AbuseIPDB » 52.159.227.36

52.159.227.36 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 36%: ?

36%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 52.159.227.36

Whois 52.159.227.36

IP Abuse Reports for 52.159.227.36:

This IP address has been reported a total of 121 times from 9 distinct sources. 52.159.227.36 was first reported on April 3rd 2025, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
hermawan	2025-05-09 15:09:26 (2 months ago)	[Fri May 09 21:42:05.314051 2025] [security2:error] [pid 46632:tid 140586189633216] [client 52.159.2 ... show more[Fri May 09 21:42:05.314051 2025] [security2:error] [pid 46632:tid 140586189633216] [client 52.159.227.36:46292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561745-prakiraan-bulanan-curah-hujan-bulan-april-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561745-prakiraan-bulanan-curah-hujan-bulan-apr ... show less	Hacking Web App Attack
hermawan	2025-05-09 11:56:48 (2 months ago)	[Fri May 09 18:11:02.291878 2025] [security2:error] [pid 62401:tid 139843275245248] [client 52.159.2 ... show more[Fri May 09 18:11:02.291878 2025] [security2:error] [pid 62401:tid 139843275245248] [client 52.159.227.36:20742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-sifat-hujan-bulanan/3-bulan-ke-depan/555561743-prakiraan-bulanan-sifat-hujan-bulan-mei-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-sifat-hujan-bulanan/3-bulan-ke-depan/555561743-prakiraan-bulanan-sifat-hujan-bulan-mei-t ... show less	Hacking Web App Attack
Anonymous	2025-05-09 10:00:32 (2 months ago)	Action: Block, Reason: DDOS attack detected	DDoS Attack
MAGIC	2025-05-09 06:13:59 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
hermawan	2025-05-09 03:57:44 (2 months ago)	[Fri May 09 10:50:43.050516 2025] [security2:error] [pid 602104:tid 139686598887104] [client 52.159. ... show more[Fri May 09 10:50:43.050516 2025] [security2:error] [pid 602104:tid 139686598887104] [client 52.159.227.36:23198] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-all-categories/509-meteorologi/analisis-meteorologi/intensitas-curah-hujan-harian-di-wilayah-indonesia HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-all-categories/509-meteorologi/analisis-meteorologi/intensitas-curah-hujan-harian-di-wilayah-indonesia"] [unique_id "aB17k4Cpj1ZiDVc7YjZZVgAAlyw"] [staklim-malang.info] [staklim-malang.info] ... show less	Hacking Web App Attack
construct.net	2025-05-09 02:21:24 (2 months ago)	Triggered rate limiter [PRD-VM-WEB1a]	Bad Web Bot
hermawan	2025-05-08 23:29:45 (2 months ago)	[Fri May 09 06:28:59.890770 2025] [security2:error] [pid 443426:tid 140052910286528] [client 52.159. ... show more[Fri May 09 06:28:59.890770 2025] [security2:error] [pid 443426:tid 140052910286528] [client 52.159.227.36:38221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.14.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "206"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /b/bulanansurabaya.pdf HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/bulanansurabaya.pdf"] [unique_id "aB0-O4vCmd13t1cBRKzKwwAAEwI"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[443429] [xFvaNjBE4AE] [aB0-O4vCmd13t1cBRKzKwwAAEwI] keep_alive=[1] [2025-05-09 06:28:59.890775] [R:aB0-O4vCmd13t1cBRKzKwwAAEwI] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1 ... show less	Hacking Web App Attack
hermawan	2025-05-02 05:56:52 (2 months ago)	[Fri May 02 12:33:56.325385 2025] [security2:error] [pid 234477:tid 139828616156864] [client 52.159. ... show more[Fri May 02 12:33:56.325385 2025] [security2:error] [pid 234477:tid 139828616156864] [client 52.159.227.36:56061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-sifat-hujan-bulanan/3-bulan-ke-depan/555561743-prakiraan-bulanan-sifat-hujan-bulan-mei-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-sifat-hujan-bulanan/3-bulan-ke-depan/555561743-prakiraan-bulanan-sifat-hujan-bulan ... show less	Hacking Web App Attack
hermawan	2025-05-02 00:17:52 (2 months ago)	[Fri May 02 07:16:50.829711 2025] [security2:error] [pid 91988:tid 139772116842176] [client 52.159.2 ... show more[Fri May 02 07:16:50.829711 2025] [security2:error] [pid 91988:tid 139772116842176] [client 52.159.227.36:17346] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-all-categories/113-meteorologi/prakiraan-meteorologi/555561508-prakiraan-harian-cuaca-wisata-di-jawa-timur-untuk-hari-ini-pada-pagi-siang-malam-dan-dini-hari-meliputi-gunung-lawu-gunung-kawi-kabupaten-malang-dan-gunung-raung HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-all-categories/113-meteorologi/prakiraan-meteorologi/555561508-prakira ... show less	Hacking Web App Attack
hermawan	2025-05-01 18:50:40 (2 months ago)	[Fri May 02 01:46:51.016533 2025] [security2:error] [pid 5051:tid 140554555815616] [client 52.159.22 ... show more[Fri May 02 01:46:51.016533 2025] [security2:error] [pid 5051:tid 140554555815616] [client 52.159.227.36:22310] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/profil/meteorologi/list-of-all-tags/prakiraan-bulanan-curah-hujan-di-propinsi-jawa-timur-tahun-2025 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/prakiraan-bulanan-curah-hujan-di-propinsi-jawa-timur-tahun-2025"] [unique_id "aBPBm2oVoI08I5p1HrefMgAADhE"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[5069] [oIbsdE8d3d8] [aBPBm2oVoI08I5p ... show less	Hacking Web App Attack
hermawan	2025-05-01 08:32:10 (2 months ago)	[Thu May 01 15:31:39.676535 2025] [security2:error] [pid 116674:tid 139729974580928] [client 52.159. ... show more[Thu May 01 15:31:39.676535 2025] [security2:error] [pid 116674:tid 139729974580928] [client 52.159.227.36:28031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "aBMxa4MaxbItbi9vZKJk9wAA1wI"] [staklim-malang.info] [staklim-malang.info] top=[116677] [OVrW3Faiw6M] [aBMxa4MaxbItbi9vZKJk9wAA1wI] keep_alive=[1] [2025-05-01 15:31:39.676538] [R:aBMxa4MaxbItbi9vZKJk9wAA1wI] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot' Host:'staklim-malang.info' A ... show less	Hacking Web App Attack
hermawan	2025-04-29 10:52:13 (2 months ago)	[Tue Apr 29 17:50:11.759713 2025] [security2:error] [pid 22562:tid 140066301097664] [client 52.159.2 ... show more[Tue Apr 29 17:50:11.759713 2025] [security2:error] [pid 22562:tid 140066301097664] [client 52.159.227.36:7720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/informasi-iklim/artikel/126-artikel-perubahan-iklim HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/artikel/126-artikel-perubahan-iklim"] [unique_id "aBCu4wfvQamQAEaxic2LQQAA2gs"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[22574] [pNiXkPA0HzA] [aBCu4wfvQamQAEaxic2LQQAA2gs] keep_alive=[1] [2025-04-29 17:50:11.759720] [R:aBCu4wfvQamQAEaxic2LQQAA2gs] UA:'M ... show less	Hacking Web App Attack
hermawan	2025-04-29 09:33:45 (2 months ago)	[Tue Apr 29 16:23:17.061729 2025] [security2:error] [pid 547324:tid 139716483577536] [client 52.159. ... show more[Tue Apr 29 16:23:17.061729 2025] [security2:error] [pid 547324:tid 139716483577536] [client 52.159.227.36:51941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/buku/479-buku-edisi-setiap-1-bulan-sekali/555558927-e-buletin-prakiraan-sifat-dan-curah-hujan-di-kabupaten-lamongan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/buku/479-buku-edisi-setiap-1-bulan-sekali/555558927-e-buletin-prakiraan-sifat-dan-curah-hujan-di-kabupaten-lamongan"] [unique_id "aBCahbzO3QSEruqOJxcjCgAAwAc"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[54 ... show less	Hacking Web App Attack
hermawan	2025-04-29 02:09:59 (2 months ago)	[Tue Apr 29 09:09:58.048684 2025] [security2:error] [pid 278081:tid 139888977831616] [client 52.159. ... show more[Tue Apr 29 09:09:58.048684 2025] [security2:error] [pid 278081:tid 139888977831616] [client 52.159.227.36:28477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "204"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "aBA09qZeDrJL5BAIk9JZLwAAAyo"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[278126] [66obTFm/fG8] [aBA09qZeDrJL5BAIk9JZLwAAAyo] keep_alive=[1] [2025-04-29 09:09:58.048689] [R:aBA09qZeDrJL5BAIk9JZLwAAAyo] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot' Host:'staklim ... show less	Hacking Web App Attack
MAGIC	2025-04-29 00:07:10 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩