JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.192.8.67

52.192.8.67 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 67%: ?

67%

ISP	Amazon Data Services Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.192.8.67

Whois 52.192.8.67

IP Abuse Reports for 52.192.8.67:

This IP address has been reported a total of 16 times from 10 distinct sources. 52.192.8.67 was first reported on June 25th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 19:47:18 (1 hour ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:47:12.620276 2026] [security2:error] [pid 5941:tid 5941] [client 52.192.8.67:64256] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.aandbnaturalfoods.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.aandbnaturalfoods.com"] [uri "/naturally/wp-json/wp/v2/users/"] [unique_id "aj2FwGMMuKE633fyDQ2LMwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 18:05:04 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 14:04:59.591824 2026] [security2:error] [pid 24792:tid 24792] [client 52.192.8.67:58219] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.67ronin.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.67ronin.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj1ty7Jmts24x7hr4w575gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 17:07:59 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 13:07:51.153221 2026] [security2:error] [pid 19357:tid 19357] [client 52.192.8.67:57849] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.415test.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.415test.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj1gZ5EFw0oOOeSzHQDH2gAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-06-25 16:56:02 (4 hours ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 16:36:42 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:36:39.294961 2026] [security2:error] [pid 29018:tid 29018] [client 52.192.8.67:49605] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|3beeze.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "3beeze.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj1ZF_bMQ6we94XFF-hivQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-25 16:21:32 (4 hours ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 16:21:25 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:21:19.707232 2026] [security2:error] [pid 32541:tid 32541] [client 52.192.8.67:54565] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.321q.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.321q.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aj1Vf-EPOH79D5lfigoIhQAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Dolphi	2026-06-25 14:20:08 (6 hours ago)	POST //xmlrpc.php	Brute-Force Web App Attack
🇫🇷 Kenshin869	2026-06-25 14:15:48 (6 hours ago)	Wordpress unauthorized access attempt	Brute-Force
🇩🇪 Ba-Yu	2026-06-25 10:18:30 (10 hours ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
🇮🇹 VHosting	2026-06-25 08:00:07 (13 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇨🇭 backslash	2026-06-25 07:51:00 (13 hours ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 07:25:22 (13 hours ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 03:25:16.617760 2026] [security2:error] [pid 9741:tid 9741] [client 52.192.8.67:61602] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fixmyland.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fixmyland.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajzX3LT8Vs9A39tNP0hQcQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-25 06:38:36 (14 hours ago)	1.246 requests with url.path //xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 06:10:52 (14 hours ago)	(mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.com ... show more (mod_security) mod_security (id:225170) triggered by 52.192.8.67 (ec2-52-192-8-67.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 02:10:47.943885 2026] [security2:error] [pid 21412:tid 21412] [client 52.192.8.67:53448] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sonicbureau.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sonicbureau.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajzGZ9pUjL29wsMIJgxdJgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.85.102.138

🇳🇱 195.178.110.30

🇸🇪 172.232.133.71

🇫🇮 147.185.133.95

🇨🇳 117.69.245.91

🇹🇭 115.87.153.13

🇨🇦 57.134.215.133

🇭🇰 47.82.83.190

🇳🇱 45.148.10.121

🇺🇸 216.218.123.114

🇪🇸 193.39.216.55

🇧🇷 187.16.107.162

🇨🇳 180.76.51.13

🇷🇴 141.98.83.240

🇹🇼 122.116.15.80

🇷🇺 109.184.248.187

🇳🇬 102.88.137.145

🇺🇸 20.9.28.111

🇨🇳 218.13.26.42

🇺🇸 209.245.235.80