JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.175.149

20.83.175.149 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 47%: ?

47%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.175.149

Whois 20.83.175.149

IP Abuse Reports for 20.83.175.149:

This IP address has been reported a total of 9 times from 7 distinct sources. 20.83.175.149 was first reported on June 2nd 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 blik2108	2026-06-28 09:09:11 (4 hours ago)	beta.sleepylizard.com:80 20.83.175.149 - - [28/Jun/2026:10:08:29 +0100] "GET /.git/HEAD HTTP/1.1" 30 ... show more beta.sleepylizard.com:80 20.83.175.149 - - [28/Jun/2026:10:08:29 +0100] "GET /.git/HEAD HTTP/1.1" 301 604 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" beta.sleepylizard.com:80 20.83.175.149 - - [28/Jun/2026:10:08:54 +0100] "GET /wp-config.php HTTP/1.1" 301 612 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" beta.sleepylizard.com:80 20.83.175.149 - - [28/Jun/2026:10:08:55 +0100] "GET /wp-config.php.bak HTTP/1.1" 301 620 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" beta.sleepylizard.com:80 20.83.175.149 - - [28/Jun/2026:10:09:02 +0100] "GET /config/database.yml HTTP/1.1" 301 624 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" beta.sleepylizard.com:80 20.83.175.149 - - [28/Jun/2026:10:09:11 +0100] "GET /config.php HTTP/1.1" 301 606 "-" "Mozilla/5.0 (Macintosh; Inte ... show less	Brute-Force Web App Attack
🇩🇪 gadix	2026-06-28 07:55:33 (6 hours ago)	[28/Jun/2026:09:55:26.382964 +0200] akDTboeULtE5hHtVT7Hi8wAAAAg 20.83.175.149 37620 127.0.0.1 7081 [ ... show more [28/Jun/2026:09:55:26.382964 +0200] akDTboeULtE5hHtVT7Hi8wAAAAg 20.83.175.149 37620 127.0.0.1 7081 [28/Jun/2026:09:55:28.577329 +0200] akDTcIfC5J4wiy9nU0fNfAAAAAY 20.83.175.149 44984 127.0.0.1 7080 [28/Jun/2026:09:55:30.025621 +0200] akDTcpQOdmk5eS_MiaX3UQAAAAA 20.83.175.149 37628 127.0.0.1 7081 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 07:28:14 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.83.175.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.83.175.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 03:28:07.822787 2026] [security2:error] [pid 26929:tid 27076] [client 20.83.175.149:16433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.133"] [uri "/.git/HEAD"] [unique_id "akDNB4iuuSst5nHMRwqdZAAAAo8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MPL	2026-06-28 06:48:50 (7 hours ago)	tcp port scan (8 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-28 06:22:51 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.83.175.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.83.175.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 02:22:46.419684 2026] [security2:error] [pid 894:tid 894] [client 20.83.175.149:16433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.5"] [uri "/.git/HEAD"] [unique_id "akC9ton8gD9gA-4BLBdMKAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 SeczarSecureOps	2026-06-28 06:00:48 (8 hours ago)	Auto-blocked by Seczar SecureOps — IPS Web Attack Signature (2 events in 5min) at 2026-06-28 06:00	Web App Attack Bad Web Bot
Anonymous	2026-06-28 05:42:43 (8 hours ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-28 05:01:00 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 20.83.175.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 20.83.175.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 01:00:55.974784 2026] [security2:error] [pid 26160:tid 26160] [client 20.83.175.149:16651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.199"] [uri "/.git/HEAD"] [unique_id "akCqh5wgGiDbOGNzIJUj5gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-02 14:31:10 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 117.92.244.158

🇳🇱 91.92.40.47

🇷🇴 80.94.95.211

🇸🇬 43.134.94.96

🇳🇱 193.176.31.157

🇸🇦 154.205.134.214

🇻🇳 118.69.226.76

🇳🇱 91.92.40.43

🇳🇱 91.92.40.23

🇺🇸 68.198.1.144

🇱🇹 45.227.254.170

🇰🇿 2.133.4.22

🇧🇷 191.251.161.207

🇺🇸 157.230.231.220

🇩🇪 94.26.106.31

🇱🇻 81.30.98.62

🇸🇪 13.60.231.121

🇰🇷 1.227.228.131

🇺🇸 216.73.161.173

🇷🇺 109.187.89.29