JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.214.44.228

172.214.44.228 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 94%: ?

94%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.214.44.228

Whois 172.214.44.228

IP Abuse Reports for 172.214.44.228:

This IP address has been reported a total of 24 times from 19 distinct sources. 172.214.44.228 was first reported on April 10th 2026, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Peregrine	2026-06-20 03:13:13 (10 hours ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET /.env.local HTTP/1.1" 404 414 - 172.214.44.228 - - [14/Jun/2026:21:26:21 -0300] "GET /phpinfo.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-19 03:13:07 (1 day ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET /.env.local HTTP/1.1" 404 414 - 172.214.44.228 - - [14/Jun/2026:21:26:21 -0300] "GET /phpinfo.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-18 03:13:01 (2 days ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET /.env.local HTTP/1.1" 404 414 - 172.214.44.228 - - [14/Jun/2026:21:26:21 -0300] "GET /phpinfo.php HTTP/1.1" 404 414 show less	Bad Web Bot
Anonymous	2026-06-17 02:27:18 (3 days ago)	Portscan: TCP/2078, TCP/2083, TCP/2082 (2x), TCP/2095, TCP/2086 (2x), TCP/2087 (2x), TCP/2096, TCP/2 ... show more Portscan: TCP/2078, TCP/2083, TCP/2082 (2x), TCP/2095, TCP/2086 (2x), TCP/2087 (2x), TCP/2096, TCP/2077 show less	Port Scan
🇧🇷 SOC PR	2026-06-17 00:25:59 (3 days ago)	IPS: Sensitive Configuration File Disclosure.	Hacking
Anonymous	2026-06-16 20:04:59 (3 days ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇫🇷 GabrielJST	2026-06-16 18:13:45 (3 days ago)	Port Scan detected from 172.214.44.228 (US/United States/-).	Port Scan
🇺🇸 MPL	2026-06-16 15:58:18 (3 days ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-06-16 15:53:18 (3 days ago)	Blocked by UFW (TCP on 2087) Source port: 54337 TTL: 47 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2087) Source port: 54337 TTL: 47 Packet length: 60 TOS: 0x00 This report (for 172.214.44.228) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-16 14:57:50 (3 days ago)	Blocked by UFW on MVI [2086/tcp] \| SPT: 23617 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2086/tcp] \| SPT: 23617 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-16 14:49:32 (3 days ago)	Honeypot hit: Empty payload (likely service probe); 2086 [1], 2083 [1], 2087 [1], 2095 [1], 2077 [1] ... show more Honeypot hit: Empty payload (likely service probe); 2086 [1], 2083 [1], 2087 [1], 2095 [1], 2077 [1], 2082 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇧🇷 Peregrine	2026-06-16 03:13:08 (4 days ago)	Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET ... show more Fail2Ban S3 Jail: tomcat-honeypot \| Evidence: - 172.214.44.228 - - [14/Jun/2026:21:26:15 -0300] "GET /.env.local HTTP/1.1" 404 414 - 172.214.44.228 - - [14/Jun/2026:21:26:21 -0300] "GET /phpinfo.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇩🇪 ITSNF	2026-06-15 02:05:04 (5 days ago)	Blocked by os-abuseipdb; 9 hits, proto=tcp, ports=2077,2082,2083,2086,2087,2095,2096,443,80	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-15 01:59:07 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 172.214.44.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.214.44.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:59:03.652214 2026] [security2:error] [pid 27447:tid 27447] [client 172.214.44.228:58406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.153"] [uri "/.git/config"] [unique_id "ai9cZ4EYvy_NoWtdzAyVlQAAADM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Justin F. \| AS204464	2026-06-15 01:11:04 (5 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2077 [1], 2078 [1], 2086 [1] TCP ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2077 [1], 2078 [1], 2086 [1] TCP Reported by: Justin F. show less	Port Scan

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 165.154.236.104

🇫🇷 158.220.119.200

🇮🇳 122.187.230.148

🇮🇳 103.174.164.104

🇱🇹 81.30.98.158

🇸🇬 47.82.52.161

🇧🇷 43.157.163.155

🇳🇱 2.59.183.60

🇦🇷 201.234.106.215

🇧🇪 198.235.24.176

🇹🇷 195.33.200.58

🇻🇳 116.110.212.82

🇨🇳 101.251.197.46

🇺🇸 54.152.193.66

🇸🇬 47.84.137.161

🇬🇧 35.203.211.48

🇺🇸 20.168.121.88

🇺🇸 2a09:bac5:6d73:e3c::16b:135

🇳🇴 85.19.195.12

🇫🇮 2a00:1450:4010:c1e::12c