JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.165.233.180

52.165.233.180 was found in our database!

This IP was reported 237 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.165.233.180

Whois 52.165.233.180

IP Abuse Reports for 52.165.233.180:

This IP address has been reported a total of 237 times from 137 distinct sources. 52.165.233.180 was first reported on September 6th 2025, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 GEDAL	2025-09-25 08:56:57 (9 months ago)	Fail2ban webexploits @ <hostname> : 52.165.233.180 - - [07/Sep/2025:03:29:03 +0200] "GET /wp-include ... show more Fail2ban webexploits @ <hostname> : 52.165.233.180 - - [07/Sep/2025:03:29:03 +0200] "GET /wp-includes/fonts/wp-login.php HTTP/1.1" 302 5 "-" "-" show less	Brute-Force SSH
🇫🇷 GEDAL	2025-09-23 09:50:53 (9 months ago)	Fail2ban webexploits @ <hostname> : 52.165.233.180 - - [07/Sep/2025:03:29:03 +0200] "GET /wp-include ... show more Fail2ban webexploits @ <hostname> : 52.165.233.180 - - [07/Sep/2025:03:29:03 +0200] "GET /wp-includes/fonts/wp-login.php HTTP/1.1" 302 5 "-" "-" show less	Brute-Force SSH
🇸🇪 SkyDancer	2025-09-11 20:50:47 (9 months ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
🇹🇷 rtbh.com.tr	2025-09-11 20:08:45 (9 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇭🇺 DumaNet	2025-09-11 06:07:00 (9 months ago)	WordPress plugin attack attempts. Date: 2025 Sep 09. 06:06:16 Source IP: 52.165.233.180 Portion ... show more WordPress plugin attack attempts. Date: 2025 Sep 09. 06:06:16 Source IP: 52.165.233.180 Portion of the log(s): 52.165.233.180 - [09/Sep/2025:06:06:16 +0200] "GET /wp-includes/css/dist/ HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /wp-includes/ID3/autoload_classmap.php HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /templates/beez3/error.php HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /wp-includes/css/ HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /WSO.php HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /wp-includes/customize/ HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /wp-admin/network/ HTTP/1.1" 404 153 "-" "-" 52.165.233.180 - [09/Sep/2025:06:06:15 +0200] "GET /wp-admin/js/about.php HTTP show less	Hacking Web App Attack
🇹🇷 rtbh.com.tr	2025-09-10 20:08:43 (9 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2025-09-10 18:07:43 (9 months ago)	wordpress-trap	Web App Attack
🇳🇱 CryptoYakari	2025-09-10 18:04:35 (9 months ago)	52.165.233.180 - - [10/Sep/2025:21:04:31 +0300] "GET /wp-includes/ID3/index.php HTTP/1.0" 404 5351 " ... show more 52.165.233.180 - - [10/Sep/2025:21:04:31 +0300] "GET /wp-includes/ID3/index.php HTTP/1.0" 404 5351 "-" "-" 52.165.233.180 - - [10/Sep/2025:21:04:31 +0300] "GET /wp-includes/fonts/ HTTP/1.0" 404 1876 "-" "-" 52.165.233.180 - - [10/Sep/2025:21:04:32 +0300] "GET /wp/wp-admin/includes/ HTTP/1.0" 404 1876 "-" "-" 52.165.233.180 - - [10/Sep/2025:21:04:32 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.0" 404 1876 "-" "-" 52.165.233.180 - - [10/Sep/2025:21:04:32 +0300] "GET /wp-admin/css/colors/modern/ HTTP/1.0" 404 1876 "-" "-" ... show less	Web Spam Blog Spam Bad Web Bot Web App Attack
🇺🇸 agenciahypelab.com.br	2025-09-10 13:30:44 (9 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇩🇪 Phenix Info	2025-09-10 13:08:48 (9 months ago)	SmallGuard.fr/Prestashop Empty User Agent	Web App Attack
🇺🇸 Epimetheus	2025-09-10 12:58:16 (9 months ago)	Unauthorized access attempts: From: 52.165.233.180 Method: HTTP GET URI Path: /wp-admin/css/co ... show more Unauthorized access attempts: From: 52.165.233.180 Method: HTTP GET URI Path: /wp-admin/css/colors/ocean/ UA: "" show less	Web App Attack
🇫🇮 as211431.net	2025-09-10 12:28:20 (9 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /admin.php UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-09-10 12:25:03 (9 months ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-09-10 11:50:00 (9 months ago)	Excessive crawling/scraping. Vulnerable file probing.	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2025-09-10 11:26:24 (9 months ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 15 of 237 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 141.11.88.108

🇺🇸 64.23.211.146

🇰🇷 203.142.160.143

🇧🇷 187.17.224.139

🇵🇱 179.60.149.117

🇲🇦 160.166.61.137

🇷🇺 154.83.196.237

🇧🇩 121.200.221.126

🇬🇧 85.203.36.195

🇺🇸 64.23.210.106

🇺🇸 64.23.209.187

🇺🇸 64.23.209.112

🇹🇭 1.46.18.23

🇹🇼 202.39.153.245

🇳🇱 195.178.110.228

🇧🇷 177.92.247.136

🇨🇳 120.48.11.36

🇻🇳 103.173.154.45

🇺🇸 64.23.191.26

🇸🇬 2404:6800:4003:c1e::128