JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.188.122.85

52.188.122.85 was found in our database!

This IP was reported 334 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.188.122.85

Whois 52.188.122.85

IP Abuse Reports for 52.188.122.85:

This IP address has been reported a total of 334 times from 248 distinct sources. 52.188.122.85 was first reported on March 25th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-04-30 13:02:46 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇸🇪 adaml1324	2026-04-23 18:20:18 (1 month ago)	Web application exploit probing	Web App Attack
🇨🇦 SoteriaCovenant	2026-04-08 04:47:58 (2 months ago)	Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable ... show more Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable software present. show less	Brute-Force
🇨🇦 SoteriaCovenant	2026-04-06 05:02:12 (2 months ago)	Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable ... show more Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable software present. show less	Brute-Force
🇨🇦 SoteriaCovenant	2026-04-05 04:47:13 (2 months ago)	Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable ... show more Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable software present. show less	Brute-Force
🇺🇸 bazter.pro	2026-04-02 21:50:33 (2 months ago)	Auto-Ban [2026-04-03 00:50:29]: CRITICAL: Sensitive files (8); DC: Microsoft Corporation [Paths: 74] ... show more Auto-Ban [2026-04-03 00:50:29]: CRITICAL: Sensitive files (8); DC: Microsoft Corporation [Paths: 74] \| Details: Sensitive files/paths: /zwso.php, /wp-admin/css/colors/blue/index.php, /admin.php?p=, /wp-admin/maint/about.php, /wp-admin/network/wp-conflg.php?p= \| 404 errors (74): /click.php, /cong.php, /lsd.php, /403.php, /xz89.php, /bbn.php, /htaccess.php, /fv.php, /themes.php, /404.php (and 63 more) \| Other paths: /wp-content/index.php show less	Web App Attack Hacking
🇸🇬 aloon78	2026-04-02 00:00:00 (2 months ago)	WordPress wp-login.php brute force attack detected on trillactive.com	Brute-Force Web App Attack
🇬🇧 sc user	2026-04-01 04:40:58 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇩🇪 ghostwarriors	2026-04-01 00:22:55 (2 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇬🇧 sc user	2026-03-31 03:39:16 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇩🇪 Holger	2026-03-30 10:57:31 (2 months ago)	WordPress WebAttack	Brute-Force Web App Attack
🇫🇷 cydit.eu	2026-03-29 01:07:35 (2 months ago)	Repeat offender detected by fail2ban on thor.cydit.eu	Exploited Host
🇭🇺 DumaNet	2026-03-28 10:00:00 (2 months ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Mar 25. 18:40:03 Source IP: 52.188 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Mar 25. 18:40:03 Source IP: 52.188.122.85 Portion of the log(s): 52.188.122.85 - [25/Mar/2026:18:40:03 +0100] "GET /dir.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.188.122.85 - [25/Mar/2026:18:40:03 +0100] "GET /s11.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.188.122.85 - [25/Mar/2026:18:40:02 +0100] "GET /oo.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.188.122.85 - [25/Mar/2026:18:40:02 +0100] "GET /ws29.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.188.122.85 - [25/Mar/2026:18:40:02 +0100] "GET /xtride.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Wind show less	Web App Attack
🇬🇧 sc user	2026-03-28 06:47:20 (2 months ago)	Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad ... show more Fail2Ban nginx: repeated suspicious HTTP requests consistent with automated probing, scanning or bad bot behaviour. Technical log details and local server identifiers intentionally omitted for privacy. show less	Bad Web Bot Web App Attack Port Scan
🇨🇦 SoteriaCovenant	2026-03-28 05:02:24 (2 months ago)	Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable ... show more Automated probe: /wp-admin/css/colors/blue/index.php on Soteria Global infrastructure. No vulnerable software present. show less	Brute-Force

Showing 1 to 15 of 334 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.70.255.242

🇺🇸 108.41.174.53

🇷🇺 95.167.225.76

🇺🇸 44.214.90.118

🇧🇷 200.159.14.187

🇺🇸 184.105.247.235

🇩🇪 167.94.145.19

🇨🇳 112.54.24.223

🇧🇬 79.124.40.126

🇺🇸 66.132.172.211

🇺🇸 66.94.116.236

🇺🇸 65.111.3.219

🇺🇸 64.62.197.185

🇳🇱 45.148.10.151

🇺🇸 45.56.117.73

🇻🇳 27.79.42.0

🇰🇷 210.206.24.238

🇺🇸 205.210.31.91

🇭🇰 199.45.154.176

🇧🇬 185.2.210.248