JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 132.196.82.6

132.196.82.6 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 87%: ?

87%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 132.196.82.6

Whois 132.196.82.6

IP Abuse Reports for 132.196.82.6:

This IP address has been reported a total of 34 times from 27 distinct sources. 132.196.82.6 was first reported on September 10th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-10 22:45:00 (3 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 TPI-Abuse	2026-06-10 13:02:01 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 132.196.82.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 132.196.82.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 09:01:55.177550 2026] [security2:error] [pid 4803:tid 4803] [client 132.196.82.6:28998] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.162"] [uri "/.git/HEAD"] [unique_id "ailgQ2UfaHeKI2MXU5I8ZwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 mkaraki	2026-06-10 12:30:34 (3 days ago)	1781094632 # Service_probe # SIGNATURE_SEND # source_ip:132.196.82.6 # dst_port:2087 ...	Port Scan
🇨🇿 ptlab	2026-06-10 12:30:02 (3 days ago)	Detected env_leak attack from WP-host.	Hacking Web App Attack
🇺🇸 MPL	2026-06-10 10:27:30 (4 days ago)	tcp port scan (8 or more attempts)	Port Scan
Anonymous	2026-06-02 12:16:54 (1 week ago)	Unauthorized connection	Port Scan Hacking
🇺🇸 LSPCCU	2026-06-02 12:08:29 (1 week ago)	TSEC Honeypot Network report. Threat score: 78/100. Categories: Port Scan, Hacking, Brute-Force, Web ... show more TSEC Honeypot Network report. Threat score: 78/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: ssh-telnet, cowrie. Context: 132. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇹🇷 SeczarSecureOps	2026-06-02 10:50:06 (1 week ago)	Auto-blocked by Seczar SecureOps — Port Scan Detection (7 events in 10min) at 2026-06-02 10:50	Port Scan
🇩🇪 KPS	2026-06-02 09:50:14 (1 week ago)	PortscanM	Port Scan
🇺🇸 xmission.com	2026-06-02 09:09:00 (1 week ago)	Blocked by UFW (TCP on 2086) Source port: 21569 TTL: 53 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2086) Source port: 21569 TTL: 53 Packet length: 60 TOS: 0x00 This report (for 132.196.82.6) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Yachiyo Runami	2026-06-02 09:07:33 (1 week ago)	Port Scan on Honeypot \| Ports: 80/HTTP \| Proto: TCP(1) \| Flags: all SYN \| TTL: 45 \| Len: 60B \| Win: ... show more Port Scan on Honeypot \| Ports: 80/HTTP \| Proto: TCP(1) \| Flags: all SYN \| TTL: 45 \| Len: 60B \| Win: 64240(1) \| F2B/ufw-honeypot@2026-06-02T09:07:33Z show less	Port Scan Hacking
Anonymous	2026-06-02 01:33:23 (1 week ago)	Port Scan	Port Scan
🇩🇪 london2038.com	2026-06-02 00:38:42 (1 week ago)	Connection atttempts against closed TCP ports Jun 2 02:38:42 BLOCK SRC=132.196.82.6 LEN=60 TOS=0x00 ... show more Connection atttempts against closed TCP ports Jun 2 02:38:42 BLOCK SRC=132.196.82.6 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=11916 DF PROTO=TCP SPT=31808 DPT=8443 WINDOW=64240 RES=0x00 SYN Jun 2 02:38:42 BLOCK SRC=132.196.82.6 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=58150 DF PROTO=TCP SPT=31810 DPT=2083 WINDOW=64240 RES=0x00 SYN Jun 2 02:38:42 BLOCK SRC=132.196.82.6 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=6332 DF PROTO=TCP SPT=31809 DPT=2086 WINDOW=64240 RES=0x00 SYN show less	Port Scan
🇷🇸 Scan	2026-06-02 00:09:36 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇦🇹 nomzamo	2026-06-01 23:35:30 (1 week ago)	Fail2Ban reported: nginx-noscript	Brute-Force Bad Web Bot

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.116.47.157

🇧🇬 185.255.212.191

🇺🇸 172.236.111.98

🇩🇿 154.244.126.249

🇵🇸 85.113.114.46

🇵🇰 72.255.18.158

🇨🇳 180.76.137.37

🇧🇷 160.238.27.173

🇺🇸 129.121.78.24

🇨🇳 118.145.247.242

🇨🇳 106.35.160.77

🇭🇰 101.36.127.86

🇺🇦 95.47.164.190

🇹🇷 88.234.221.135

🇱🇹 81.30.98.142

🇬🇧 68.183.40.164

🇳🇱 45.148.10.141

🇮🇳 43.229.88.62

🇨🇳 27.204.232.115

🇨🇳 223.109.252.220