JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.184.99.50

52.184.99.50 was found in our database!

This IP was reported 113 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.184.99.50

Whois 52.184.99.50

IP Abuse Reports for 52.184.99.50:

This IP address has been reported a total of 113 times from 85 distinct sources. 52.184.99.50 was first reported on May 5th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-03 13:28:08 (2 weeks ago)	IP banned by Fail2Ban	Brute-Force SSH
Anonymous	2026-05-20 13:03:21 (4 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning show less	Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-05-20 05:13:59 (4 weeks ago)	80 attacks on PHP URLs: GET /wp-content/plugins/index.php HTTP/1.1	Web App Attack
🇧🇪 taivas.nl	2026-05-20 04:32:20 (4 weeks ago)	Many_bad_calls	Web App Attack
🇺🇸 octageeks.com	2026-05-20 04:06:33 (4 weeks ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 mw	2026-05-20 00:00:34 (4 weeks ago)	GET /wp-admin/user.php HTTP/1.1	Web App Attack
🇭🇺 DumaNet	2026-05-19 23:50:00 (4 weeks ago)	WordPress plugin attack attempts. Date: 2026 May 19. 14:28:25 Source IP: 52.184.99.50 Portion o ... show more WordPress plugin attack attempts. Date: 2026 May 19. 14:28:25 Source IP: 52.184.99.50 Portion of the log(s): 52.184.99.50 - [19/May/2026:14:27:36 +0200] "GET /wp-content/uploads/ HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.184.99.50 - [19/May/2026:14:27:35 +0200] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.184.99.50 - [19/May/2026:14:27:35 +0200] "GET /wp-content/admin.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.184.99.50 - [19/May/2026:14:27:35 +0200] "GET /wp-includes/html-api/ HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.184.99.50 - [19/May/2026:14:27:35 +0200] "GET /wp-includes/ show less	Web App Attack Hacking
🇧🇪 taivas.nl	2026-05-19 23:32:08 (4 weeks ago)	Bad_requests	Bad Web Bot
🇩🇪 FeG Deutschland	2026-05-19 23:22:28 (4 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack
🇫🇮 inlink.ltd	2026-05-19 22:38:57 (4 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇩🇪 maxpower	2026-05-19 22:15:00 (4 weeks ago)	(aggressive_scanner) REGOLA 8 - Aggressive Web Scanner 52.184.99.50 (HK/Hong Kong/-): 1 in the last ... show more (aggressive_scanner) REGOLA 8 - Aggressive Web Scanner 52.184.99.50 (HK/Hong Kong/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 52.184.99.50 - - [20/May/2026:00:14:54 +0200] "GET /404.php HTTP/1.1" 200 11780 "-" "-" "-" host=orem.it show less	Port Scan
🇩🇪 updown.io	2026-05-19 21:32:56 (4 weeks ago)	{"level":"info","ts":1779226194.3125398,"logger":"http.log.access.log0","msg":"handled request","req ... show more {"level":"info","ts":1779226194.3125398,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"52.184.99.50","remote_port":"2284","client_ip":"52.184.99.50","proto":"HTTP/1.1","method":"GET","host":"wgnt.status.updown.io","uri":"/.well-known/","headers":{}},"bytes_read":0,"user_id":"","duration":0.000054565,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://wgnt.status.updown.io/.well-known/"],"Content-Type":[]}} {"level":"info","ts":1779226195.96432,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"52.184.99.50","remote_port":"2206","client_ip":"52.184.99.50","proto":"HTTP/1.1","method":"GET","host":"wgnt.status.updown.io","uri":"/404.php","headers":{}},"bytes_read":0,"user_id":"","duration":0.000053141,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://wgnt.status.updown.io/404.php"],"Content-Type":[]}} {"level":"info","ts":1779226 ... show less	DDoS Attack Web App Attack
🇩🇪 Gwyneth Llewelyn	2026-05-19 20:11:46 (4 weeks ago)	52.184.99.50 - - [19/May/2026:21:11:45 +0100] "GET /wp-admin.php HTTP/1.1" 404 2480 "-" "-"	Bad Web Bot
🇳🇱 Site.eu	2026-05-19 18:34:01 (4 weeks ago)	Excessive multi-domain requests	Brute-Force
🇸🇪 EmK530	2026-05-19 18:15:13 (4 weeks ago)	URL flagged by RegEx: /wp-content/uploads/index.php	Web App Attack

Showing 1 to 15 of 113 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.219

🇨🇴 179.33.186.150

🇵🇱 172.253.1.146

🇺🇸 65.49.1.52

🇺🇸 24.252.95.215

🇺🇸 3.129.187.38

🇺🇸 206.180.157.8

🇳🇱 193.176.31.232

🇳🇱 193.176.31.220

🇲🇽 189.203.103.89

🇳🇱 185.223.235.26

🇨🇦 104.207.48.179

🇳🇱 91.92.40.217

🇩🇪 69.5.169.168

🇺🇸 66.132.224.20

🇧🇪 35.241.155.81

🇺🇸 20.168.125.82

🇨🇳 210.16.189.78

🇩🇪 193.124.20.243

🇺🇸 152.32.205.206