JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.209.11.209

104.209.11.209 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 96%: ?

96%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.209.11.209

Whois 104.209.11.209

IP Abuse Reports for 104.209.11.209:

This IP address has been reported a total of 36 times from 30 distinct sources. 104.209.11.209 was first reported on September 2nd 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 05:25:15 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 104.209.11.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.209.11.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:25:11.043710 2026] [security2:error] [pid 25425:tid 25425] [client 104.209.11.209:42306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.180"] [uri "/.git/config"] [unique_id "ai-Mt7r-oSYq8TNw9Z0CggAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 AutosOnShow	2026-06-15 04:25:06 (10 hours ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-15 04:24:14.026 \|	Web App Attack
🇦🇹 centurion	2026-06-15 02:03:25 (13 hours ago)	Blocked by UFW on ns03 [2087/tcp] Source port: 41384 TTL: 35 Packet length: 60 TOS: 0x00 This repor ... show more Blocked by UFW on ns03 [2087/tcp] Source port: 41384 TTL: 35 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Som1ght3n	2026-06-15 01:27:36 (13 hours ago)	IP attempted to exploit a web application by probing for sensitive files, specifically `/.git/HEAD`.	Web App Attack
🇧🇾 lns.bz	2026-06-15 01:20:28 (14 hours ago)	Too many 404 requests [BY]	Web App Attack
🇷🇸 Scan	2026-06-15 01:19:27 (14 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇹🇭 Sawasdee	2026-06-15 00:39:10 (14 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇩🇪 EGP Abuse Dept	2026-06-15 00:38:55 (14 hours ago)	Scanning for web/db/file exploits on tpc-030.mach3builders.nl	SQL Injection Bad Web Bot Web App Attack
Anonymous	2026-06-07 23:52:13 (1 week ago)	2026-06-07 23:52:13 warning[1061232]: host [104.209.11.209]: unauthorized access attempted ... show more 2026-06-07 23:52:13 warning[1061232]: host [104.209.11.209]: unauthorized access attempted: / show less	Port Scan Brute-Force
🇩🇪 femboy.cat	2026-06-03 22:49:47 (1 week ago)	Port scan to tcp/9849 from 104.209.11.209	Brute-Force
🇳🇱 astijf	2026-06-02 11:31:39 (1 week ago)	Port Scan detected from 104.209.11.209 (US/United States/-). 5 hits in the last 55 seconds	Brute-Force Port Scan
🇹🇷 Threat.live	2026-06-02 10:40:07 (1 week ago)	Suspicious Connection Attempts	Brute-Force
Anonymous	2026-06-02 10:03:49 (1 week ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇺🇸 RAP	2026-06-02 09:48:30 (1 week ago)	2026-06-02 09:48:30 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇲🇽 Luyi_ASCII	2026-06-02 09:06:26 (1 week ago)	SSH brute force attack detected by Cowrie honeypot	Brute-Force SSH

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 196.196.150.4

🇨🇳 112.3.212.16

🇧🇬 93.94.141.115

🇺🇸 92.71.44.77

🇺🇸 64.62.156.152

🇺🇸 43.135.135.17

🇺🇸 34.69.66.0

🇺🇸 34.29.104.32

🇩🇪 213.209.159.227

🇳🇱 195.178.110.204

🇸🇬 185.200.116.41

🇧🇷 177.124.11.59

🇺🇸 167.99.101.91

🇩🇪 140.82.35.102

🇳🇱 89.248.167.131

🇩🇪 45.135.194.83

🇳🇱 20.86.18.105

🇺🇸 209.54.106.219

🇫🇮 193.148.56.6

🇵🇱 87.251.64.145