JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.215.210.50

172.215.210.50 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 61%: ?

61%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Cheyenne, Wyoming

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.215.210.50

Whois 172.215.210.50

IP Abuse Reports for 172.215.210.50:

This IP address has been reported a total of 26 times from 22 distinct sources. 172.215.210.50 was first reported on January 7th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 filstal.org	2026-06-25 12:39:01 (1 day ago)	Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels an ... show more Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels and known vulnerability paths. show less	Hacking Brute-Force Web App Attack
🇬🇧 Deveroonie	2026-06-25 12:15:52 (1 day ago)	172.215.210.50 - - [25/Jun/2026:12:15:52 +0000] "GET /.git/config HTTP/1.1" 404 134 "-" "Mozilla/5.0 ... show more 172.215.210.50 - - [25/Jun/2026:12:15:52 +0000] "GET /.git/config HTTP/1.1" 404 134 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" ... show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 tall1oN	2026-06-25 11:09:10 (1 day ago)	172.215.210.50 - - [25/Jun/2026:13:09:06 +0200] "GET /.git/HEAD HTTP/1.1" 200 8192 "-" "Mozilla/5.0 ... show more 172.215.210.50 - - [25/Jun/2026:13:09:06 +0200] "GET /.git/HEAD HTTP/1.1" 200 8192 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" "213.220.159.111" 172.215.210.50 - - [25/Jun/2026:13:09:09 +0200] "GET /.git/config HTTP/1.1" 200 4096 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" "213.220.159.111" ... show less	Web App Attack Port Scan Hacking
🇳🇱 Savvii	2026-06-25 10:30:29 (1 day ago)	15 attempts against mh-modsecurity-ban on sonic	Brute-Force Web App Attack
Anonymous	2026-06-25 10:04:32 (1 day ago)	PORT & IP Scan.	Port Scan Brute-Force
🇨🇦 polycoda	2026-06-03 11:31:03 (3 weeks ago)	📡 Port scan	Hacking Web App Attack
🇮🇩 securejdprop	2026-06-03 08:02:42 (3 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO Request to ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO Request to Hidden Environment File - Inbound). Ip 172.215.210.50 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-03 08:02:40.864151811 +0000 UTC show less	Hacking Web App Attack
🇫🇷 Little Iguana	2026-06-03 07:48:31 (3 weeks ago)	trying to access non-authorized port	Port Scan
Anonymous	2026-06-03 07:23:23 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 gu-alvareza	2026-06-03 07:05:29 (3 weeks ago)	Spring.Boot.Actuator.Unauthorized.Access	Brute-Force
🇺🇸 CBJ	2026-06-03 07:02:51 (3 weeks ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇺🇸 sumnone	2026-06-03 06:33:19 (3 weeks ago)	Port probing on unauthorized port 2087	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-03 06:11:23 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 172.215.210.50 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.215.210.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 02:11:18.081190 2026] [security2:error] [pid 24506:tid 24506] [client 172.215.210.50:5250] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.68"] [uri "/.git/HEAD"] [unique_id "ah_Fhk8YhZyWaJWWEHHLAgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 oisecnet	2026-04-10 21:02:49 (2 months ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-04-10. 647 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-04-10. 647 requests from this IP. show less	Brute-Force Web App Attack SSH
🇺🇸 Charlesiv	2026-04-10 06:01:27 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 8075 (MICROSOFT-CORP-MSN ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 8075 (MICROSOFT-CORP-MSN-AS-BLOCK - Microsoft Corporation) Protocol: HTTP/2 (GET method) Endpoint: /.git/config Timestamp: 2026-04-10T05:24:25Z Ray ID: 9e9f533acf4d6bad UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Vivaldi/6.5.3206.50 show less	Bad Web Bot

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 160.250.133.77

🇺🇸 104.243.35.104

🇳🇱 91.92.40.10

🇺🇸 45.86.211.51

🇺🇸 34.186.49.157

🇨🇳 118.196.30.45

🇻🇳 103.252.123.105

🇺🇸 74.101.4.84

🇰🇷 59.24.131.89

🇳🇱 195.178.110.227

🇷🇴 193.32.162.84

🇺🇸 188.114.96.3

🇧🇷 177.22.44.30

🇳🇱 176.65.132.24

🇨🇳 124.221.177.9

🇺🇸 47.252.118.199

🇧🇷 45.205.1.76

🇳🇱 2.58.56.173

🇮🇳 163.61.39.89

🇮🇳 150.129.101.117