JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.203.213.84

172.203.213.84 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.203.213.84

Whois 172.203.213.84

IP Abuse Reports for 172.203.213.84:

This IP address has been reported a total of 46 times from 33 distinct sources. 172.203.213.84 was first reported on April 9th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-17 04:02:46 (4 days ago)	4 incidents: malicious activity. First: 2026-06-09 22:30, Last: 2026-06-17 00:02 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-06-09 22:30, Last: 2026-06-17 00:02 UTC. Triggers: ufw-repeater. show less	Port Scan
Anonymous	2026-06-16 19:05:04 (4 days ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇺🇸 Axel	2026-06-16 16:48:10 (4 days ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 37923 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 37923 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-16 14:55:33 (4 days ago)	Port Scan	Port Scan
Anonymous	2026-06-15 06:33:24 (5 days ago)	Port Scan detected from 172.203.213.84 (US/United States/-). 5 hits in the last 15 seconds	Brute-Force Port Scan
🇹🇭 Sawasdee	2026-06-15 06:33:11 (5 days ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇺🇸 Axel	2026-06-15 06:27:38 (5 days ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 25665 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 25665 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇹🇷 Threat.live	2026-06-03 07:05:03 (2 weeks ago)	Threat.live: Web Scan	Web App Attack
🇬🇧 PeravixGroup	2026-06-03 06:20:32 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 RAP	2026-06-03 06:17:31 (2 weeks ago)	2026-06-03 06:17:31 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇩🇪 big-cloud.nl	2026-06-03 06:07:27 (2 weeks ago)	Try to access /.env	Web App Attack
Anonymous	2026-06-03 05:53:12 (2 weeks ago)	Fail2Ban Log Report 172.203.213.84 - [03/Jun/2026:07:53:08 +0200] "GET /.git/config HTTP/1.1" 301 16 ... show more Fail2Ban Log Report 172.203.213.84 - [03/Jun/2026:07:53:08 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" "-" "-" ... show less	Hacking SQL Injection Web App Attack
🇳🇱 tpjg	2026-06-03 05:42:20 (2 weeks ago)	Automated: 15 requests with error status in 120s window from 172.203.213.84. Evidence: /dump.sql:404 ... show more Automated: 15 requests with error status in 120s window from 172.203.213.84. Evidence: /dump.sql:404,/.htpasswd:301,/app/config/parameters.yml:301,/config.php:301,/.DS_Store:301,/actuator/env:404,/server-status:301,/.aws/credentials:301,/wp-config.php.bak:404,/.env.save:404,/.env.backup:404,/.env.production:301,/.env.production:404,/.env.local:301,/.env:404 show less	Web App Attack
🇫🇷 masterguru	2026-06-03 05:21:51 (2 weeks ago)	Host header is a numeric IP address. Pattern match "^ (920350-131)	Hacking Bad Web Bot

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.128

🇺🇸 184.105.247.238

🇮🇹 176.124.77.44

🇭🇰 150.5.169.138

🇺🇸 147.182.226.38

🇩🇪 139.59.208.225

🇳🇱 91.92.40.4

🇺🇸 64.62.156.68

🇺🇸 63.46.172.107

🇺🇸 52.15.242.71

🇪🇸 45.135.197.60

🇮🇩 43.165.197.116

🇲🇾 2001:e68:5e34:a900:3439:9388:3089:3fd6

🇩🇪 213.209.159.228

🇺🇸 205.210.31.55

🇧🇪 198.235.24.251

🇨🇳 175.19.75.21

🇺🇸 165.227.188.42

🇺🇸 162.216.150.19

🇨🇳 117.14.157.137