JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.163.228.19

52.163.228.19 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.163.228.19

Whois 52.163.228.19

IP Abuse Reports for 52.163.228.19:

This IP address has been reported a total of 51 times from 39 distinct sources. 52.163.228.19 was first reported on June 7th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 GEDAL	2024-07-06 09:44:35 (1 year ago)	52.163.228.19 - - [16/Jun/2024:11:44:32 +0200] "GET /wp-includes/fonts/wp-login.php HTTP/1.1" 302 5 ... show more 52.163.228.19 - - [16/Jun/2024:11:44:32 +0200] "GET /wp-includes/fonts/wp-login.php HTTP/1.1" 302 5 "-" "-" show less	Brute-Force SSH
🇳🇱 Linuxmalwarehuntingnl	2024-06-30 09:44:37 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-06-30 09:40:59 (1 year ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2024-06-22 17:53:39 (2 years ago)	$f2bV_matches	Brute-Force Web App Attack
Anonymous	2024-06-22 12:41:23 (2 years ago)	(mod_security) mod_security triggered on hostname [redacted] 52.163.228.19 (SG/Singapore/-)	SQL Injection
🇩🇪 NetNinja	2024-06-22 08:45:00 (2 years ago)	52.163.228.19 - - [22/Jun/2024:10:42:29 +0200] "GET /inputs.php HTTP/2.0" 404 4327 "-" "-" 52.163.2 ... show more 52.163.228.19 - - [22/Jun/2024:10:42:29 +0200] "GET /inputs.php HTTP/2.0" 404 4327 "-" "-" 52.163.228.19 - - [22/Jun/2024:10:42:29 +0200] "GET /wp-includes/qw.php HTTP/2.0" 301 162 "-" "-" 52.163.228.19 - - [22/Jun/2024:10:42:30 +0200] "GET /wp-includes/qw.php HTTP/2.0" 404 4327 "-" "-" show less	Hacking Web App Attack
🇺🇸 whitehat AbuseIPDB Official	2024-06-22 06:12:45 (2 years ago)	Sniffing for wp-login	Bad Web Bot Web App Attack
🇬🇧 findlab	2024-06-21 19:10:02 (2 years ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇧🇷 hostseries	2024-06-21 13:24:41 (2 years ago)	Trigger: LF_MODSEC	Brute-Force
🇩🇪 DAILYKANBAN.COM	2024-06-21 11:54:59 (2 years ago)	(mod_security) mod_security (id:1000001) triggered by 52.163.228.19 (SG/Singapore/-): 2 in the last ... show more (mod_security) mod_security (id:1000001) triggered by 52.163.228.19 (SG/Singapore/-): 2 in the last 600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Fri Jun 21 11:54:27.485918 2024] [security2:error] [pid 3762013:tid 23021613975296] [client 52.163.228.19:0] [client 52.163.228.19] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/cloud.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "9"] [id "1000001"] [msg "Restricted File Probe"] [data "Matched Data: /.well-known/acme-challenge/cloud.php found within REQUEST_URI"] [severity "CRITICAL"] [tag "paranoia-level/2"] [hostname "innerindustry.com"] [uri "/.well-known/acme-challenge/cloud.php"] [unique_id "ZnVp85Kps73rF05sMJYE4QAAAM0"] [Fri Jun 21 11:54:56.869762 2024] [security2:error] [pid 3761988:tid 23021966538496] [client 52.163.228.19:0] [client 52.163.228.19] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/xmrlpc.php" at REQUEST_URI. [file "/etc/apache2/con show less	Web App Attack
Anonymous	2024-06-21 11:46:40 (2 years ago)	Fail2Ban apache-noscript	Bad Web Bot
🇬🇧 Mendip_Defender	2024-06-21 11:38:35 (2 years ago)	52.163.228.19 - - [21/Jun/2024:12:38:35 +0100] "GET /wp-includes/Requests/about.php HTTP/1.0" 404 12 ... show more 52.163.228.19 - - [21/Jun/2024:12:38:35 +0100] "GET /wp-includes/Requests/about.php HTTP/1.0" 404 1208 "-" "-" 52.163.228.19 - - [21/Jun/2024:12:38:36 +0100] "GET /wp-includes/style-engine/about.php HTTP/1.0" 404 1208 "-" "-" ... show less	Hacking Web App Attack
🇨🇦 Mediashaker	2024-06-21 10:39:54 (2 years ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 52.163.228.19 (SG/Singap ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 52.163.228.19 (SG/Singapore/-) show less	Port Scan
🇸🇬 Cloudkul Cloudkul	2024-06-21 08:50:06 (2 years ago)	Multiple unauthorized attempts to access web resources	Brute-Force Web App Attack
🇫🇷 pm33	2024-06-18 23:06:46 (2 years ago)	Unauthorized connections HTTP 403	Web App Attack

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.184.5.149

🇧🇷 181.233.172.130

🇧🇷 170.233.51.36

🇺🇸 139.144.235.132

🇵🇱 87.251.64.157

🇺🇸 54.196.245.105

🇺🇸 54.89.207.112

🇯🇵 8.221.136.6

🇩🇪 217.154.144.111

🇩🇪 167.94.146.54

🇪🇸 157.88.38.35

🇧🇷 152.32.200.22

🇵🇰 144.79.57.249

🇧🇷 131.100.242.102

🇨🇳 111.26.95.254

🇱🇧 109.233.21.109

🇺🇸 104.236.118.31

🇬🇧 34.153.153.220

🇸🇦 31.166.130.153

🇺🇸 23.92.25.114