AbuseIPDB » 52.159.227.36

52.159.227.36 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 36%: ?

36%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 52.159.227.36

Whois 52.159.227.36

IP Abuse Reports for 52.159.227.36:

This IP address has been reported a total of 121 times from 9 distinct sources. 52.159.227.36 was first reported on April 3rd 2025, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
hermawan	2025-05-20 15:40:34 (1 month ago)	[Tue May 20 21:43:11.774257 2025] [security2:error] [pid 60688:tid 140312421799616] [client 52.159.2 ... show more[Tue May 20 21:43:11.774257 2025] [security2:error] [pid 60688:tid 140312421799616] [client 52.159.227.36:35344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-of-all-tags/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-provinsi-jawa-timur-tahun-2020 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-provinsi-jawa-timur-tahun-2020"] [unique_id "aCyU_18pKfl8wTrYKqlkNQAATgw"] [staklim-jatim.bmkg.go.id] [staklim-jatim. ... show less	Hacking Web App Attack
hermawan	2025-05-20 11:05:52 (2 months ago)	[Tue May 20 12:56:35.169734 2025] [security2:error] [pid 327918:tid 139677148247744] [client 52.159. ... show more[Tue May 20 12:56:35.169734 2025] [security2:error] [pid 327918:tid 139677148247744] [client 52.159.227.36:36326] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "aCwZk_NV_FdUoakneZu4pAAAHiQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[327956] [T9U66TJ1m4M] [aCwZk_NV_FdUoakneZu4pAAAHiQ] keep_alive=[1] [2025-05-20 12:56:35.169737] [R:aCwZk_NV_FdUoakneZu4pAAAHiQ] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.co ... show less	Hacking Web App Attack
hermawan	2025-05-19 15:56:20 (2 months ago)	[Mon May 19 22:54:08.495540 2025] [security2:error] [pid 72034:tid 139680951531200] [client 52.159.2 ... show more[Mon May 19 22:54:08.495540 2025] [security2:error] [pid 72034:tid 139680951531200] [client 52.159.227.36:31589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-of-all-tags/klimatologi?start=6500 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/klimatologi"] [unique_id "aCtUID5pvRg_wk9FHmtx3QAASAg"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[72043] [Wd5pJIfJbHk] [aCtUID5pvRg_wk9FHmtx3QAASAg] keep_alive=[1] [2025-05-19 22:54:08.495548] [R:aCtUID5pvRg_wk9FHmtx3QAASAg] U ... show less	Hacking Web App Attack
hermawan	2025-05-19 02:45:04 (2 months ago)	[Mon May 19 08:59:36.971139 2025] [security2:error] [pid 593665:tid 140017664517824] [client 52.159. ... show more[Mon May 19 08:59:36.971139 2025] [security2:error] [pid 593665:tid 140017664517824] [client 52.159.227.36:56460] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/analisis-iklim/analisis-bulanan/analisis-tingkat-ketersediaan-air-tanah/555561738-analisis-bulanan-tingkat-ketersediaan-air-tanah-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-bulanan/analisis-tingkat-ketersediaan-air-tanah/555561738-analisis-bulanan-tingkat-ketersediaan-air-tanah-bulan-januari-tahun-2025-di-p ... show less	Hacking Web App Attack
hermawan	2025-05-17 05:19:07 (2 months ago)	[Sat May 17 12:16:48.834132 2025] [security2:error] [pid 108753:tid 140055901361856] [client 52.159. ... show more[Sat May 17 12:16:48.834132 2025] [security2:error] [pid 108753:tid 140055901361856] [client 52.159.227.36:49943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-bulanan/4293-prakiraan-curah-hujan-bulanan/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-curah-hujan-di-propinsi-jawa-timur-tahun-2025/555561746-prakiraan-bulanan-curah-hujan-bulan-mei-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-bulanan/4293-prakiraan-curah-huj ... show less	Hacking Web App Attack
MAGIC	2025-05-17 04:12:09 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
hermawan	2025-05-16 01:51:17 (2 months ago)	[Fri May 16 08:50:46.263026 2025] [security2:error] [pid 130497:tid 140683027371712] [client 52.159. ... show more[Fri May 16 08:50:46.263026 2025] [security2:error] [pid 130497:tid 140683027371712] [client 52.159.227.36:20390] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "aCaZ9hH0hJw05wDMARWOBwAAWgo"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[130508] [O7bCAq8nvI4] [aCaZ9hH0hJw05wDMARWOBwAAWgo] keep_alive=[1] [2025-05-16 08:50:46.263032] [R:aCaZ9hH0hJw05wDMARWOBwAAWgo] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.co ... show less	Hacking Web App Attack
hermawan	2025-05-14 03:49:38 (2 months ago)	[Wed May 14 09:00:11.392730 2025] [security2:error] [pid 432327:tid 139992747538112] [client 52.159. ... show more[Wed May 14 09:00:11.392730 2025] [security2:error] [pid 432327:tid 139992747538112] [client 52.159.227.36:44710] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-all-categories/4289-klimatologi/prakiraan-klimatologi/peringatan-dini/peringatan-dini-cuaca-dan-iklim-provinsi-jawa-timur/peringatan-dini-cuaca-dan-iklim-provinsi-jawa-timur-tahun-2025/555561672-peringatan-dini-cuaca-dan-iklim-provinsi-jawa-timur-periode-dasarian-ii-januari-2025-tanggal-1..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-c ... show less	Hacking Web App Attack
Anonymous	2025-05-14 00:12:00 (2 months ago)	"Excessive,undesired traffic against library service"	Bad Web Bot
hermawan	2025-05-13 13:33:25 (2 months ago)	[Tue May 13 19:29:39.853752 2025] [security2:error] [pid 68217:tid 139996610422464] [client 52.159.2 ... show more[Tue May 13 19:29:39.853752 2025] [security2:error] [pid 68217:tid 139996610422464] [client 52.159.227.36:38257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /b/bulananbanyuwangi.pdf HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/bulananbanyuwangi.pdf"] [unique_id "aCM7M0Wx1A0-s2VrwGkFQAAB5x0"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[68247] [K7MYlpsETxA] [aCM7M0Wx1A0-s2VrwGkFQAAB5x0] keep_alive=[1] [2025-05-13 19:29:39.853757] [R:aCM7M0Wx1A0-s2VrwGkFQAAB5x0] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User ... show less	Hacking Web App Attack
hermawan	2025-05-13 07:37:48 (2 months ago)	[Tue May 13 14:35:53.320729 2025] [security2:error] [pid 166576:tid 140044452865728] [client 52.159. ... show more[Tue May 13 14:35:53.320729 2025] [security2:error] [pid 166576:tid 140044452865728] [client 52.159.227.36:1428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-of-all-tags/prediksi-6-bulanan-sifat-hujan-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/prediksi-6-bulanan-sifat-hujan-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur"] [unique_id "aCL2WfP3n_VQcDpJqzkUQQABACM"] [staklim-jatim.bmkg.go.id] [staklim-jatim. ... show less	Hacking Web App Attack
hermawan	2025-05-12 11:17:20 (2 months ago)	[Mon May 12 18:00:29.791776 2025] [security2:error] [pid 8016:tid 140134829594304] [client 52.159.22 ... show more[Mon May 12 18:00:29.791776 2025] [security2:error] [pid 8016:tid 140134829594304] [client 52.159.227.36:33409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-of-all-tags/normal-awal-musim-kemarau-propinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-of-all-tags/normal-awal-musim-kemarau-propinsi-jawa-timur"] [unique_id "aCHUzRDSD9QmLplnL-lyLAAAxy0"] [staklim-malang.info] [staklim-malang.info] top=[8062] [VBFeOda5LjQ] [aCHUzRDSD9QmLplnL-lyLAAAxy0] keep_alive=[1] [2025-05-12 18:00:29.7 ... show less	Hacking Web App Attack
hermawan	2025-05-12 02:17:22 (2 months ago)	[Mon May 12 09:09:39.187674 2025] [security2:error] [pid 1614327:tid 139771510658752] [client 52.159 ... show more[Mon May 12 09:09:39.187674 2025] [security2:error] [pid 1614327:tid 139771510658752] [client 52.159.227.36:39256] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-sifat-hujan-bulanan/3-bulan-ke-depan/555561743-prakiraan-bulanan-sifat-hujan-bulan-mei-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-sifat-hujan-bulanan/3-bulan-ke-depan/555561743-prakiraan-bulanan-sifat-hujan-bula ... show less	Hacking Web App Attack
MAGIC	2025-05-11 03:03:16 (2 months ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
hermawan	2025-05-10 14:00:51 (2 months ago)	[Sat May 10 20:01:26.109829 2025] [security2:error] [pid 547664:tid 140585681258176] [client 52.159. ... show more[Sat May 10 20:01:26.109829 2025] [security2:error] [pid 547664:tid 140585681258176] [client 52.159.227.36:12369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561702-prakiraan-bulanan-curah-hujan-bulan-april-tahun-2025-update-dari-analisis-bulan-desember-tahun-2024-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561702-prakiraan-bulanan-curah-hujan-bu ... show less	Hacking Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩