JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.2.52.208

20.2.52.208 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 70%: ?

70%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.2.52.208

Whois 20.2.52.208

IP Abuse Reports for 20.2.52.208:

This IP address has been reported a total of 41 times from 26 distinct sources. 20.2.52.208 was first reported on March 16th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-07 02:25:32 (2 hours ago)	Kingcopy(AI-IDS) Report: IP automatically blocked after obfuscated encoding. Vegas Security System	DDoS Attack Hacking Bad Web Bot
Anonymous	2026-06-05 10:12:06 (1 day ago)	Suspicious activity detected in web server access logs	Web App Attack
🇩🇪 Viveronese	2026-06-04 21:40:30 (2 days ago)	HTTP vulnerability scanning	Web App Attack
🇬🇧 consul.to	2026-06-04 07:27:43 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-02 17:16:11 (4 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Lino Project	2026-06-02 17:06:41 (4 days ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/http-probing	Hacking
🇮🇩 origrata	2026-06-02 16:17:00 (4 days ago)	[OGWAF] bad_reputation attack blocked \| severity: high \| GET /faq \| UA: Mozilla/5.0 (Windows NT 10.0 ... show more [OGWAF] bad_reputation attack blocked \| severity: high \| GET /faq \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Sa show less	Web App Attack
🇪🇸 pipeline.es	2026-06-02 13:07:32 (4 days ago)	Web scanning / probing for vulnerable paths \| URL: /otoiawase \| Evidence: rhin.es 20.2.52.208 - - [0 ... show more Web scanning / probing for vulnerable paths \| URL: /otoiawase \| Evidence: rhin.es 20.2.52.208 - - [02/Jun/2026:15:05:41 +0200] \"GET /otoiawase HTTP/1.1\" 404 207 \"-\" \"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36\" GEOIP_COUNTRY_CODE=HK \| ASN: MICROSOFT-CORP-MSN-AS-BLOCK \| Country: HK show less	Port Scan Web App Attack
🇧🇪 cmbplf	2026-05-30 17:00:21 (1 week ago)	10.374 requests in 1 hour (1mo1w5d)	Brute-Force Bad Web Bot
🇳🇱 CryptoYakari	2026-05-19 23:07:36 (2 weeks ago)	20.2.52.208 - - [20/May/2026:02:07:33 +0300] "GET /about HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Window ... show more 20.2.52.208 - - [20/May/2026:02:07:33 +0300] "GET /about HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [20/May/2026:02:07:33 +0300] "GET /team HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [20/May/2026:02:07:33 +0300] "GET /about-us HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [20/May/2026:02:07:33 +0300] "GET /company HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [20/May/2026:02:07:33 +0300] "GET /contact-us HTTP/1.0" 404 3185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇭🇺 bcsaba	2026-05-19 16:53:32 (2 weeks ago)	Multiple web server 400 error codes from same source ip. 20.2.52.208 - - [19/May/2026:18:53:23 +0200 ... show more Multiple web server 400 error codes from same source ip. 20.2.52.208 - - [19/May/2026:18:53:23 +0200] "GET /support/inquiry HTTP/1.1" 404 790 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack Brute-Force
🇩🇪 conseilgouz	2026-05-19 16:17:54 (2 weeks ago)	avw-(visforms) : try to access forms...	Hacking
🇩🇪 FeG Deutschland	2026-05-19 13:32:15 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack
🇺🇸 LSPCCU	2026-05-19 00:18:28 (2 weeks ago)	TSEC Honeypot Network report. Threat score: 61/100. Categories: DDoS Attack, Port Scan, Hacking, Bru ... show more TSEC Honeypot Network report. Threat score: 61/100. Categories: DDoS Attack, Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: Attacker IP 20. show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack SSH
🇺🇸 Lee Daniel	2026-05-11 17:09:37 (3 weeks ago)	20.2.52.208 - - [11/May/2026:13:09:34 -0400] "GET /contactus HTTP/1.0" 404 62508 "-" "Mozilla/5.0 (W ... show more 20.2.52.208 - - [11/May/2026:13:09:34 -0400] "GET /contactus HTTP/1.0" 404 62508 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [11/May/2026:13:09:34 -0400] "GET /contact_us HTTP/1.0" 404 62513 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [11/May/2026:13:09:35 -0400] "GET /inquiry HTTP/1.0" 404 62498 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [11/May/2026:13:09:36 -0400] "GET /support/contact HTTP/1.0" 404 62544 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 20.2.52.208 - - [11/May/2026:13:09:36 -0400] "GET /support/inquiry HTTP/1.0" 404 62544 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/53 ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 212.66.35.214

🇧🇪 198.235.24.161

🇦🇷 186.122.177.140

🇮🇶 185.158.22.150

🇮🇩 163.7.11.155

🇺🇸 151.240.54.73

🇹🇼 111.70.32.8

🇮🇳 82.25.107.159

🇮🇹 80.183.68.144

🇳🇱 5.255.110.118

🇨🇳 183.249.2.134

🇮🇳 182.95.230.150

🇵🇰 160.250.51.33

🇩🇪 37.114.61.43

🇧🇪 35.205.176.164

🇧🇪 35.205.18.114

🇨🇳 27.207.230.188

🇺🇸 20.106.32.192

🇨🇳 14.103.105.208

🇰🇷 220.86.28.189