JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.182.213.66

172.182.213.66 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 60%: ?

60%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.182.213.66

Whois 172.182.213.66

IP Abuse Reports for 172.182.213.66:

This IP address has been reported a total of 17 times from 16 distinct sources. 172.182.213.66 was first reported on August 4th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-08 08:03:45 (3 days ago)	PORT & IP Scan.	Port Scan Brute-Force
🇺🇸 thororen	2026-06-08 07:01:08 (3 days ago)	Blocked by UFW [2086/tcp] Source port: 29577 TTL: 112 Packet length: 40 TOS: 0x00 This report was g ... show more Blocked by UFW [2086/tcp] Source port: 29577 TTL: 112 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Axel	2026-06-08 05:13:22 (3 days ago)	[2026-06-08 05:13:22 UTC] Honeypot HTTP-Alt connection attempt \| AXFRA HONEYPOT	Web App Attack
🇬🇧 PeravixGroup	2026-06-02 06:31:45 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 MPL	2026-06-02 03:52:49 (1 week ago)	tcp port scan (7 or more attempts)	Port Scan
🇹🇷 SeczarSecureOps	2026-06-02 03:50:54 (1 week ago)	Seczar SecureOps — Port Scan Detection (7 events) — quarantined 43200m on fgdcapi	Port Scan
🇫🇮 Yachiyo Runami	2026-06-02 03:32:49 (1 week ago)	Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 46 \| ... show more Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 46 \| Len: 60B(2x) \| Win: 64240(2) \| F2B/ufw-honeypot@2026-06-02T03:32:49Z show less	Port Scan Hacking
🇹🇭 Sawasdee	2026-06-02 02:39:26 (1 week ago)	Port Scan ...	Port Scan
🇩🇪 guldkage	2026-06-02 01:46:39 (1 week ago)	Unauthorized connection attempt detected from IP address 172.182.213.66 to port 8443 (ger-03) [D]	Brute-Force Exploited Host
🇷🇸 Scan	2026-06-02 00:42:22 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇮 [email protected]	2026-06-01 05:04:57 (1 week ago)	Attack attempt against Interwebbi servers; Port Scan detected from 172.182.213.66 (US/United State ... show more Attack attempt against Interwebbi servers; Port Scan detected from 172.182.213.66 (US/United States/-). 5 hits in the last 255 seconds; IP: 172.182.213.66; Ports: *; Direction: 0; Trigger: PS_LIMIT; show less	Brute-Force
🇹🇭 Sawasdee	2026-04-25 07:50:43 (1 month ago)	Port Scan ...	Port Scan
Anonymous	2026-04-09 10:54:56 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 SLSLLC	2026-04-09 01:26:06 (2 months ago)	172.182.213.66 - - [09/Apr/2026:01:26:05 +0000] "GET /.env.production HTTP/2.0" 403 1927 "https://ww ... show more 172.182.213.66 - - [09/Apr/2026:01:26:05 +0000] "GET /.env.production HTTP/2.0" 403 1927 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" ... show less	Brute-Force Web App Attack
🇺🇸 Rayulcifer	2025-11-14 01:00:41 (6 months ago)	172.182.213.66 - - [13/Nov/2025:20:00:38 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 502 584 "-" "-" ... show more 172.182.213.66 - - [13/Nov/2025:20:00:38 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 502 584 "-" "-" 172.182.213.66 - - [13/Nov/2025:20:00:39 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 502 587 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 167.71.4.2

🇿🇦 152.110.78.240

🇭🇰 144.48.241.162

🇪🇸 34.175.145.182

🇮🇳 2402:3a80:1c50:db09:e0fe:959b:b006:69

🇨🇭 179.43.163.26

🇺🇸 107.150.97.52

🇺🇸 104.171.28.165

🇺🇸 98.159.37.208

🇷🇺 91.238.28.4

🇸🇬 45.82.78.104

🇬🇧 45.82.76.108

🇬🇧 35.203.210.91

🇳🇱 204.76.203.81

🇩🇪 167.94.145.20

🇺🇸 104.248.231.150

🇫🇷 91.196.152.190

🇫🇮 77.42.47.60

🇳🇱 45.148.10.147

🇨🇳 43.248.108.161