JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.191.248.238

52.191.248.238 was found in our database!

This IP was reported 1,925 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.191.248.238

Whois 52.191.248.238

IP Abuse Reports for 52.191.248.238:

This IP address has been reported a total of 1,925 times from 100 distinct sources. 52.191.248.238 was first reported on February 21st 2022, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 SYSMarshal	2024-10-22 05:00:13 (1 year ago)	SysMarshal detection : RDP Brute-Force	DDoS Attack Brute-Force
🇹🇷 droltr	2023-07-03 11:06:57 (2 years ago)	Reported by IP Checker.	Brute-Force SSH
🇨🇦 Largnet SOC	2023-06-27 17:00:51 (2 years ago)	52.191.248.238 triggered Icarus honeypot on port 1433. Check us out on github.	Port Scan Hacking
🇺🇸 Block_Steady_Crew	2023-06-27 16:05:34 (2 years ago)	Honeypot snared from 52.191.248.238	Port Scan Web App Attack
🇺🇸 RAP	2023-06-27 13:03:59 (2 years ago)	2023-06-27 13:03:59 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 RAP	2023-06-27 09:21:36 (2 years ago)	2023-06-27 09:21:36 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇹🇳 anqa anqa	2023-06-26 10:32:16 (2 years ago)		Fraud Orders DDoS Attack FTP Brute-Force Ping of Death Phishing Fraud VoIP Open Proxy Web Spam Email Spam Blog Spam VPN IP Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇳🇱 IP Analyzer	2023-06-26 09:45:11 (2 years ago)	Unauthorized connection attempt from IP address 52.191.248.238 on Port 445(SMB)	Port Scan
🇬🇧 Joe-Mark	2023-06-25 23:01:24 (2 years ago)	Found CINS badguys / proto=6 . srcport=1025 . dstport=445 SMB . (1904)	Port Scan
🇺🇸 MPL	2023-06-25 17:00:48 (2 years ago)	tcp/1433 (4 or more attempts)	Port Scan
🇺🇸 MPL	2023-06-25 16:09:51 (2 years ago)	tcp/1433 (6 or more attempts)	Port Scan
🇩🇪 speedhost.se	2023-06-25 15:59:59 (2 years ago)	Unauthorized connection attempt detected from IP address 52.191.248.238 to port 445 (WARDEN) [M]	Brute-Force Exploited Host
🇺🇸 MPL	2023-06-25 14:00:40 (2 years ago)	tcp/1433 (8 or more attempts)	Port Scan
🇺🇸 MPL	2023-06-25 05:58:13 (2 years ago)	tcp/445 (2 or more attempts)	Port Scan
🇺🇸 MPL	2023-06-25 04:50:42 (2 years ago)	tcp/445 (12 or more attempts)	Port Scan

Showing 1 to 15 of 1925 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.96

🇧🇪 207.175.96.215

🇬🇧 191.96.110.38

🇲🇽 187.251.123.104

🇸🇬 101.47.15.26

🇰🇿 92.47.46.174

🇺🇸 216.244.66.249

🇲🇽 201.110.99.31

🇸🇻 190.62.84.65

🇺🇸 170.187.163.117

🇿🇼 143.105.233.45

🇷🇴 141.98.83.240

🇪🇸 195.5.84.206

🇰🇷 125.130.224.61

🇮🇳 103.138.237.18

🇷🇺 91.144.187.151

🇮🇷 89.42.209.10

🇨🇳 36.135.93.37

🇻🇳 14.225.206.171

🇺🇦 5.58.52.148