JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.161.50.33

52.161.50.33 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 65%: ?

65%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Cheyenne, Wyoming

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.161.50.33

Whois 52.161.50.33

IP Abuse Reports for 52.161.50.33:

This IP address has been reported a total of 15 times from 12 distinct sources. 52.161.50.33 was first reported on October 3rd 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 NordhTech	2026-06-11 03:00:07 (1 day ago)	More than 3 malicious connection attempts, trying port(s) 9000/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 RAP	2026-06-11 01:41:34 (1 day ago)	2026-06-11 01:41:34 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇫🇷 Petre 21_ip	2026-06-11 00:39:10 (1 day ago)	2026-06-11T02:39:08.989665+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-11T02:39:08.989665+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=52.161.50.33 DST=155.133.26.57 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=37134 DF PROTO=TCP SPT=4104 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇷🇸 Scan	2026-06-11 00:15:57 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 sbocquet	2026-06-09 06:31:29 (3 days ago)	Port 443 scanned from 52.161.50.33:58313.	Port Scan
🇹🇷 Threat.live	2026-06-09 06:25:04 (3 days ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 ISPLtd	2026-06-09 06:07:53 (3 days ago)	Jun 9 03:07:30 52.161.50.33 TCP SPT=58629 DPT=2083 SYN Jun 9 03:07:30 52.161.50.33 TCP SPT=58625 D ... show more Jun 9 03:07:30 52.161.50.33 TCP SPT=58629 DPT=2083 SYN Jun 9 03:07:30 52.161.50.33 TCP SPT=58625 DPT=8080 SYN Jun 9 03:07:30 52.161.50.33 TCP SPT=58647 DPT=8443 SYN ... show less	Port Scan
🇺🇸 RAP	2026-06-09 05:08:27 (3 days ago)	2026-06-09 05:08:27 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇵🇱 Wepted	2026-06-09 04:58:38 (3 days ago)	Port scan detected by honeypot	Port Scan Hacking
🇳🇱 SysAdmin Dylan	2026-06-09 03:36:55 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 52.161.50.33 (US/United States/-): 10 in the la ... show more (mod_security) mod_security (id:210730) triggered by 52.161.50.33 (US/United States/-): 10 in the last 3600 secs show less	Brute-Force
🇷🇸 Scan	2026-06-09 03:02:14 (3 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇮🇹 abuseiphack	2026-06-09 02:49:26 (3 days ago)	Automatic report for brute force attack	Web App Attack
🇯🇵 demonsword	2026-05-02 18:15:14 (1 month ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: cloudflare.com:443 show less	Open Proxy Port Scan
🇺🇸 Rayulcifer	2026-03-28 20:21:39 (2 months ago)	52.161.50.33 - - [28/Mar/2026:15:21:37 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 488 "- ... show more 52.161.50.33 - - [28/Mar/2026:15:21:37 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 488 "-" "-" 52.161.50.33 - - [28/Mar/2026:15:21:38 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 502 488 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Rayulcifer	2025-10-03 14:19:39 (8 months ago)	52.161.50.33 - - [03/Oct/2025:09:19:38 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 502 584 "-" "-" 5 ... show more 52.161.50.33 - - [03/Oct/2025:09:19:38 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 502 584 "-" "-" 52.161.50.33 - - [03/Oct/2025:09:19:38 -0500] "CONNECT speed.cloudflare.com:443 HTTP/1.1" 502 591 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 34.76.103.162

🇬🇧 213.166.84.42

🇳🇱 188.90.121.13

🇲🇽 186.96.158.180

🇮🇳 182.71.135.110

🇫🇷 91.231.89.140

🇫🇷 85.217.140.5

🇩🇪 69.5.169.243

🇮🇳 49.207.40.162

🇳🇱 45.148.10.147

🇺🇸 34.197.70.90

🇬🇧 185.38.149.130

🇺🇸 172.253.195.214

🇳🇬 152.32.140.218

🇸🇬 129.212.237.224

🇨🇳 118.145.242.91

🇧🇬 79.124.49.174

🇩🇪 69.5.169.218

🇭🇰 47.239.55.224

🇳🇵 36.253.9.128