AbuseIPDB » 48.217.108.209
48.217.108.209 was found in our database!
This IP was reported 53 times. Confidence of Abuse is 73%: ?
| ISP | Microsoft Limited |
|---|---|
| Usage Type | Data Center/Web Hosting/Transit |
| ASN | AS8075 |
| Domain Name | microsoft.com |
| Country | ๐บ๐ธ United States of America |
| City | Washington, Virginia |
IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.
IP Abuse Reports for 48.217.108.209:
This IP address has been reported a total of 53 times from 42 distinct sources. 48.217.108.209 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
| Reporter | IoA Timestamp (UTC) | Comment | Categories | |
|---|---|---|---|---|
| ๐ฉ๐ช www.fransveldman.world |
Fetched browser challenge page 10 times in <2h without solving. Likely bad bot.
|
Bad Web Bot | ||
| ๐บ๐ธ mutebot.net |
|
Port Scan | ||
| ๐ธ๐ช Lemmy |
|
Web App Attack | ||
| ๐บ๐ธ RAP |
2026-06-24 04:41:45 UTC Unauthorized activity to TCP port 8443. Web App
|
Port Scan Web App Attack | ||
| ๐ฎ๐น mgarofano80 |
|
Brute-Force Web App Attack | ||
| ๐ฉ๐ช kkeyser |
POST /___proxy_subdomain_whm/login/?login_only=1 HTTP/1.1
|
Web App Attack | ||
| ๐ซ๐ท GabrielJST |
*Port Scan* detected from 48.217.108.209 (US/United States/-).
|
Port Scan | ||
| ๐ฎ๐ช AutosOnShow |
blocked for webapp attack | path requested: /.git/config | seen at 2026-06-24 02:00:13.528 |
|
Web App Attack | ||
| ๐ท๐ธ Scan |
MultiHost/MultiPort Probe, Scan, Hack -
|
Port Scan Hacking | ||
| ๐ง๐ช boxed-it |
GET /.git/config (Tarpitted for 1d15h8m27s, wasted 8.06MB)
|
Web App Attack | ||
| ๐ง๐ท SOC-BR |
|
Port Scan Hacking | ||
| ๐ฆ๐น urnilxfgbez |
Last 24 Hours suspicious: (DPT=445|DPT=3389|DPT=22|DPT=3306|DPT=8080|DPT=23|DPT=5900|DPT=1433)
|
Port Scan | ||
| ๐ซ๐ฎ 6kilowatti |
|
Port Scan | ||
| ๐ณ๐ฑ taivas.nl |
General_bad_requests
|
Bad Web Bot | ||
| ๐ฉ๐ช tentwentyfour |
Blocked for probing for sensitive web application components
|
Brute-Force Web App Attack |
Showing 1 to 15 of 53 reports
Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown ๐ฉ