JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 48.214.53.85

48.214.53.85 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 39%: ?

39%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 48.214.53.85

Whois 48.214.53.85

IP Abuse Reports for 48.214.53.85:

This IP address has been reported a total of 12 times from 11 distinct sources. 48.214.53.85 was first reported on October 15th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 Countryman	2026-06-10 22:04:57 (1 week ago)	IPS detection: HTPasswd.Access	Hacking
🇫🇷 Soncraft	2026-06-10 21:48:30 (1 week ago)	Blocked by UFW on Jellyfin [2087/tcp] Source port: 26650 TTL: 45 Packet length: 60 TOS: 0x08 This r ... show more Blocked by UFW on Jellyfin [2087/tcp] Source port: 26650 TTL: 45 Packet length: 60 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 eGuest	2026-06-10 21:19:37 (1 week ago)	48.214.53.85 - - [10/Jun/2026:15:19:32 -0600] "GET /.git/config HTTP/1.1" 400 666 "-" "Mozilla/5.0 ( ... show more 48.214.53.85 - - [10/Jun/2026:15:19:32 -0600] "GET /.git/config HTTP/1.1" 400 666 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 48.214.53.85 - - [10/Jun/2026:15:19:36 -0600] "GET /.env HTTP/1.1" 400 666 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 19:47:56 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 48.214.53.85 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 48.214.53.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 15:47:51.598941 2026] [security2:error] [pid 18031:tid 18031] [client 48.214.53.85:27022] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.227"] [uri "/.git/config"] [unique_id "aim_Z1jbCXwlpLVWCa0-MAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 electronico	2026-06-10 18:20:06 (1 week ago)	48.214.53.85 - - [11/Jun/2026:05:19:49 +1100] "GET /.git/HEAD HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (W ... show more 48.214.53.85 - - [11/Jun/2026:05:19:49 +1100] "GET /.git/HEAD HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 48.214.53.85 - - [11/Jun/2026:05:19:51 +1100] "GET /.git/config HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" 48.214.53.85 - - [11/Jun/2026:05:19:54 +1100] "GET /.env.local HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" 48.214.53.85 - - [11/Jun/2026:05:19:56 +1100] "GET /.env.production HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 48.214.53.85 - - [11/Jun/2026:05:19:57 +1100] "GET /.env.backup HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 48.214.53.85 - - [11/Jun/2026:05:19:59 +1100] "GET /.env.save HTTP/1.1" 404 5897 "-" "Mozilla/5.0 (X11; Linux x86_64) Ap ... show less	Brute-Force Web App Attack
🇺🇸 RAP	2026-04-27 18:27:59 (1 month ago)	2026-04-27 18:27:59 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇦🇺 trentwiles.com	2026-04-27 16:52:30 (1 month ago)	Unauthorized connection attempt detected from IP address 48.214.53.85 to port 10809 [SYD]	Port Scan
🇩🇪 Admins@FBN	2026-04-27 16:50:38 (1 month ago)	FW-PortScan: Traffic Blocked srcport=47144 dstport=3128	Port Scan
🇺🇸 xmission.com	2026-04-27 14:57:12 (1 month ago)	Blocked by UFW (TCP on 8888) Source port: 47144 TTL: 238 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 8888) Source port: 47144 TTL: 238 Packet length: 40 TOS: 0x00 This report (for 48.214.53.85) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-04-27 14:12:53 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 RAP	2026-04-27 13:14:57 (1 month ago)	2026-04-27 13:14:57 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 quicksand	2025-10-15 21:54:18 (8 months ago)	Scraping user agent [GET /] [Python/3.9 aiohttp/3.10.6]	Bad Web Bot Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 216.26.240.66

🇲🇾 183.171.57.50

🇺🇸 165.154.206.151

🇺🇸 154.58.229.21

🇸🇬 152.42.227.173

🇺🇸 147.185.132.39

🇺🇸 118.193.77.58

🇺🇸 107.173.238.126

🇷🇺 85.12.248.68

🇬🇧 77.68.9.24

🇺🇸 66.132.172.217

🇺🇸 66.132.172.36

🇺🇸 64.62.197.54

🇱🇹 62.60.130.31

🇺🇸 47.187.193.174

🇧🇷 45.205.1.73

🇳🇱 45.156.128.78

🇨🇳 14.103.112.106

🇧🇷 186.205.23.32

🇹🇷 185.67.33.205