JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.52.175.241

182.52.175.241 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 42%: ?

42%

ISP	TOT Public Company Limited
Usage Type	University/College/School
ASN	AS23974
Hostname(s)	node-yr5.pool-182-52.dynamic.nt-isp.net
Domain Name	totidc.net
Country	🇹🇭 Thailand
City	Rattanaburi, Surin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.52.175.241

Whois 182.52.175.241

IP Abuse Reports for 182.52.175.241:

This IP address has been reported a total of 133 times from 51 distinct sources. 182.52.175.241 was first reported on April 1st 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-26 03:25:01 (1 day ago)	Try to connect to Port_Scan_445_stealth	Port Scan
🇺🇸 ISPLtd	2026-06-24 02:35:18 (3 days ago)	Jun 23 23:21:18 182.52.175.241 TCP SPT=59477 DPT=1433 SYN Jun 23 23:21:21 182.52.175.241 TCP SPT=594 ... show more Jun 23 23:21:18 182.52.175.241 TCP SPT=59477 DPT=1433 SYN Jun 23 23:21:21 182.52.175.241 TCP SPT=59477 DPT=1433 SYN Jun 23 23:35:04 182.52.175.241 TCP SPT=58986 DPT=3306 ... show less	Port Scan
🇨🇭 Elysium Security	2026-06-16 06:28:55 (1 week ago)	Mass port scanning on a whole network	Port Scan
🇦🇹 urnilxfgbez	2026-06-10 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇹🇷 Domainhizmetleri.com	2026-06-10 07:06:24 (2 weeks ago)	[honeypot] - MS-SQL	Port Scan SQL Injection Brute-Force
Anonymous	2026-05-30 09:10:48 (3 weeks ago)	Portscan: TCP/3306 (38x), TCP/1433	Port Scan
🇦🇹 urnilxfgbez	2026-05-21 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 www.fransveldman.world	2026-05-21 10:04:58 (1 month ago)	2026-05-21 10:04:55 106225 [Warning] Access denied for user 'root'@'182.52.175.241' (using password: ... show more 2026-05-21 10:04:55 106225 [Warning] Access denied for user 'root'@'182.52.175.241' (using password: NO) 2026-05-21 10:04:56 106226 [Warning] Access denied for user 'root'@'182.52.175.241' (using password: YES) 2026-05-21 10:04:57 106227 [Warning] Access denied for user 'root'@'182.52.175.241' (using password: YES) 2026-05-21 10:04:57 106228 [Warning] Access denied for user 'root'@'182.52.175.241' (using password: YES) 2026-05-21 10:04:58 106229 [Warning] Access denied for user 'root'@'182.52.175.241' (using password: YES) ... show less	Web App Attack
🇳🇱 ByeByte API	2026-05-21 08:36:43 (1 month ago)	byebyte.space auth: TCP packet to port 3306 (MySQL) at 2026-05-21T08:36:43Z. Source port 56447. TCP ... show more byebyte.space auth: TCP packet to port 3306 (MySQL) at 2026-05-21T08:36:43Z. Source port 56447. TCP flags: SYN. Packet: 52B, TTL 115, window 8192, IP id 8610. Single packet, dropped at firewall. p0f: OS Windows 7 or 8 (exact match), 13 hops. show less	Port Scan
🇳🇱 ByeByte API	2026-05-21 08:36:43 (1 month ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 1433, 3306. Activity wind ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 1433, 3306. Activity window: 2026-05-21 07:20 UTC to 2026-05-21 08:36 UTC. show less	Port Scan
🇳🇱 ByeByte API	2026-05-21 07:20:04 (1 month ago)	byebyte.space auth: TCP packet to port 1433 (MSSQL) at 2026-05-21T07:20:04Z. Source port 50818. TCP ... show more byebyte.space auth: TCP packet to port 1433 (MSSQL) at 2026-05-21T07:20:04Z. Source port 50818. TCP flags: SYN. Packet: 52B, TTL 115, window 8192, IP id 3683. Single packet, dropped at firewall. p0f: OS Windows 7 or 8 (exact match), 13 hops. show less	Port Scan
🇬🇧 gbzret4d	2026-05-11 09:31:48 (1 month ago)	Honeypot [uk-production01]: SMB traffic on port 445	Hacking
🇩🇪 AS213449.net	2026-04-30 03:01:30 (1 month ago)	04/30/2026-05:01:27.037967 src=182.52.175.241 dst=89.144.63.1:3306 proto=6 msg=ET SCAN Suspicious in ... show more 04/30/2026-05:01:27.037967 src=182.52.175.241 dst=89.144.63.1:3306 proto=6 msg=ET SCAN Suspicious inbound to mySQL port 3306 show less	SQL Injection
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-24 03:18:19 (2 months ago)	Honeypot hit: MSSQL traffic (on 1433) without login credentials	Port Scan
🇩🇪 KPS	2026-04-10 18:57:37 (2 months ago)	PortscanN	Port Scan

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.148.142

🇺🇸 147.185.132.179

🇫🇷 91.231.89.173

🇺🇸 75.115.82.155

🇨🇦 37.19.212.78

🇵🇰 175.107.1.112

🇺🇸 172.234.199.8

🇺🇸 151.246.221.148

🇺🇸 96.253.126.100

🇫🇷 85.217.140.15

🇧🇬 79.124.49.226

🇩🇪 47.254.181.210

🇨🇿 37.221.254.200

🇧🇪 34.62.24.46

🇺🇸 23.95.217.16

🇺🇸 23.29.118.224

🇨🇳 8.138.147.213

🇧🇷 205.210.31.238

🇮🇳 182.19.35.57

🇨🇳 180.153.236.200