JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.182.203.53

172.182.203.53 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 46%: ?

46%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.182.203.53

Whois 172.182.203.53

IP Abuse Reports for 172.182.203.53:

This IP address has been reported a total of 16 times from 15 distinct sources. 172.182.203.53 was first reported on September 27th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇬 HighWay	2026-06-28 16:51:35 (1 day ago)	172.182.203.53 - - [28/Jun/2026:16:51:33 +0000] "GET http://checkip.amazonaws.com HTTP/1.1" 403 447 ... show more 172.182.203.53 - - [28/Jun/2026:16:51:33 +0000] "GET http://checkip.amazonaws.com HTTP/1.1" 403 447 "-" "Python/3.11 aiohttp/3.14.1" 172.182.203.53 - - [28/Jun/2026:16:51:33 +0000] "GET http://checkip.amazonaws.com HTTP/1.1" 403 447 "-" "Python/3.11 aiohttp/3.14.1" 172.182.203.53 - - [28/Jun/2026:16:51:34 +0000] "GET http://checkip.amazonaws.com HTTP/1.1" 403 447 "-" "Python/3.11 aiohttp/3.14.1" ... show less	Hacking Port Scan
🇬🇧 Steve	2026-06-18 16:08:04 (1 week ago)	SQL Injection Attempts	Brute-Force SQL Injection
🇩🇪 conseilgouz	2026-06-18 12:57:41 (1 week ago)	coe-12 : Block return, carriage return, ... characters=>/isotope-joomla-6?default_tag=70&id=1%27 ... show more coe-12 : Block return, carriage return, ... characters=>/isotope-joomla-6?default_tag=70&id=1%27&moddef=tag(') show less	Hacking
🇹🇼 kk_it_man	2026-06-14 01:30:12 (2 weeks ago)		Port Scan
🇷🇸 Scan	2026-06-14 01:26:48 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-06-13 21:30:04 (2 weeks ago)	Triggered: repeated knocking on closed ports.	Port Scan
🇨🇭 Kepler-1649c	2026-06-10 10:05:27 (2 weeks ago)	Detected Attack: HTPasswd.Access	Hacking
🇧🇷 SOC PR	2026-06-10 04:38:32 (2 weeks ago)	IPS: Web Server Exposed Git Repository Information Disclosure.	Hacking
🇺🇸 kosada.com	2026-06-10 04:06:56 (2 weeks ago)	Web vulnerability probing: /.env.backup (bogus vhost/SNI)	Web App Attack
🇦🇷 Bruno	2026-06-10 02:24:49 (2 weeks ago)	Port Scanner: 172.182.203.53	Port Scan
🇷🇸 Scan	2026-06-10 01:21:26 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇪 cmbplf	2026-04-10 23:43:50 (2 months ago)	1.525 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇩🇪 FeG Deutschland	2026-04-10 21:59:35 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127	Exploited Host Web App Attack
🇳🇿 Antinson	2026-04-10 20:36:43 (2 months ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-10 19:51:19 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.182.203.53 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.182.203.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 15:51:12.019100 2026] [security2:error] [pid 733986:tid 733986] [client 172.182.203.53:64408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mayiasteadman.com"] [uri "/.git/config"] [unique_id "adlUsLfGwVxp_p-z0swqLAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 157.20.176.150

🇺🇸 147.185.132.88

🇨🇳 124.66.76.169

🇨🇳 124.31.107.4

🇸🇬 101.47.156.21

🇺🇸 73.36.177.174

🇺🇸 43.153.102.138

🇵🇰 39.52.29.107

🇰🇷 211.175.22.56

🇺🇸 209.250.4.252

🇨🇭 209.99.190.200

🇫🇷 193.70.86.68

🇧🇷 177.44.73.30

🇺🇸 172.202.118.16

🇮🇩 168.110.218.47

🇩🇪 162.19.230.21

🇺🇸 148.135.144.188

🇨🇳 124.31.106.238

🇨🇳 124.31.104.56

🇨🇳 101.126.54.95