JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.138.38.186

52.138.38.186 was found in our database!

This IP was reported 267 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.138.38.186

Whois 52.138.38.186

IP Abuse Reports for 52.138.38.186:

This IP address has been reported a total of 267 times from 233 distinct sources. 52.138.38.186 was first reported on June 11th 2026, and the most recent report was 4 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mw	2026-06-12 00:01:34 (4 minutes ago)	GET /wp-admin/css/bolt.php HTTP/1.1	Web App Attack
Anonymous	2026-06-11 23:54:08 (11 minutes ago)	Portscan: TCP/80 (7x)	Port Scan
🇧🇬 pa4080	2026-06-11 23:47:53 (17 minutes ago)	Detected by ModSecurity. Request URI: /wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇱🇹 NotACaptcha	2026-06-11 23:43:41 (22 minutes ago)	webserver:80 [12/Jun/2026] "GET /this_is_a_new_hello_world.php HTTP/1.1" 302 453 webserver:80 [12/J ... show more webserver:80 [12/Jun/2026] "GET /this_is_a_new_hello_world.php HTTP/1.1" 302 453 webserver:80 [12/Jun/2026] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 302 491 webserver:443 [12/Jun/2026] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 408 webserver:443 [12/Jun/2026] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 4182 show less	Web App Attack
🇨🇦 TechnoSolutions CL	2026-06-11 23:42:59 (22 minutes ago)	52.138.38.186 - - [11/Jun/2026:23:42:37 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 52.138.38.186 - - [11/Jun/2026:23:42:37 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 405 150 "-" "-" 52.138.38.186 - - [11/Jun/2026:23:42:58 +0000] "GET /wp-content/radio.php HTTP/1.1" 405 150 "-" "-" ... show less	Hacking Brute-Force Web App Attack
🇦🇹 vikal	2026-06-11 23:38:02 (27 minutes ago)	52.138.38.186 - - [12/Jun/2026:01:38:02 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 52.138.38.186 - - [12/Jun/2026:01:38:02 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 162 "-" "-" ... show less	Brute-Force SSH
🇺🇸 entangled_mongoose	2026-06-11 23:37:41 (28 minutes ago)	Probed /wp-content/plugins/hellopress/wp_filemanager.php.	Web App Attack
Anonymous	2026-06-11 23:34:01 (31 minutes ago)	52.138.38.186 - - [11/Jun/2026:23:34:00 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 52.138.38.186 - - [11/Jun/2026:23:34:00 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 162 "-" "-" 52.138.38.186 - - [11/Jun/2026:23:34:00 +0000] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 162 "-" "-" ... show less	Web App Attack
🇩🇪 itsolon	2026-06-11 23:31:23 (34 minutes ago)	[12/Jun/2026:01:31:23 +0200] 178122068343.415323 52.138.38.186 34630 217.154.7.177 80 [12/Jun/2026:0 ... show more [12/Jun/2026:01:31:23 +0200] 178122068343.415323 52.138.38.186 34630 217.154.7.177 80 [12/Jun/2026:01:31:23 +0200] 178122068397.946743 52.138.38.186 34630 217.154.7.177 80 [12/Jun/2026:01:31:23 +0200] 178122068347.222122 52.138.38.186 34630 217.154.7.177 80 [12/Jun/2026:01:31:23 +0200] 178122068395.744885 52.138.38.186 34630 217.154.7.177 80 [12/Jun/2026:01:31:23 +0200] 178122068328.099914 52.138.38.186 34630 217.154.7.177 80 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇺🇸 oralunal	2026-06-11 23:19:16 (46 minutes ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
Anonymous	2026-06-11 23:15:10 (50 minutes ago)	PSCSERV WPSCAN 52.138.38.186	Bad Web Bot Web App Attack
Anonymous	2026-06-11 23:10:18 (55 minutes ago)	52.138.38.186 - - [11/Jun/2026:18:10:10 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 52.138.38.186 - - [11/Jun/2026:18:10:10 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:10 -0500] "GET /this_is_a_new_hello_world.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:10 -0500] "GET /classgoto24.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:11 -0500] "GET /cu.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:11 -0500] "GET /4PJcpMFsD8B.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:11 -0500] "GET /206.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:11 -0500] "GET /flox.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:12 -0500] "GET /ng.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:12 -0500] "GET /100.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:12 -0500] "GET /ms-edit.php HTTP/1.0" 403 199 "-" "-" 52.138.38.186 - - [11/Jun/2026:18:10:13 -0500] " ... show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Jarda_H	2026-06-11 23:09:21 (56 minutes ago)	php-url-scan Attack Detected	Hacking Web App Attack
🇩🇪 MarkGGN	2026-06-11 22:56:03 (1 hour ago)	Web attack. 52.138.38.186 - - [12/Jun/2026:00:56:02 +0200] "GET /xxx.php HTTP/1.1" 404 27 "-" "-" 52 ... show more Web attack. 52.138.38.186 - - [12/Jun/2026:00:56:02 +0200] "GET /xxx.php HTTP/1.1" 404 27 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:56:02 +0200] "GET /wp-info.php HTTP/1.1" 404 27 "-" "-" show less	Web App Attack
🇩🇪 london2038.com	2026-06-11 22:42:07 (1 hour ago)	Too many failed requests 52.138.38.186 - - [12/Jun/2026:00:40:56 +0200] "GET /wp-content/plugins/hel ... show more Too many failed requests 52.138.38.186 - - [12/Jun/2026:00:40:56 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 40054 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:40:56 +0200] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:40:57 +0200] "GET /classgoto24.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:12 +0200] "GET /4PJcpMFsD8B.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:13 +0200] "GET /206.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:13 +0200] "GET /flox.php HTTP/1.1" 404 40040 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:29 +0200] "GET /100.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:29 +0200] "GET /error_log.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:30 +0200] "GET /ms-edit.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.186 - - [12/Jun/2026:00:41:30 +0200] "GET /xstelth.php HTTP/1.1" 404 40041 "-" "-" 52.138.38.1 ... show less	Web Spam Bad Web Bot

Showing 1 to 15 of 267 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.90.232.26

🇧🇷 179.222.237.48

🇺🇸 143.42.1.52

🇺🇸 66.132.172.190

🇨🇳 221.228.203.3

🇬🇧 195.96.139.29

🇳🇱 185.214.10.166

🇮🇹 172.253.228.154

🇺🇸 172.190.24.225

🇯🇵 157.7.200.152

🇺🇸 150.107.38.38

🇨🇳 111.58.168.169

🇮🇹 78.159.203.190

🇺🇸 66.132.195.17

🇳🇱 45.148.10.147

🇺🇸 23.94.155.96

🇷🇺 217.149.191.246

🇩🇪 213.209.159.225

🇵🇰 153.117.33.164

🇫🇮 147.185.133.143