JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 48.214.53.115

48.214.53.115 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 48.214.53.115

Whois 48.214.53.115

IP Abuse Reports for 48.214.53.115:

This IP address has been reported a total of 30 times from 27 distinct sources. 48.214.53.115 was first reported on September 19th 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-07 13:29:02 (10 hours ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-07 10:48:18 (13 hours ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-4)	Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-07 10:36:56 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 48.214.53.115 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 48.214.53.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 06:36:48.922835 2026] [security2:error] [pid 19528:tid 19586] [client 48.214.53.115:54631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.129"] [uri "/.git/HEAD"] [unique_id "aiVJwJC-i8Kukr_xHC47dAAAAkA"] show less	Brute-Force Bad Web Bot Web App Attack
🇭🇰 www.winos.me	2026-06-07 09:26:15 (14 hours ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
Anonymous	2026-06-07 09:01:10 (14 hours ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇺🇸 KitsuneTech	2026-06-07 08:53:57 (15 hours ago)	48.214.53.115 - - [07/Jun/2026:03:53:56 -0500] "GET /wp-config.php HTTP/1.1" 301 244 "-" "Mozilla/5. ... show more 48.214.53.115 - - [07/Jun/2026:03:53:56 -0500] "GET /wp-config.php HTTP/1.1" 301 244 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-03 23:23:06 (4 days ago)	2026-06-04T00:23:05.599072+01:00 vps kernel: [42269152.285297] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-04T00:23:05.599072+01:00 vps kernel: [42269152.285297] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=48.214.53.115 DST=54.37.14.118 LEN=40 TOS=0x00 PREC=0x00 TTL=233 ID=22808 PROTO=TCP SPT=47427 DPT=7848 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 BSG Webmaster	2026-06-02 07:00:10 (5 days ago)	Port scanning (Port 443)	Port Scan Hacking
🇬🇧 essinghigh	2026-06-02 06:22:53 (5 days ago)	IPS Detection: 48.214.53.115 -> DPT: 2082	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 05:19:00 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 48.214.53.115 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 48.214.53.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 01:18:56.789370 2026] [security2:error] [pid 28631:tid 28631] [client 48.214.53.115:13120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.171"] [uri "/wp-config.php"] [unique_id "ah5nwDDvT_vLb-a6AbAMjQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-02 02:27:19 (5 days ago)	Jun 1 22:27:18 localhost kernel: [108712556.291752] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 1 22:27:18 localhost kernel: [108712556.291752] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=48.214.53.115 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=40 ID=57130 DF PROTO=TCP SPT=12314 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 1 22:27:18 localhost kernel: [108712556.291780] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=48.214.53.115 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=40 ID=57130 DF PROTO=TCP SPT=12314 DPT=2087 SEQ=2993755219 ACK=0 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020405A00402080A1FE6C6C4000000000103030A) Jun 1 22:27:18 localhost kernel: [108712556.300955] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=48.214.53.115 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=41 ID=57632 DF PROTO=TCP SPT=12314 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 1 22:27:18 localhost kernel: [108712556.300961] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0 show less	Port Scan
🇨🇦 polycoda	2026-06-02 02:21:42 (5 days ago)	AutoBlock: 📡 Port Scan (Non Decay-Based)	Port Scan
🇹🇷 Threat.live	2026-06-02 01:55:04 (5 days ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 Cyber Crusader	2026-06-01 19:57:38 (6 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 LotPhantom	2026-06-01 14:30:25 (6 days ago)	2026-06-01T14:30:24.664364+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-06-01T14:30:24.664364+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=48.214.53.115 DST=157.230.217.55 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=31994 DF PROTO=TCP SPT=59456 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-01T14:30:24.669859+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=48.214.53.115 DST=157.230.217.55 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=41261 DF PROTO=TCP SPT=59456 DPT=2083 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Hacking

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.177.179.174

🇺🇸 192.178.37.28

🇺🇸 165.232.50.131

🇷🇸 147.91.214.200

🇻🇳 117.2.73.65

🇮🇳 103.21.79.242

🇺🇸 20.65.194.6

🇩🇪 2a02:4780:3f:1903:0:13dd:ec32:1

🇺🇸 147.185.132.213

🇮🇩 145.79.14.133

🇺🇸 132.196.82.4

🇮🇳 103.38.182.49

🇮🇩 2a02:4780:6:2086:0:2fda:f903:1

🇳🇱 185.93.89.147

🇫🇷 178.238.226.170

🇩🇪 213.209.159.56

🇳🇱 185.242.226.81

🇲🇴 182.93.50.90

🇺🇸 96.44.174.248

🇺🇸 72.18.83.212