:52:40.027414 2026] [security2:error] [pid 27635:tid 27646] [client 20.83.174.53:61605] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.129"] [uri "/.git/HEAD"] [unique_id "ai7AOJw7yhQNCSxV8YyhFwAAAQk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 13:56:56 (3 hours ago)	Unauthorized access (tcp/80/http)	Port Scan Web App Attack
🇺🇸 pixiekat	2026-06-14 13:51:14 (4 hours ago)	[Sun Jun 14 13:51:09.709405 2026] [authz_core:error] [pid 114144:tid 114147] [client 20.83.174.53:61 ... show more [Sun Jun 14 13:51:09.709405 2026] [authz_core:error] [pid 114144:tid 114147] [client 20.83.174.53:61724] AH01630: client denied by server configuration: /var/www/html/.env [Sun Jun 14 13:51:10.278744 2026] [authz_core:error] [pid 114116:tid 114139] [client 20.83.174.53:62047] AH01630: client denied by server configuration: /var/www/html/.env.local [Sun Jun 14 13:51:10.754869 2026] [authz_core:error] [pid 113254:tid 113296] [client 20.83.174.53:60779] AH01630: client denied by server configuration: /var/www/html/.env.production [Sun Jun 14 13:51:11.588573 2026] [authz_core:error] [pid 114116:tid 114118] [client 20.83.174.53:61761] AH01630: client denied by server configuration: /var/www/html/.env.backup [Sun Jun 14 13:51:13.356944 2026] [authz_core:error] [pid 114144:tid 114146] [client 20.83.174.53:62173] AH01630: client denied by server configuration: /var/www/html/.env.save ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-14 13:17:50 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 09:17:43.373770 2026] [security2:error] [pid 19187:tid 19187] [client 20.83.174.53:61121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.179"] [uri "/.git/HEAD"] [unique_id "ai6p99IkkqUz9DmOknF94QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇭 Sawasdee	2026-06-14 12:45:06 (5 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
Anonymous	2026-06-14 12:29:30 (5 hours ago)	B: f2b 404 5x	Web App Attack
🇬🇧 myintarweb	2026-06-14 12:22:24 (5 hours ago)	20.83.174.53 - - [14/Jun/2026:13:22:23 +0100] 80 "GET /.git/config HTTP/1.1" 403 1442 "-" "Mozilla/5 ... show more 20.83.174.53 - - [14/Jun/2026:13:22:23 +0100] 80 "GET /.git/config HTTP/1.1" 403 1442 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" ... show less	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 12:00:11 (5 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.83.174.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 20.83.174.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 08:00:05.918964 2026] [security2:error] [pid 998:tid 998] [client 20.83.174.53:61608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.108"] [uri "/.git/HEAD"] [unique_id "ai6XxfxbMRMsar3icP6ObgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Smish	2026-06-14 11:45:52 (6 hours ago)	HONEYPOT HIT --> Fail2ban time=1781437550 log=2026-06-14T12:45:50+01:00 ip=20.83.174.53 host=89.39.2 ... show more HONEYPOT HIT --> Fail2ban time=1781437550 log=2026-06-14T12:45:50+01:00 ip=20.83.174.53 host=89.39.211.6 method=GET uri="/.git/HEAD" status=404 ua="Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" ref="-" rid=2194952d4c2999b0ec87465f1cbda387 show less	Web App Attack
🇺🇸 RAP	2026-06-14 11:33:11 (6 hours ago)	2026-06-14 11:33:11 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 gu-alvareza	2026-06-14 07:05:07 (10 hours ago)	Spring.Boot.Actuator.Unauthorized.Access	Brute-Force
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 170.245.250.241

🇫🇮 147.185.133.255

🇮🇩 128.14.232.254

🇧🇩 123.49.60.158

🇨🇳 118.145.225.50

🇩🇪 213.209.159.56

🇺🇸 193.3.53.9

🇺🇸 172.253.244.149

🇺🇸 172.203.195.1

🇺🇸 163.61.236.118

🇺🇸 146.190.41.214

🇪🇸 87.218.135.246

🇧🇭 77.69.151.191

🇫🇮 45.154.244.2

🇳🇱 45.148.10.183

🇺🇸 34.69.108.166

🇨🇱 190.114.43.84

🇺🇾 167.59.217.173

🇸🇬 165.154.236.104

🇩🇿 154.255.101.121