JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.213.140.80

172.213.140.80 was found in our database!

This IP was reported 181 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.213.140.80

Whois 172.213.140.80

IP Abuse Reports for 172.213.140.80:

This IP address has been reported a total of 181 times from 157 distinct sources. 172.213.140.80 was first reported on June 12th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-15 00:39:51 (3 days ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 homeshowdomain.nl	2026-06-13 21:59:51 (4 days ago)	Auto-ban: 490 malicious requests on 2026-06-12 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 490 malicious requests on 2026-06-12 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
Anonymous	2026-06-13 13:04:40 (4 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇭🇺 DumaNet	2026-06-13 07:34:00 (4 days ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 12. 21:06:55 Source IP: 172.21 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 12. 21:06:55 Source IP: 172.213.140.80 Portion of the log(s): 172.213.140.80 - [12/Jun/2026:21:06:54 +0200] "GET /ops.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:54 +0200] "GET /SrHD3odefault.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:54 +0200] "GET /x.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:54 +0200] "GET /zoper.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:54 +0200] "GET /jj_260530013947.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:53 +0200] "GET /hoeig.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:53 +0200] "GET /hypo.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:53 +0200] "GET /l.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:53 +0200] "GET /gscxejbc.php HTTP/1.1" 404 153 "-" "-" 172.213.140.80 - [12/Jun/2026:21:06:53 +0200] "GET /lala.php HTTP/1.1" 404 show less	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-13 05:14:17 (4 days ago)	109 attacks on PHP URLs: GET /ey5.php HTTP/1.1	Web App Attack
🇲🇽 octageeks.com	2026-06-13 04:19:31 (4 days ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇺🇸 Charlesiv	2026-06-13 02:59:31 (4 days ago)	Triggered Cloudflare WAF (botFight) from IT. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Co ... show more Triggered Cloudflare WAF (botFight) from IT. Action taken: MANAGED_CHALLENGE ASN: 8075 (Microsoft Corporation) Protocol: HTTP/1.1 (GET method) Endpoint: /admin-footer.php Timestamp: 2026-06-12T22:50:52Z Ray ID: a0ac6abe99758628 UA: Empty string show less	Bad Web Bot
Anonymous	2026-06-13 01:41:48 (5 days ago)	Portscan: TCP/80 (6x)	Port Scan
🇬🇧 andypiper	2026-06-13 01:01:25 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇧🇷 dominioz	2026-06-13 00:36:31 (5 days ago)	2026-06-13 00:35:52 GET /wp-content/plugins/hellopress/wp_filemanager.php - - 172.213.140.80 HTTP/1. ... show more 2026-06-13 00:35:52 GET /wp-content/plugins/hellopress/wp_filemanager.php - - 172.213.140.80 HTTP/1.1 - - 404 1440 2026-06-13 00:35:52 GET /this_is_a_new_hello_world.php - - 172.213.140.80 HTTP/1.1 - - 404 1440 2026-06-13 00:35:52 GET /classgoto24.php - - 172.213.140.80 HTTP/1.1 - - 404 1440 2026-06-13 00:35:52 GET /cu.php - - 172.213.140.80 HTTP/1.1 - - 404 1440 ... show less	Web App Attack
Anonymous	2026-06-13 00:33:31 (5 days ago)	172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /classgoto24.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /cu.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /4PJcpMFsD8B.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /206.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /flox.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /ng.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /100.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:33:29 +0200] "GET /error_log.php HTTP/1.1" 404 196 "-" "-" 172.213.140.80 - - [13/Jun/2026:02:3 ... show less	Web App Attack
Anonymous	2026-06-13 00:21:02 (5 days ago)	172.213.140.80 - - [13/Jun/2026:00:21:02 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 172.213.140.80 - - [13/Jun/2026:00:21:02 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 381 "-" "-" ... show less	Bad Web Bot Web App Attack
🇺🇸 mw	2026-06-13 00:20:22 (5 days ago)	GET /wp-admin/css/bolt.php HTTP/1.1	Web App Attack
🇩🇪 Philister11	2026-06-13 00:19:25 (5 days ago)	CrowdSec: crowdsecurity/http-probing (IT/AS8075)	Web App Attack Hacking
Anonymous	2026-06-13 00:17:44 (5 days ago)	Try to connect to Port_Scan_80_stealth	Port Scan

Showing 1 to 15 of 181 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c0c::126

🇬🇪 212.58.121.252

🇺🇸 205.210.31.89

🇮🇩 182.11.130.244

🇺🇸 165.227.84.14

🇺🇸 162.216.150.220

🇩🇪 151.243.11.245

🇮🇩 125.166.117.130

🇨🇳 116.179.32.200

🇨🇳 116.177.174.231

🇸🇬 103.20.122.54

🇹🇷 95.70.197.153

🇰🇿 85.92.120.33

🇩🇪 69.5.169.231

🇨🇳 59.52.100.7

🇺🇸 50.4.36.49

🇭🇰 45.192.184.50

🇺🇸 34.186.30.31

🇺🇸 20.168.124.0

🇫🇷 13.140.155.38