JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 4.217.193.141

4.217.193.141 was found in our database!

This IP was reported 417 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 4.217.193.141

Whois 4.217.193.141

IP Abuse Reports for 4.217.193.141:

This IP address has been reported a total of 417 times from 178 distinct sources. 4.217.193.141 was first reported on May 27th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-05-31 09:51:41 (3 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇩🇪 patrisei	2026-05-31 09:35:40 (3 days ago)	You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-probing	Port Scan Web App Attack
🇺🇸 oralunal	2026-05-31 07:51:23 (3 days ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
🇫🇮 Christopher Hughes	2026-05-31 07:35:36 (3 days ago)	[Sun May 31 08:35:34.679929 2026] [proxy_fcgi:error] [pid 259330:tid 139774266435136] [client 4.217. ... show more [Sun May 31 08:35:34.679929 2026] [proxy_fcgi:error] [pid 259330:tid 139774266435136] [client 4.217.193.141:4722] AH01071: Got error 'Primary script unknown' [Sun May 31 08:35:34.957240 2026] [proxy_fcgi:error] [pid 259330:tid 139774232864320] [client 4.217.193.141:4722] AH01071: Got error 'Primary script unknown' [Sun May 31 08:35:35.234804 2026] [proxy_fcgi:error] [pid 259330:tid 139775034009152] [client 4.217.193.141:4722] AH01071: Got error 'Primary script unknown' [Sun May 31 08:35:35.511223 2026] [proxy_fcgi:error] [pid 259330:tid 139773637277248] [client 4.217.193.141:4722] AH01071: Got error 'Primary script unknown' [Sun May 31 08:35:35.796271 2026] [proxy_fcgi:error] [pid 259330:tid 139774744589888] [client 4.217.193.141:4722] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
Anonymous	2026-05-31 07:00:14 (3 days ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇺🇸 Major Hostility	2026-05-31 06:25:12 (3 days ago)	"GET /a.php HTTP/1.1" 404 "GET /aa.php HTTP/1.1" 404 "GET /aaa.php HTTP/1.1" 404 "GET /ab.php HTTP/1 ... show more "GET /a.php HTTP/1.1" 404 "GET /aa.php HTTP/1.1" 404 "GET /aaa.php HTTP/1.1" 404 "GET /ab.php HTTP/1.1" 404 "GET /lock360.php HTTP/1.1" 404 "GET /anonse/lock360.php HTTP/1.1" 404 "GET /file5.php HTTP/1.1" 404 "GET /sitemaps.php HTTP/1.1" 404 "GET /ioxi-o.php HTTP/1.1" 404 "GET /load.php HTTP/1.1" 404 "GET /k.php HTTP/1.1" 404 "GET /autoload_classmap.php HTTP/1.1" 404 "GET /post.php HTTP/1.1" 404 "GET /1.php HTTP/1.1" 404 "GET /flower.php HTTP/1.1" 404 "GET /admin.php HTTP/1.1" 404 "GET /file.php HTTP/1.1" 404 "GET /default.php HTTP/1.1" 404 "GET /defaults.php HTTP/1.1" 404 "GET /meta.php HTTP/1.1" 404 "GET /index.php HTTP/1.1" 404 "GET /yindu.php%2 show less	Web App Attack
🇫🇷 pm33	2026-05-31 06:00:48 (3 days ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇮🇩 soc-yk	2026-05-31 05:54:12 (3 days ago)	Type: web_scanning Threat: unknown Risk: 66 Events: 2279 Evidence: - Automated hostile web probing ... show more Type: web_scanning Threat: unknown Risk: 66 Events: 2279 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Web App Attack
🇨🇭 4server	2026-05-31 05:39:42 (3 days ago)	[SunMay3107:39:35.3731992026][security2:error][pid2145520:tid2145797][client4.217.193.141:0]ModSecur ... show more [SunMay3107:39:35.3731992026][security2:error][pid2145520:tid2145797][client4.217.193.141:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\\|tml\\|t\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"5100\"][id\"382238\"][rev\"2\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHPfileexecutioninuploadsdirectorydenied\"][data\"wp-content/uploads/index.php\"][severity\"CRITICAL\"][hostname\"4server.biz\"][uri\"/wp-content/uploads/index.php\"][unique_id\"ahvJl0zomwstzEZUSX6DnwAAAUU\"] show less	Hacking Web App Attack
🇧🇪 Saec	2026-05-31 05:15:02 (3 days ago)	Jarvis auto-ban: CF top attacker on saec.me (99 hits, KR)	Port Scan Web App Attack
🇺🇸 antlac1	2026-05-31 04:56:09 (3 days ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇧🇪 taivas.nl	2026-05-31 04:32:27 (3 days ago)	Many_bad_calls	Web App Attack
🇩🇪 Skyrider	2026-05-31 04:06:35 (3 days ago)	4.217.193.141 - - [31/May/2026:06:06:33 +0200] "GET /a.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Window ... show more 4.217.193.141 - - [31/May/2026:06:06:33 +0200] "GET /a.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 4.217.193.141 - - [31/May/2026:06:06:33 +0200] "GET /aa.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 4.217.193.141 - - [31/May/2026:06:06:34 +0200] "GET /aaa.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 4.217.193.141 - - [31/May/2026:06:06:34 +0200] "GET /ab.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 4.217.193.141 - - [31/May/2026:06:06:35 +0200] "GET /lock360.php HTTP/2.0" 404 36 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 ctidrv	2026-05-31 03:39:57 (3 days ago)	Honeypot detection. Threat score: 90/100. Collector: shell_trap. \| Request: GET /a.php \| UA: Mozilla ... show more Honeypot detection. Threat score: 90/100. Collector: shell_trap. \| Request: GET /a.php \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 \| rDNS: 4.217.193.141 \| Reasons: webshell_probe show less	Bad Web Bot
🇧🇪 taivas.nl	2026-05-31 03:32:10 (3 days ago)	Bad_requests	Bad Web Bot

Showing 166 to 180 of 417 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇱 181.172.73.140

🇺🇸 167.71.81.114

🇩🇪 138.68.82.23

🇧🇪 34.156.167.251

🇰🇿 2.133.4.22

🇺🇸 192.0.114.82

🇧🇷 190.89.137.91

🇳🇱 185.136.15.13

🇭🇰 165.154.245.138

🇭🇰 165.154.23.36

🇷🇺 151.252.84.225

🇨🇳 120.46.184.6

🇷🇺 109.198.239.65

🇧🇸 108.60.246.81

🇺🇸 64.227.49.223

🇩🇪 54.37.74.179

🇧🇪 35.195.199.226

🇨🇳 182.131.129.58

🇩🇪 164.90.210.69

🇺🇸 161.35.2.146