JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.179.168.68

52.179.168.68 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.179.168.68

Whois 52.179.168.68

IP Abuse Reports for 52.179.168.68:

This IP address has been reported a total of 46 times from 26 distinct sources. 52.179.168.68 was first reported on May 11th 2021, and the most recent report was 5 years ago.

Old Reports: The most recent abuse report for this IP address is from 5 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 oppidans.net	2021-06-01 15:16:27 (5 years ago)	52.179.168.68 - - [15/May/2021:05:11:53 +0000] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 500 305 " ... show more 52.179.168.68 - - [15/May/2021:05:11:53 +0000] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 500 305 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Port Scan Hacking Bad Web Bot
🇺🇸 tinyshield.me	2021-05-24 22:12:53 (5 years ago)	Provided by tinyshield.me - Simple Security For WordPress	Brute-Force Web App Attack
🇺🇸 Nightreaver	2021-05-24 21:53:36 (5 years ago)	52.179.168.68 - - [25/May/2021:03:53:35 0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 493 " ... show more 52.179.168.68 - - [25/May/2021:03:53:35 0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 52.179.168.68 - - [25/May/2021:03:53:35 0200] "GET /xmlrpc.php?rsd HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 52.179.168.68 - - [25/May/2021:03:53:35 0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 52.179.168.68 - - [25/May/2021:03:53:35 0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 52.179.168.68 - - [25/May/2021:03:53:35 0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Windows NT[...] show less	Bad Web Bot Web App Attack
🇮🇩 hermawan	2021-05-24 08:34:02 (5 years ago)	[Mon May 24 19:33:59.744968 2021] [:error] [pid 2211:tid 140042792015616] [client 52.179.168.68:5023 ... show more [Mon May 24 19:33:59.744968 2021] [:error] [pid 2211:tid 140042792015616] [client 52.179.168.68:50238] [client 52.179.168.68] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/coreruleset-3.3.1-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "756"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.3.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "YKudN@SMTX6hEnlMD-k4qAAAAPY"] ... show less	Hacking Web App Attack
🇿🇦 IrisFlower	2021-05-22 10:23:17 (5 years ago)	Unauthorized connection attempt detected from IP address 52.179.168.68 to port 80 [J]	Port Scan Hacking
🇩🇪 SCHAPPY	2021-05-21 14:27:31 (5 years ago)	Wordpress attack	Web App Attack
🇩🇪 ps-center	2021-05-21 11:42:16 (5 years ago)	C1,WP GET /wp-includes/wlwmanifest.xml	Web Spam Bad Web Bot Web App Attack
🇺🇸 FireballDWF	2021-05-21 04:45:15 (5 years ago)	404 NOT FOUND	Web App Attack
🇩🇪 barbarella	2021-05-21 01:06:52 (5 years ago)	Multiple (5) times attack on https port 443: Hacking attempt of Wordpress (GET /wp-includes/wlwmanif ... show more Multiple (5) times attack on https port 443: Hacking attempt of Wordpress (GET /wp-includes/wlwmanifest.xml) 21:06:52 Suspicous request. (GET /xmlrpc.php?rsd) 21:06:52 Hacking attempt of Wordpress (GET /blog/wp-includes/wlwmanifest.xml) 21:06:53 Hacking attempt of Wordpress (GET /web/wp-includes/wlwmanifest.xml) 21:06:53 Hacking attempt of Wordpress (GET /wordpress/wp-includes/wlwmanifest.xml) show less	Hacking Web App Attack
🇱🇹 NotACaptcha	2021-05-19 22:31:42 (5 years ago)	webserver:80 [20/May/2021] "GET /xmlrpc.php?rsd HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; ... show more webserver:80 [20/May/2021] "GET /xmlrpc.php?rsd HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" webserver:80 [20/May/2021] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" webserver:80 [20/May/2021] "GET / HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" webserver:80 [20/May/2021] "GET / HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" show less	Web App Attack
🇨🇭 unifr	2021-05-19 20:10:28 (5 years ago)	Unauthorized IMAP connection attempt	Brute-Force
🇬🇧 SecondEdge	2021-05-19 20:02:02 (5 years ago)	Web scan/attack: detected 21 distinct attempt(s) within a 12-hour window (Wordpress,XMLRPC)	Web App Attack
🇩🇪 barbarella	2021-05-19 18:36:12 (5 years ago)	Hacking attempt of Wordpress (GET /blog/wp-includes/wlwmanifest.xml)	Hacking Web App Attack
🇩🇪 barbarella	2021-05-19 18:36:12 (5 years ago)	Multiple (11) times attack on https port 443: Hacking attempt of Wordpress (GET /wp-includes/wlwmani ... show more Multiple (11) times attack on https port 443: Hacking attempt of Wordpress (GET /wp-includes/wlwmanifest.xml) 14:36:12 Suspicous request. (GET /xmlrpc.php?rsd) 14:36:12 Hacking attempt of Wordpress (GET /blog/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /web/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /wordpress/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /website/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /wp/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /news/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /2018/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /2019/wp-includes/wlwmanifest.xml) 14:36:13 Hacking attempt of Wordpress (GET /shop/wp-includes/wlwmanifest.xml) show less	Hacking Web App Attack
🇩🇪 ps-center	2021-05-19 12:19:33 (5 years ago)	LGS,WP GET /wp-includes/wlwmanifest.xml	Web Spam Bad Web Bot Web App Attack

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 129.121.78.24

🇳🇱 45.156.128.113

🇳🇱 45.148.10.152

🇺🇸 34.48.146.86

🇨🇳 202.46.62.46

🇲🇦 196.92.7.249

🇺🇸 195.184.76.157

🇺🇸 195.184.76.152

🇲🇽 187.159.91.109

🇫🇷 173.212.200.52

🇺🇸 147.185.132.39

🇭🇰 123.58.210.86

🇮🇳 98.70.50.166

🇧🇪 34.77.133.50

🇮🇩 203.2.151.28

🇿🇦 165.73.115.133

🇺🇸 161.35.236.116

🇰🇷 158.180.79.132

🇦🇫 149.54.62.62

🇰🇷 121.78.125.123