JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.138.0.210

52.138.0.210 was found in our database!

This IP was reported 249 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.138.0.210

Whois 52.138.0.210

IP Abuse Reports for 52.138.0.210:

This IP address has been reported a total of 249 times from 164 distinct sources. 52.138.0.210 was first reported on May 6th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 sc user	2026-05-13 11:52:05 (3 weeks ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇩🇪 ghostwarriors	2026-05-12 10:21:18 (3 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇬🇧 sc user	2026-05-12 04:42:58 (3 weeks ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇬🇧 thetomtaylor.co.uk	2026-05-11 22:09:02 (3 weeks ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01,mx03]	Bad Web Bot Web App Attack
🇬🇧 sc user	2026-05-11 03:15:41 (3 weeks ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇧🇷 Peregrine	2026-05-11 03:14:19 (3 weeks ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:53 -0300] "GET /wk/index.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇸🇬 fazar	2026-05-09 16:00:16 (4 weeks ago)	wp-login-scan: 3 attempts from 52.138.0.210 on node: sgp01	Exploited Host Web App Attack
🇧🇷 Peregrine	2026-05-09 03:14:27 (4 weeks ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:53 -0300] "GET /wk/index.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇬🇧 sc user	2026-05-08 17:30:42 (4 weeks ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇩🇪 Ba-Yu	2026-05-08 16:18:50 (4 weeks ago)	WordPress hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 openstrike.co.uk	2026-05-08 05:13:26 (4 weeks ago)	197 attacks on PHP URLs: GET /wp-includes/js/crop/cropper.php HTTP/1.1	Web App Attack
🇧🇷 Peregrine	2026-05-08 03:12:12 (4 weeks ago)	Fail2Ban ct101 Jail: tomcat-404 \| Evidence: 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:53 -0 ... show more Fail2Ban ct101 Jail: tomcat-404 \| Evidence: 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:53 -0300] "GET /function/function.php HTTP/1.1" 404 18193 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:53 -0300] "GET /rip.php HTTP/1.1" 404 18193 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:54 -0300] "GET /admin.php HTTP/1.1" 404 18193 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:54 -0300] "GET /wp-content/uploads/index.php HTTP/1.1" 404 18193 52.138.0.210 172.71.120.145 - - [07/May/2026:13:19:54 -0300] "GET /cache.php HTTP/1.1" 404 18193 show less	Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-07 22:37:17 (4 weeks ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-07 22:00:06 (4 weeks ago)	Auto-ban: 12 malicious requests on 2026-05-06 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 12 malicious requests on 2026-05-06 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
Anonymous	2026-05-07 19:04:27 (1 month ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: CA, Attack patterns: WordPress scanning show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 249 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 192.36.109.82

🇺🇸 172.203.234.251

🇺🇸 161.123.218.106

🇳🇬 152.32.140.39

🇨🇳 115.190.83.184

🇮🇩 103.171.85.192

🇸🇪 46.59.90.49

🇭🇰 45.10.175.77

🇵🇱 213.92.220.103

🇺🇸 206.162.244.24

🇦🇪 198.38.94.14

🇸🇪 192.36.109.125

🇸🇪 192.36.109.118

🇸🇬 178.128.84.81

🇫🇮 178.20.210.151

🇵🇪 161.132.37.31

🇺🇸 71.6.237.246

🇮🇳 61.95.199.54

🇸🇪 192.36.109.116

🇭🇰 150.5.169.138