JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.48.88

20.83.48.88 was found in our database!

This IP was reported 60 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.48.88

Whois 20.83.48.88

IP Abuse Reports for 20.83.48.88:

This IP address has been reported a total of 60 times from 58 distinct sources. 20.83.48.88 was first reported on June 4th 2026, and the most recent report was 10 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 aranguren.org	2026-06-04 15:41:31 (10 seconds ago)	20.83.48.88 - - [05/Jun/2026:01:41:30 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.83.48.88 - - [05/Jun/2026:01:41:30 +1000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 990 "-" "-" 20.83.48.88 - - [05/Jun/2026:01:41:30 +1000] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 16 "-" "-" 20.83.48.88 - - [05/Jun/2026:01:41:30 +1000] "GET /classgoto24.php HTTP/1.1" 404 16 "-" "-" 20.83.48.88 - - [05/Jun/2026:01:41:30 +1000] "GET /cu.php HTTP/1.1" 404 16 "-" "-" 20.83.48.88 - - [05/Jun/2026:01:41:30 +1000] "GET /4PJcpMFsD8B.php HTTP/1.1" 404 16 "-" "-" 20.83.48.88 - - [05/Jun/2026:01:41:31 +1000] "GET /206.php HTTP/1.1" 404 16 "-" "-" ... show less	Bad Web Bot
🇩🇪 iNetWorker	2026-06-04 15:40:23 (1 minute ago)	firewall-block, port(s): 80/tcp	Port Scan
🇺🇦 URAN Publishing Service	2026-06-04 15:35:49 (5 minutes ago)	20.83.48.88 - - [04/Jun/2026:18:35:31 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.83.48.88 - - [04/Jun/2026:18:35:31 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 708 "-" "-" 20.83.48.88 - - [04/Jun/2026:18:35:48 +0300] "GET /wp-includes/blocks/post-comments-form/ HTTP/1.1" 404 628 "-" "-" ... show less	Web App Attack
Anonymous	2026-06-04 15:32:30 (9 minutes ago)	20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /x.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /wpconf.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /ultradybbuks.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:04 +0200] "GET /novax.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:05 +0200] "GET /mosty.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:05 +0200] "GET /007.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:05 +0200] "GET /dejavu.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:05 +0200] "GET /aaf.php HTTP/1.1" 404 484 "-" "-" 20.83.48.88 - - [04/Jun/2026:17:32:05 +0200] "GET /b00869ae6e.php HTTP ... show less	DDoS Attack
🇦🇺 rubixstudios	2026-06-04 15:31:02 (10 minutes ago)	Excessive HTTP requests consistent with automated attack behaviour detected by Imunify360	DDoS Attack Brute-Force Web App Attack
🇳🇱 taivas.nl	2026-06-04 15:30:06 (11 minutes ago)	web_app_attack	Email Spam
🇸🇪 KIDOS	2026-06-04 15:26:41 (15 minutes ago)	Suspicious activity detected in ezproxy log (e.g., sqlmap, masscan, python-requests)	DDoS Attack
🇫🇷 masterguru	2026-06-04 15:25:08 (16 minutes ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.83.48.88 (US/United States/-): 2 i ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.83.48.88 (US/United States/-): 2 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 guillaume illien	2026-06-04 15:24:56 (16 minutes ago)	20.83.48.88 - - [04/Jun/2026:15:24:49 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 20.83.48.88 - - [04/Jun/2026:15:24:49 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 178 "-" "-" 20.83.48.88 - - [04/Jun/2026:15:24:53 +0000] "GET /this_is_a_new_hello_world.php HTTP/1.1" 301 178 "-" "-" 20.83.48.88 - - [04/Jun/2026:15:24:54 +0000] "GET /ff.php HTTP/1.1" 301 178 "-" "-" 20.83.48.88 - - [04/Jun/2026:15:24:54 +0000] "GET /x.php HTTP/1.1" 301 178 "-" "-" 20.83.48.88 - - [04/Jun/2026:15:24:55 +0000] "GET /tires.php HTTP/1.1" 301 178 "-" "-" 20.83.48.88 - - [04/Jun/2026:15:24:55 +0000] "GET /wp-block.php HTTP/1.1" 301 178 "-" "-" 20.83.48.88 - - [04/Jun/2026:15:24:56 +0000] "GET /wp-der.php HTTP/1.1" 301 178 "-" "-" ... show less	Hacking Brute-Force Web App Attack SSH
🇩🇪 ghostwarriors	2026-06-04 15:20:04 (21 minutes ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-04 15:11:29 (30 minutes ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.83.48.88 (US/United States/-): 1 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 20.83.48.88 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 nasset	2026-06-04 15:08:51 (32 minutes ago)	20.83.48.88 - - [04/Jun/2026:08:08:49 -0700] "GET /av.php HTTP/1.1" 403 584 "-" "-" 20.83.48.88 - - ... show more 20.83.48.88 - - [04/Jun/2026:08:08:49 -0700] "GET /av.php HTTP/1.1" 403 584 "-" "-" 20.83.48.88 - - [04/Jun/2026:08:08:49 -0700] "GET /simple.php HTTP/1.1" 403 584 "-" "-" 20.83.48.88 - - [04/Jun/2026:08:08:50 -0700] "GET /8.php HTTP/1.1" 403 584 "-" "-" 20.83.48.88 - - [04/Jun/2026:08:08:50 -0700] "GET /img.php HTTP/1.1" 403 584 "-" "-" 20.83.48.88 - - [04/Jun/2026:08:08:50 -0700] "GET /bob.php HTTP/1.1" 403 584 "-" "-" ... show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-04 15:05:48 (35 minutes ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.83.48.88 (US/United States/-): 1 i ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 20.83.48.88 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
Anonymous	2026-06-04 15:04:10 (37 minutes ago)	Aggressive web scan	Bad Web Bot Web App Attack
🇨🇭 backslash	2026-06-04 14:57:00 (44 minutes ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot

Showing 1 to 15 of 60 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 104.131.127.61

🇸🇬 43.156.136.152

🇵🇱 31.178.148.42

🇺🇿 213.230.111.169

🇩🇪 213.209.159.228

🇲🇿 196.3.98.10

🇵🇰 182.188.115.58

🇺🇸 166.62.41.190

🇨🇮 154.0.30.137

🇮🇳 151.185.42.72

🇨🇳 121.239.64.139

🇫🇮 89.167.10.218

🇸🇦 77.223.252.169

🇺🇸 47.254.37.131

🇱🇹 45.227.254.170

🇺🇸 44.244.18.192

🇮🇳 43.230.201.87

🇻🇳 27.71.209.8

🇺🇸 23.134.88.60

🇸🇾 205.209.64.177