JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.159.245.164

52.159.245.164 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 86%: ?

86%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.159.245.164

Whois 52.159.245.164

IP Abuse Reports for 52.159.245.164:

This IP address has been reported a total of 21 times from 20 distinct sources. 52.159.245.164 was first reported on August 15th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2026-06-03 07:29:03 (3 days ago)	Attack detected by Fortinet - web_server: HTPasswd.Access - 2026-06-02 08:15:44 - Source Port 50130	Port Scan Hacking
🇮🇪 AutosOnShow	2026-06-02 14:02:05 (4 days ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-06-02 14:01:39.271 \|	Web App Attack
🇺🇸 RAP	2026-06-02 13:58:03 (4 days ago)	2026-06-02 13:58:03 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-02 13:36:49 (4 days ago)	(caddyscan) Scanner path probe from 52.159.245.164 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 52.159.245.164 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 216.128.134.2 200 2627 52.159.245.164 - - [02/Jun/2026:13:36:36 +0000] "GET /.git/HEAD HTTP/1.1" 216.128.134.2 200 2627 52.159.245.164 - - [02/Jun/2026:13:36:37 +0000] "GET /.git/config HTTP/1.1" 216.128.134.2 200 2627 52.159.245.164 - - [02/Jun/2026:13:36:40 +0000] "GET /.env HTTP/1.1" 216.128.134.2 200 2627 52.159.245.164 - - [02/Jun/2026:13:36:42 +0000] "GET /.env.backup HTTP/1.1" 216.128.134.2 200 2627 52.159.245.164 - - [02/Jun/2026:13:36:44 +0000] "GET /.env.save HTTP/1.1" show less	Port Scan
Anonymous	2026-06-02 13:33:33 (4 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 dynamix	2026-06-02 13:22:00 (4 days ago)	Multiple WAF Violations	Web App Attack
🇺🇸 MPL	2026-06-02 12:56:23 (4 days ago)	tcp port scan (8 or more attempts)	Port Scan
🇹🇷 SeczarSecureOps	2026-06-02 12:26:07 (4 days ago)	Seczar SecureOps — Port Scan Detection (6 events) — quarantined 43200m on fgdcapi	Port Scan
🇦🇺 2000cn.com.au	2026-06-02 11:24:36 (4 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇬🇧 D3monite	2026-06-02 11:13:37 (4 days ago)	Attempted Brute Force (whostmgrd)	Brute-Force
🇺🇸 ipblock.com	2026-06-02 10:00:00 (4 days ago)	IPBlock protected site ID [1365-l]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇧🇷 SOCBR	2026-06-02 09:21:16 (4 days ago)	IPS: Sensitive Configuration File Disclosure.	Hacking
🇩🇪 dbmwebdesign	2026-06-02 08:50:28 (4 days ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇹🇼 kk_it_man	2026-06-02 08:43:02 (4 days ago)	ET WEB_SERVER WEB-PHP phpinfo access GPL WEB_SERVER .htpasswd access	Port Scan
🇬🇧 PeravixGroup	2026-06-02 08:22:25 (4 days ago)	Honeypot detection: Web admin panel / CMS brute-force probe on port 8443. Severity: HIGH. Aaran.clou ... show more Honeypot detection: Web admin panel / CMS brute-force probe on port 8443. Severity: HIGH. Aaran.cloud show less	Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.246.43.39

🇯🇵 153.211.168.116

🇫🇮 147.185.133.196

🇳🇱 80.82.77.139

🇸🇬 45.82.78.103

🇬🇧 45.82.76.115

🇺🇸 45.55.153.86

🇺🇸 20.221.69.50

🇨🇳 220.189.196.134

🇬🇧 213.166.84.57

🇺🇸 207.90.244.17

🇳🇱 195.211.191.112

🇧🇴 190.129.122.12

🇲🇽 186.96.145.241

🇬🇧 185.247.137.118

🇮🇳 172.217.34.220

🇭🇰 165.154.92.172

🇬🇧 35.203.211.217

🇧🇷 170.0.74.225

🇫🇷 163.172.27.20