JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.200.124.212

172.200.124.212 was found in our database!

This IP was reported 246 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.200.124.212

Whois 172.200.124.212

IP Abuse Reports for 172.200.124.212:

This IP address has been reported a total of 246 times from 201 distinct sources. 172.200.124.212 was first reported on November 25th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-12-12 13:04:25 (6 months ago)	Blocked: Reason='Auto-block via DW'; Requests=0	Hacking
🇨🇳 ThreatBook.io	2025-11-27 03:06:43 (6 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/172.200.124.212 202 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/172.200.124.212 2025-11-26 02:53:17 /aa.php 2025-11-26 02:53:19 /admin.php 2025-11-26 02:53:20 /ALFA_DATA/admin.php 2025-11-26 02:53:20 /xmlrpc.php 2025-11-26 02:53:20 /aaa.php 2025-11-26 02:53:18 /abcd.php 2025-11-26 02:53:19 /.__info.php 2025-11-26 02:53:20 /info.php show less	Web App Attack
🇭🇺 DumaNet	2025-11-27 01:58:00 (6 months ago)	WordPress plugin attack attempts. Date: 2025 Nov 25. 18:18:42 Source IP: 172.200.124.212 Portio ... show more WordPress plugin attack attempts. Date: 2025 Nov 25. 18:18:42 Source IP: 172.200.124.212 Portion of the log(s): 172.200.124.212 - [25/Nov/2025:18:18:39 +0100] "GET /wp-includes/rest-api/ HTTP/1.1" 404 555 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 172.200.124.212 - [25/Nov/2025:18:18:38 +0100] "GET /wp-includes/js/crop/ HTTP/1.1" 404 153 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1" 172.200.124.212 - [25/Nov/2025:18:18:38 +0100] "GET /wp-includes/fonts/index.php HTTP/1.1" 404 555 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 172.200.124.212 - [25/Nov/2025:18:18:38 +0100] "GET /wp-includes/fonts/ HTTP/1.1" 404 555 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; SM show less	Hacking Web App Attack
🇭🇺 DumaNet	2025-11-27 01:38:00 (6 months ago)	Web app attack attempts, scanning for vulnerability. Date: 2025 Nov 25. 15:23:58 Source IP: 172.20 ... show more Web app attack attempts, scanning for vulnerability. Date: 2025 Nov 25. 15:23:58 Source IP: 172.200.124.212 Portion of the log(s): 172.200.124.212 - [25/Nov/2025:15:23:56 +0100] "GET /build.php HTTP/1.1" 404 555 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 172.200.124.212 - [25/Nov/2025:15:23:56 +0100] "GET /alfa.php HTTP/1.1" 404 153 "https://www.google.co.uk/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 172.200.124.212 - [25/Nov/2025:15:23:56 +0100] "GET /akcc.php HTTP/1.1" 404 555 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 172.200.124.212 - [25/Nov/2025:15:23:56 +0100] "GET /adminfuns.php HTTP/1.1" 404 555 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Geck show less	Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-26 23:02:05 (6 months ago)	Auto-ban: 11 malicious requests on 2025-11-25 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 11 malicious requests on 2025-11-25 (e.g., env/backup probes, brute-force, or error bursts). show less	Hacking Web App Attack SSH
🇹🇷 rtbh.com.tr	2025-11-26 20:10:07 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 Buster	2025-11-26 15:51:00 (6 months ago)	Repeated script kiddie DOS and DDOS attack attempts from Perm Blocked ASN and country	DDoS Attack Open Proxy Hacking Web App Attack
🇳🇱 Site.eu	2025-11-26 14:19:12 (6 months ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 JCB	2025-11-26 09:09:00 (6 months ago)	172.200.124.212 - - [25/Nov/2025:22:10:32 +0200] "GET /cgi-bin/bypass.php HTTP/1.1" 404 196 "https:/ ... show more 172.200.124.212 - - [25/Nov/2025:22:10:32 +0200] "GET /cgi-bin/bypass.php HTTP/1.1" 404 196 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 172.200.124.212 - - [25/Nov/2025:22:10:55 +0200] "GET /wp-admin/css/ HTTP/1.1" 404 196 "https://www.yahoo.com/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" ... show less	Hacking Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2025-11-26 06:15:45 (6 months ago)	279 attacks on Alfa URLs, PHP URLs, FCKeditor URLs, env grabbing URLs: GET /wp-includes/ALFA_DATA/al ... show more 279 attacks on Alfa URLs, PHP URLs, FCKeditor URLs, env grabbing URLs: GET /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1 GET /wp-update.php HTTP/1.1 GET /admin/fckeditor/editor/filemanager/ HTTP/1.1 GET /user/.env HTTP/1.1 show less	Hacking Web App Attack
🇧🇪 taivas.nl	2025-11-26 05:32:22 (6 months ago)	Many_bad_calls	Web App Attack
🇺🇸 octageeks.com	2025-11-26 05:07:36 (6 months ago)	Wordpress malicious attack:[octa404]	Web App Attack
Anonymous	2025-11-26 04:30:59 (6 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
Anonymous	2025-11-26 02:00:30 (6 months ago)	DirectAdmin Auto Report (earthstationllc.com.log)	Brute-Force SSH
🇬🇧 spamverify.com	2025-11-26 02:00:09 (6 months ago)	Honeypot Hit: xmlrpc.php	Web Spam Blog Spam Bad Web Bot Web App Attack

Showing 1 to 15 of 246 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 216.26.238.248

🇧🇷 205.210.31.207

🇬🇧 151.236.35.36

🇩🇪 138.197.189.148

🇸🇬 101.47.8.187

🇸🇪 31.59.160.12

🇬🇧 13.40.69.225

🇺🇸 216.26.227.166

🇺🇸 209.50.175.231

🇧🇷 205.210.31.201

🇺🇸 205.210.31.46

🇭🇰 199.45.154.186

🇺🇸 195.184.76.137

🇬🇧 193.32.209.226

🇳🇱 176.65.132.22

🇺🇸 162.216.149.79

🇫🇮 147.185.133.48

🇨🇭 107.189.8.133

🇮🇩 36.95.221.140

🇲🇽 2806:102e:20:ebf9:bacc:5fff:fef9:4ed0