JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.182.213.3

172.182.213.3 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 53%: ?

53%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.182.213.3

Whois 172.182.213.3

IP Abuse Reports for 172.182.213.3:

This IP address has been reported a total of 21 times from 18 distinct sources. 172.182.213.3 was first reported on August 29th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 fleckenbase	2026-06-24 16:44:53 (5 hours ago)	apache-noscript ...	Brute-Force Web App Attack
🇧🇷 dominioz	2026-06-24 16:10:20 (5 hours ago)	2026-06-24 16:09:59 GET /.git/config - - 172.182.213.3 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64; ... show more 2026-06-24 16:09:59 GET /.git/config - - 172.182.213.3 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+rv:125.0)+Gecko/20100101+Firefox/125.0 - 404 1459 2026-06-24 16:10:03 GET /.git/refs/heads/master - - 172.182.213.3 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+14_4_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/124.0.0.0+Safari/537.36 - 404 1459 2026-06-24 16:10:07 GET /.git/refs/heads/main - - 172.182.213.3 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+14_4_1)+AppleWebKit/605.1.15+(KHTML,+like+Gecko)+Version/17.4+Safari/605.1.15 - 404 1459 2026-06-24 16:10:10 GET /.env - - 172.182.213.3 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+14_4_1)+AppleWebKit/605.1.15+(KHTML,+like+Gecko)+Version/17.4+Safari/605.1.15 - 404 1459 ... show less	Web App Attack
🇷🇺 Andrey I	2026-06-24 14:39:00 (7 hours ago)	port scan	Port Scan
Anonymous	2026-06-24 12:42:41 (9 hours ago)	Unauthorized access (8080/tcp/http-alt)	Port Scan
🇬🇧 OptimusGO	2026-06-24 12:28:29 (9 hours ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-06-24 13:28:29 UTC Log evidence: 06/24/2026-13:28:28.850530 [] [1:1000103:1] SECURITY Management Port Probe - CRITICAL [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 172.182.213.3:3105 -> 185.127.18.66:8443 06/24/2026-13:28:28.851226 [] [1:1000101:2] SECURITY Port Scan Detected - Multiple Unauthorized Ports [] [Classification: Attempted Information Leak] [Priority: 1] {TCP} 172.182.213.3:3111 -> 185.127.18.66:2083 show less	Port Scan Brute-Force
🇯🇵 demonsword	2026-06-04 15:22:23 (2 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: ptlogin.4399.com:443 show less	Open Proxy Port Scan
Anonymous	2026-06-02 10:24:23 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 sthoyer.de	2026-06-02 10:10:20 (3 weeks ago)	Jun 2 12:10:19 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd: ... show more Jun 2 12:10:19 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=172.182.213.3 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=55957 DF PROTO=TCP SPT=36905 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 2 12:10:19 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=172.182.213.3 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=5453 DF PROTO=TCP SPT=36904 DPT=8080 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 2 12:10:19 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=172.182.213.3 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=28707 DF PROTO=TCP SPT=36905 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 Jun 2 12:10:19 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=172.182.213.3 DST=173.212.223.67 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=39789 DF PROTO=TCP SPT=36905 DPT=2082 WINDOW= ... show less	Port Scan
Anonymous	2026-06-02 10:03:40 (3 weeks ago)	PORT & IP Scan.	Port Scan Brute-Force
🇺🇸 MPL	2026-06-02 09:36:36 (3 weeks ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 ISPLtd	2026-06-02 07:39:16 (3 weeks ago)	Jun 2 01:39:15 172.182.213.3 TCP SPT=36935 DPT=2086 SYN Jun 2 01:39:15 172.182.213.3 TCP SPT=36933 ... show more Jun 2 01:39:15 172.182.213.3 TCP SPT=36935 DPT=2086 SYN Jun 2 01:39:15 172.182.213.3 TCP SPT=36933 DPT=2083 SYN Jun 2 01:39:15 172.182.213.3 TCP SPT=36932 DPT=2087 ... show less	Port Scan
🇩🇪 2048	2026-05-29 09:43:35 (3 weeks ago)	2026-05-29T11:43:32.726560+02:00 machodeer kernel: [2755730.275722] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-29T11:43:32.726560+02:00 machodeer kernel: [2755730.275722] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=172.182.213.3 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=33135 DF PROTO=TCP SPT=20355 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-29T11:43:33.759187+02:00 machodeer kernel: [2755731.308499] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=172.182.213.3 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=33136 DF PROTO=TCP SPT=20355 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-29T11:43:34.783138+02:00 machodeer kernel: [2755732.332457] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=172.182.213.3 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=33137 DF PROTO=TCP SPT=20355 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Port Scan
🇳🇱 homeshowdomain.nl	2026-01-16 23:00:14 (5 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-15. show less	Hacking Web App Attack SSH
🇳🇱 homeshowdomain.nl	2026-01-15 23:00:11 (5 months ago)	Auto-ban: >3000 req/min op 2026-01-15	Hacking Web App Attack SSH
🇧🇪 cmbplf	2026-01-15 10:08:46 (5 months ago)	200 requests with url.path */.git/config	Brute-Force Bad Web Bot

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.32.162.84

🇧🇪 34.140.185.74

🇳🇱 195.178.110.232

🇳🇱 45.148.10.121

🇺🇸 44.141.206.182

🇨🇳 39.168.83.173

🇫🇷 2001:41d0:33a:a00::409

🇧🇷 205.210.31.231

🇩🇪 135.136.0.234

🇮🇹 79.23.239.122

🇺🇸 44.158.227.215

🇬🇧 44.61.160.255

🇨🇳 42.232.104.201

🇮🇳 182.95.228.194

🇨🇦 104.223.84.233

🇨🇦 85.217.149.42

🇨🇳 59.173.227.38

🇭🇰 47.86.47.175

🇮🇪 18.201.223.129

🇧🇷 200.155.66.2