JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.141.35.48

52.141.35.48 was found in our database!

This IP was reported 1,755 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.141.35.48

Whois 52.141.35.48

IP Abuse Reports for 52.141.35.48:

This IP address has been reported a total of 1,755 times from 359 distinct sources. 52.141.35.48 was first reported on April 27th 2026, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-14 09:56:08 (3 weeks ago)	Aggressive web scan	Bad Web Bot Web App Attack
Anonymous	2026-05-14 09:51:04 (3 weeks ago)	(PERMBLOCK) 52.141.35.48 (KR/South Korea/-) has had more than 4 temp blocks in the last 86400 secs; ... show more (PERMBLOCK) 52.141.35.48 (KR/South Korea/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇺🇸 KitsuneTech	2026-05-14 09:43:36 (3 weeks ago)	52.141.35.48 - - [14/May/2026:04:43:35 -0500] "GET /wp-content/plugins/pwnd/as.php HTTP/1.1" 301 262 ... show more 52.141.35.48 - - [14/May/2026:04:43:35 -0500] "GET /wp-content/plugins/pwnd/as.php HTTP/1.1" 301 262 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇫🇷 dynamix	2026-05-14 09:43:00 (3 weeks ago)	Multiple WAF Violations	Web App Attack
🇳🇱 CryptoYakari	2026-05-14 09:27:21 (3 weeks ago)	[Thu May 14 12:27:17.115407 2026] [proxy_fcgi:error] [pid 1729423:tid 1729444] [client 52.141.35.48: ... show more [Thu May 14 12:27:17.115407 2026] [proxy_fcgi:error] [pid 1729423:tid 1729444] [client 52.141.35.48:0] AH01071: Got error 'Primary script unknown' [Thu May 14 12:27:17.672533 2026] [proxy_fcgi:error] [pid 1729423:tid 1729468] [client 52.141.35.48:0] AH01071: Got error 'Primary script unknown' [Thu May 14 12:27:17.930864 2026] [proxy_fcgi:error] [pid 1729423:tid 1729475] [client 52.141.35.48:0] AH01071: Got error 'Primary script unknown' ... show less	Web Spam Blog Spam Web App Attack Bad Web Bot
🇺🇸 CBJ	2026-05-14 09:26:00 (3 weeks ago)	fail2ban: apache-filepath-recon ...	Web App Attack
Anonymous	2026-05-14 09:21:00 (3 weeks ago)	FortiWeb WAF: 76 attacks detected. Threat Score: 26200. Types: Client Management(38), Block IP List( ... show more FortiWeb WAF: 76 attacks detected. Threat Score: 26200. Types: Client Management(38), Block IP List(38). Origin: Republic Of Korea. show less	Web App Attack
🇫🇮 Christopher Hughes	2026-05-14 09:19:43 (3 weeks ago)	[Thu May 14 10:19:41.531747 2026] [proxy_fcgi:error] [pid 3315684:tid 139774274827840] [client 52.14 ... show more [Thu May 14 10:19:41.531747 2026] [proxy_fcgi:error] [pid 3315684:tid 139774274827840] [client 52.141.35.48:10104] AH01071: Got error 'Primary script unknown' [Thu May 14 10:19:41.814665 2026] [proxy_fcgi:error] [pid 3315684:tid 139774241257024] [client 52.141.35.48:10104] AH01071: Got error 'Primary script unknown' [Thu May 14 10:19:42.380429 2026] [proxy_fcgi:error] [pid 3315684:tid 139774652302912] [client 52.141.35.48:10104] AH01071: Got error 'Primary script unknown' [Thu May 14 10:19:42.663502 2026] [proxy_fcgi:error] [pid 3315684:tid 139774518085184] [client 52.141.35.48:10104] AH01071: Got error 'Primary script unknown' [Thu May 14 10:19:42.957990 2026] [proxy_fcgi:error] [pid 3315684:tid 139774258042432] [client 52.141.35.48:10104] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇺🇸 antlac1	2026-05-14 09:17:39 (3 weeks ago)	crowdsecurity/http-wordpress-scan	Brute-Force Web App Attack
🇺🇸 mawan	2026-05-14 08:59:40 (3 weeks ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇩🇪 NewGastroline	2026-05-14 08:15:50 (3 weeks ago)	Malicious request blocked by CrowdSec on gastro-prod1.boreus.de	Bad Web Bot Web App Attack
🇩🇪 pscriptos	2026-05-14 08:06:27 (3 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇩🇪 botreporter	2026-05-14 07:55:36 (3 weeks ago)	CMS vulnerability/installation scanning	Brute-Force Web App Attack
🇺🇸 Player Unknown	2026-05-14 07:52:49 (3 weeks ago)	52.141.35.48 - - [14/May/2026:00:52:47 -0700] "GET /images/images/about.php HTTP/1.1" 404 47 "-" "Mo ... show more 52.141.35.48 - - [14/May/2026:00:52:47 -0700] "GET /images/images/about.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.141.35.48 - - [14/May/2026:00:52:48 -0700] "GET /header.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.141.35.48 - - [14/May/2026:00:52:48 -0700] "GET /aaa.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.141.35.48 - - [14/May/2026:00:52:48 -0700] "GET /admin/function.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.141.35.48 - - [14/May/2026:00:52:48 -0700] "GET /Ov-Simple1.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Saf ... show less	Brute-Force SSH
🇵🇱 strefapi_com	2026-05-14 07:00:58 (3 weeks ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack

Showing 106 to 120 of 1755 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 193.124.20.234

🇭🇰 101.36.127.86

🇺🇸 74.82.47.43

🇳🇱 45.148.10.152

🇮🇩 27.50.25.190

🇮🇳 103.69.145.254

🇱🇹 85.206.68.80

🇫🇷 62.210.246.122

🇺🇸 216.25.89.73

🇩🇪 213.209.159.56

🇺🇸 207.90.244.3

🇮🇩 202.59.200.253

🇳🇱 176.65.139.130

🇮🇳 106.76.163.89

🇫🇷 91.231.89.68

🇺🇸 64.95.9.230

🇺🇸 64.62.197.149

🇺🇸 64.62.156.196

🇻🇳 14.248.98.132

🇨🇳 218.0.56.30