JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.236.160.17

64.236.160.17 was found in our database!

This IP was reported 54 times. Confidence of Abuse is 84%: ?

84%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.236.160.17

Whois 64.236.160.17

IP Abuse Reports for 64.236.160.17:

This IP address has been reported a total of 54 times from 42 distinct sources. 64.236.160.17 was first reported on August 17th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 lns.bz	2026-06-07 00:00:16 (1 hour ago)	.env scanning [DOOZ]	Web App Attack
Anonymous	2026-06-06 14:03:53 (11 hours ago)	PORT & IP Scan.	Port Scan Brute-Force
Anonymous	2026-06-06 10:30:05 (14 hours ago)	Triggered: repeated knocking on closed ports.	Port Scan
🇹🇼 kk_it_man	2026-06-06 10:00:13 (15 hours ago)		Port Scan
🇳🇱 lns.bz	2026-06-06 09:28:26 (15 hours ago)	Too many 404 requests [DOOZ]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 07:33:19 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 64.236.160.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 64.236.160.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 03:33:13.343349 2026] [security2:error] [pid 20583:tid 20583] [client 64.236.160.17:50280] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.160"] [uri "/.git/HEAD"] [unique_id "aiPNObSH2DkPhwnvtREsnwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 07:00:31 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 64.236.160.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 64.236.160.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 03:00:27.172376 2026] [security2:error] [pid 16392:tid 16392] [client 64.236.160.17:50433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.249"] [uri "/.git/HEAD"] [unique_id "aiPFi4FtugYE7FvbQW477gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇭 Sawasdee	2026-06-06 06:45:11 (18 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇫🇷 masterguru	2026-06-06 05:01:12 (20 hours ago)	Host header is a numeric IP address. Pattern match "^ (920350-131)	Hacking Bad Web Bot
🇺🇸 SSP	2026-06-02 01:50:01 (4 days ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇹🇭 Sawasdee	2026-06-02 01:46:09 (4 days ago)	Port Scan ...	Port Scan
🇷🇸 Scan	2026-06-02 00:07:37 (5 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇨🇿 Honzas	2026-06-01 23:19:31 (5 days ago)	Unsolicited connection attemp, port 443/TCP	Port Scan
🇺🇸 TPI-Abuse	2026-06-01 22:47:57 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 64.236.160.17 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 64.236.160.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 18:47:52.587321 2026] [security2:error] [pid 25756:tid 25756] [client 64.236.160.17:8194] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.39"] [uri "/.git/HEAD"] [unique_id "ah4MGCpCf_GJfcemv_VACwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2026-06-01 21:07:21 (5 days ago)	F2B - Malicious activity detected. Excessive port scans. -151302cd-	Port Scan

Showing 1 to 15 of 54 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.238

🇹🇼 198.235.24.78

🇨🇦 178.93.200.97

🇨🇳 124.164.251.88

🇨🇳 115.190.52.153

🇺🇸 104.168.79.23

🇺🇸 65.49.1.145

🇸🇬 47.84.199.64

🇨🇦 216.26.233.216

🇧🇷 187.70.174.216

🇮🇳 152.58.37.174

🇺🇸 64.227.49.223

🇺🇸 45.3.62.21

🇺🇸 20.168.121.88

🇺🇸 198.12.152.88

🇨🇦 178.93.200.217

🇺🇸 174.210.0.197

🇺🇸 173.255.233.65

🇬🇧 172.166.156.160

🇺🇸 167.172.152.94