JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.188.87.154

52.188.87.154 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 92%: ?

92%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.188.87.154

Whois 52.188.87.154

IP Abuse Reports for 52.188.87.154:

This IP address has been reported a total of 19 times from 17 distinct sources. 52.188.87.154 was first reported on June 2nd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 Per-Erik Runebert	2026-06-03 08:39:37 (1 day ago)	Excessive unauthorized requests	Hacking
🇬🇧 PeravixGroup	2026-06-02 18:56:01 (2 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇮🇩 hermawan	2026-06-02 18:21:08 (2 days ago)	1780424453.471133 52.188.87.154 103.166.156.58 64240_2-4-8-1-3_1440_10 2026-06-03 01:20:53 WIB ...	Email Spam Hacking
🇳🇱 Mangelot Hosting	2026-06-02 17:29:16 (2 days ago)	(modsecurity) srv102 ModSecurity 52.188.87.154 (US/United States/-): 10 in the last 3600 secs; Ports ... show more (modsecurity) srv102 ModSecurity 52.188.87.154 (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇨🇦 polycoda	2026-06-02 13:43:29 (2 days ago)	📡 Port scan	Hacking Web App Attack
🇩🇪 zupan	2026-06-02 12:30:27 (2 days ago)	Blocked by UFW on vps [2087/tcp] \| SPT: 17809 \| TTL: 45 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on vps [2087/tcp] \| SPT: 17809 \| TTL: 45 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇹🇭 Sawasdee	2026-06-02 11:57:07 (2 days ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇹🇷 SeczarSecureOps	2026-06-02 11:43:01 (2 days ago)	Auto-blocked by Seczar SecureOps — Port Scan Detection (7 events in 10min) at 2026-06-02 11:43	Port Scan
🇺🇸 ISPLtd	2026-06-02 11:28:09 (2 days ago)	Jun 2 08:28:08 52.188.87.154 TCP SPT=16923 DPT=2087 SYN Jun 2 08:28:08 52.188.87.154 TCP SPT=16905 ... show more Jun 2 08:28:08 52.188.87.154 TCP SPT=16923 DPT=2087 SYN Jun 2 08:28:08 52.188.87.154 TCP SPT=16905 DPT=8443 SYN Jun 2 08:28:08 52.188.87.154 TCP SPT=16908 DPT=2083 ... show less	Port Scan
🇫🇷 ISPLtd	2026-06-02 11:01:25 (2 days ago)	Jun 2 08:01:24 52.188.87.154 TCP SPT=17989 DPT=2087 SYN Jun 2 08:01:24 52.188.87.154 TCP SPT=17988 ... show more Jun 2 08:01:24 52.188.87.154 TCP SPT=17989 DPT=2087 SYN Jun 2 08:01:24 52.188.87.154 TCP SPT=17988 DPT=8443 SYN Jun 2 08:01:24 52.188.87.154 TCP SPT=18003 DPT=8080 ... show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 11:01:10 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 52.188.87.154 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.188.87.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 07:01:03.609818 2026] [security2:error] [pid 11915:tid 11936] [client 52.188.87.154:18005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.80"] [uri "/.git/config"] [unique_id "ah6373YGQ77KXUem0BKVHAAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MPL	2026-06-02 10:40:47 (2 days ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 RAP	2026-06-02 10:29:23 (2 days ago)	2026-06-02 10:29:23 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-02 10:16:31 (2 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 Petre 21_ip	2026-06-02 10:08:05 (2 days ago)	2026-06-02T12:08:04.413957+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-02T12:08:04.413957+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=52.188.87.154 DST=155.133.26.57 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=25710 DF PROTO=TCP SPT=18051 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.32.209.236

🇱🇦 183.182.110.39

🇬🇧 178.128.36.92

🇲🇾 173.239.236.209

🇩🇪 167.233.50.233

🇺🇸 162.216.149.21

🇺🇸 147.185.132.42

🇹🇼 125.230.233.48

🇮🇳 103.184.107.79

🇺🇸 97.93.43.157

🇩🇪 69.5.169.58

🇸🇬 47.84.207.179

🇪🇪 45.11.183.22

🇧🇪 34.53.183.125

🇻🇳 14.240.228.99

🇫🇷 2a00:1169:110:1460::

🇨🇳 2408:867a:400::596

🇺🇸 2001:470:1:fb5::13f

🇬🇧 213.166.84.44

🇧🇪 207.175.12.159