JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.213.17.92

172.213.17.92 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.213.17.92

Whois 172.213.17.92

IP Abuse Reports for 172.213.17.92:

This IP address has been reported a total of 136 times from 104 distinct sources. 172.213.17.92 was first reported on June 2nd 2026, and the most recent report was 14 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 lindi	2026-06-03 16:37:18 (5 hours ago)	Probing for resource vulnerabilities ...	Web Spam Brute-Force Bad Web Bot Exploited Host Web App Attack
🇺🇸 ipblock.com	2026-06-03 15:44:00 (6 hours ago)	IPBlock protected site ID [669-fx]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇩🇪 TrackerSB	2026-06-03 13:43:26 (8 hours ago)	172.213.17.92 - "-" [03/Jun/2026:15:43:24 +0200] "GET /wp-admin.php HTTP/1.1" 200 2442 "-" "Mozilla/ ... show more 172.213.17.92 - "-" [03/Jun/2026:15:43:24 +0200] "GET /wp-admin.php HTTP/1.1" 200 2442 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "172.213.17.92" 172.213.17.92 - "-" [03/Jun/2026:15:43:25 +0200] "GET /wp-admin/images/ HTTP/1.1" 200 2442 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "172.213.17.92" ... show less	Web App Attack
🇧🇪 Ivo Vynckier	2026-06-03 13:40:00 (8 hours ago)	172.213.17.92 - - [03/Jun/2026:04:11:18 +0200] "GET /a.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Window ... show more 172.213.17.92 - - [03/Jun/2026:04:11:18 +0200] "GET /a.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 172.213.17.92 - - [03/Jun/2026:04:11:18 +0200] "GET /aa.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 172.213.17.92 - - [03/Jun/2026:04:11:18 +0200] "GET /aaa.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
🇭🇺 wickedip	2026-06-03 13:37:00 (8 hours ago)	Scanning for credential files, nonexistent PHP files, other hacker files.	Brute-Force Web App Attack Hacking
🇫🇮 Christopher Hughes	2026-06-03 13:32:55 (8 hours ago)	[Wed Jun 03 14:32:55.420650 2026] [proxy_fcgi:error] [pid 365107:tid 139774803306048] [client 172.21 ... show more [Wed Jun 03 14:32:55.420650 2026] [proxy_fcgi:error] [pid 365107:tid 139774803306048] [client 172.213.17.92:1507] AH01071: Got error 'Primary script unknown' [Wed Jun 03 14:32:55.462368 2026] [proxy_fcgi:error] [pid 365107:tid 139774182540864] [client 172.213.17.92:1507] AH01071: Got error 'Primary script unknown' [Wed Jun 03 14:32:55.530712 2026] [proxy_fcgi:error] [pid 365107:tid 139774174148160] [client 172.213.17.92:1507] AH01071: Got error 'Primary script unknown' [Wed Jun 03 14:32:55.574363 2026] [proxy_fcgi:error] [pid 365107:tid 139774761342528] [client 172.213.17.92:1507] AH01071: Got error 'Primary script unknown' [Wed Jun 03 14:32:55.615663 2026] [proxy_fcgi:error] [pid 365107:tid 139775025616448] [client 172.213.17.92:1507] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇬🇧 SilverZippo	2026-06-03 13:23:56 (8 hours ago)	Web App Attack	Web App Attack
🇺🇸 Major Hostility	2026-06-03 12:35:20 (9 hours ago)	"GET /a.php HTTP/1.1" 404 "GET /aa.php HTTP/1.1" 404 "GET /aaa.php HTTP/1.1" 404 "GET /ab.php HTTP/1 ... show more "GET /a.php HTTP/1.1" 404 "GET /aa.php HTTP/1.1" 404 "GET /aaa.php HTTP/1.1" 404 "GET /ab.php HTTP/1.1" 404 "GET /lock360.php HTTP/1.1" 404 "GET /anonse/lock360.php HTTP/1.1" 404 "GET /file5.php HTTP/1.1" 404 "GET /sitemaps.php HTTP/1.1" 404 "GET /ioxi-o.php HTTP/1.1" 404 "GET /load.php HTTP/1.1" 404 "GET /k.php HTTP/1.1" 404 "GET /autoload_classmap.php HTTP/1.1" 404 "GET /post.php HTTP/1.1" 404 "GET /1.php HTTP/1.1" 404 "GET /flower.php HTTP/1.1" 404 "GET /admin.php HTTP/1.1" 404 "GET /file.php HTTP/1.1" 404 "GET /default.php HTTP/1.1" 404 "GET /defaults.php HTTP/1.1" 404 "GET /meta.php HTTP/1.1" 404 "GET /index.php HTTP/1.1" 404 "GET /yindu.php%2 show less	Web App Attack
🇬🇧 Swiptly	2026-06-03 11:23:12 (10 hours ago)	Excessive 403/404/405 PHP/CMS errors from scanning or broken bots ...	Web App Attack
🇺🇸 antlac1	2026-06-03 11:22:29 (10 hours ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇸🇬 serverutama	2026-06-03 11:00:01 (11 hours ago)	Nginx scanner: 172.213.17.92 - - [03/Jun/2026:17:11:26 +0700] "GET /xmlrpc.php HTTP/1.1" 444 0 "-" " ... show more Nginx scanner: 172.213.17.92 - - [03/Jun/2026:17:11:26 +0700] "GET /xmlrpc.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" show less	Web App Attack Bad Web Bot
🇩🇪 Skyrider	2026-06-03 10:42:19 (11 hours ago)	172.213.17.92 - - [03/Jun/2026:12:42:19 +0200] "GET /a.php HTTP/2.0" 403 5401 "-" "Mozilla/5.0 (Wind ... show more 172.213.17.92 - - [03/Jun/2026:12:42:19 +0200] "GET /a.php HTTP/2.0" 403 5401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 172.213.17.92 - - [03/Jun/2026:12:42:19 +0200] "GET /aa.php HTTP/2.0" 403 5401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 172.213.17.92 - - [03/Jun/2026:12:42:19 +0200] "GET /aaa.php HTTP/2.0" 403 5401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 172.213.17.92 - - [03/Jun/2026:12:42:19 +0200] "GET /ab.php HTTP/2.0" 403 5401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 172.213.17.92 - - [03/Jun/2026:12:42:19 +0200] "GET /lock360.php HTTP/2.0" 403 5401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 ctidrv	2026-06-03 10:21:10 (11 hours ago)	Honeypot detection. Threat score: 90/100. Collector: shell_trap. \| Request: GET /a.php \| UA: Mozilla ... show more Honeypot detection. Threat score: 90/100. Collector: shell_trap. \| Request: GET /a.php \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 \| rDNS: 172.213.17.92 \| Reasons: webshell_probe show less	Bad Web Bot
🇺🇸 Epimetheus	2026-06-03 09:42:32 (12 hours ago)	Unauthorized access attempts: [GET] /wp-content/1.php [GET] /wp-includes/js/tinymce/themes/inlite/ ... show more Unauthorized access attempts: [GET] /wp-content/1.php [GET] /wp-includes/js/tinymce/themes/inlite/ [GET] /plugin.php [GET] /wp-content/uploads/2018/03/ [GET] /block-bindings.php [GET] /config.php [GET] /configs.php [GET] /wp-content/uploads/2023/03/ [GET] /index.php [GET] /post.php [GET] /edit.php [GET] /defaults.php [GET] /dropdown.php [GET] /feeds.php [GET] /wxo.php [GET] /locale.php [GET] /text.php [GET] /colors.php [GET] /xmlrpc.php [GET] /xmlrpc.php0 [GET] /defaults.php [GET] /about.php [GET] /hehe.php [GET] /default.php [GET] /file5.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇩🇪 Gwyneth Llewelyn	2026-06-03 09:02:49 (12 hours ago)	172.213.17.92 - - [03/Jun/2026:10:02:48 +0100] "GET /wp-admin.php HTTP/1.1" 404 1006 "-" "Mozilla/5. ... show more 172.213.17.92 - - [03/Jun/2026:10:02:48 +0100] "GET /wp-admin.php HTTP/1.1" 404 1006 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Bad Web Bot

Showing 16 to 30 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.201.228.157

🇲🇽 189.194.140.170

🇳🇱 176.65.131.192

🇺🇸 172.174.221.225

🇳🇱 104.23.166.166

🇺🇸 98.81.136.43

🇩🇪 64.226.90.210

🇸🇬 54.255.246.168

🇰🇷 52.79.251.118

🇧🇷 45.165.14.197

🇳🇱 45.92.1.242

🇺🇸 13.222.197.225

🇺🇸 186.65.116.4

🇺🇸 173.211.51.38

🇨🇦 172.96.179.9

🇺🇸 165.22.34.238

🇺🇸 154.29.12.153

🇺🇸 148.153.56.170

🇨🇳 114.238.27.130

🇨🇬 102.129.75.237