JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 57.154.172.166

57.154.172.166 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 55%: ?

55%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 57.154.172.166

Whois 57.154.172.166

IP Abuse Reports for 57.154.172.166:

This IP address has been reported a total of 13 times from 11 distinct sources. 57.154.172.166 was first reported on November 20th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Dominik Lysiak	2026-06-25 22:50:47 (2 days ago)	57.154.172.166 - - [26/Jun/2026:00:50:45 +0200] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Ma ... show more 57.154.172.166 - - [26/Jun/2026:00:50:45 +0200] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 57.154.172.166 - - [26/Jun/2026:00:50:45 +0200] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" 57.154.172.166 - - [26/Jun/2026:00:50:46 +0200] "GET /.git/logs/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" ... show less	Web App Attack
🇨🇦 Dunham Support	2026-06-25 22:05:39 (2 days ago)	(mod_security) mod_security triggered on hostname [redacted] 57.154.172.166 (US/United States/-)	SQL Injection
🇺🇸 ne1for23	2026-06-25 21:04:31 (2 days ago)	Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" ... show more Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" resources improperly exposed externally and "protected" only by a lack of external DNS resolution. 57.154.172.166 - - [25/Jun/2026:21:04:31 +0000] "GET /.git/HEAD HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" "-" show less	Hacking
🇺🇸 RAP	2026-06-25 18:03:34 (3 days ago)	2026-06-25 18:03:34 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇫🇷 JPPO	2026-06-18 22:48:09 (1 week ago)	Multiport scan 10 ports : 80 443(x2) 2077 2078 2082 2083 2086 2087 2095 2096	Port Scan
Anonymous	2026-06-16 22:46:13 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 JPPO	2026-06-16 16:52:34 (1 week ago)	Multiport scan 10 ports : 80 443(x2) 2077 2078 2082 2083 2086 2087 2095 2096	Port Scan
🇺🇸 sumnone	2026-06-16 15:29:41 (1 week ago)	Port probing on unauthorized port 2078	Port Scan Hacking Exploited Host
🇱🇻 instant	2026-06-16 14:24:20 (1 week ago)	16.06.2026 14:24:20 Git repository scan (/.git)	Hacking Web App Attack
🇹🇷 Threat.live	2026-06-16 13:50:03 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇯🇵 Kinsei Engineering Inc.	2026-06-16 13:14:14 (1 week ago)	UFW:High-frequency access to unused ports	Port Scan
🇺🇸 Rayulcifer	2025-12-25 08:27:07 (6 months ago)	57.154.172.166 - - [25/Dec/2025:03:27:07 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 488 ... show more 57.154.172.166 - - [25/Dec/2025:03:27:07 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 488 "-" "-" 57.154.172.166 - - [25/Dec/2025:03:27:07 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 502 488 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Rayulcifer	2025-11-20 22:22:22 (7 months ago)	57.154.172.166 - - [20/Nov/2025:17:22:21 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 591 ... show more 57.154.172.166 - - [20/Nov/2025:17:22:21 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 591 "-" "-" 57.154.172.166 - - [20/Nov/2025:17:22:21 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 502 587 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 185.18.212.176

🇨🇴 179.32.201.5

🇮🇳 154.84.242.115

🇨🇳 112.32.76.128

🇭🇰 104.208.108.166

🇺🇸 65.110.40.99

🇧🇷 201.71.192.108

🇹🇼 198.235.24.36

🇮🇳 183.87.185.212

🇨🇳 121.61.129.141

🇮🇳 103.250.85.149

🇸🇬 103.187.147.214

🇮🇳 103.42.196.14

🇵🇱 83.5.37.92

🇲🇦 81.192.46.45

🇱🇹 45.227.254.170

🇳🇱 45.148.10.141

🇨🇳 223.71.254.162

🇵🇰 202.63.209.154

🇺🇸 173.247.244.188