JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.228.152.140

52.228.152.140 was found in our database!

This IP was reported 1,189 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.228.152.140

Whois 52.228.152.140

IP Abuse Reports for 52.228.152.140:

This IP address has been reported a total of 1,189 times from 173 distinct sources. 52.228.152.140 was first reported on October 18th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 ATV	2024-12-25 03:04:22 (1 year ago)	Unsolicited connection attempts to port 2000	Port Scan
🇬🇧 Andrew	2024-12-24 08:31:11 (1 year ago)	Blocked by UFW (TCP on port 1521). Source port: 49616 TTL: 235 Packet length: 40 TOS: 0x00 This rep ... show more Blocked by UFW (TCP on port 1521). Source port: 49616 TTL: 235 Packet length: 40 TOS: 0x00 This report (for 52.228.152.140) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2024-12-24 08:30:27 (1 year ago)	FW-PortScan: Traffic Blocked srcport=36216 dstport=1521	Port Scan
Anonymous	2024-12-24 02:43:03 (1 year ago)	Drop from IP address 52.228.152.140 to tcp-port 28017	Port Scan
🇮🇹 Fusty	2024-12-24 02:17:27 (1 year ago)	Unauthorized attempt on (TCP on port 5223). Source port: 59977 TTL: 231 Packet length: 40 Timestamp: ... show more Unauthorized attempt on (TCP on port 5223). Source port: 59977 TTL: 231 Packet length: 40 Timestamp: 2024-12-24 03:17:27 show less	Port Scan
🇧🇾 StatsMe	2024-12-23 21:19:45 (1 year ago)	2024-12-23T09:16:53.266437+0300 ET CINS Active Threat Intelligence Poor Reputation IP group 82	Port Scan Hacking Spoofing Brute-Force
🇩🇪 DV4	2024-12-23 17:43:35 (1 year ago)	Unauthorized connection attempt to port 443 from 52.228.152.140	Port Scan
🇨🇭 Elysium Security	2024-12-23 14:15:46 (1 year ago)	Mass port scanning on a whole network	Port Scan
🇧🇷 diego	2024-12-23 07:12:19 (1 year ago)	[rede-arem1] 12/23/2024-04:12:19.191341, 52.228.152.140, Protocol: 6, ET CINS Active Threat Intellig ... show more [rede-arem1] 12/23/2024-04:12:19.191341, 52.228.152.140, Protocol: 6, ET CINS Active Threat Intelligence Poor Reputation IP group 91 show less	Hacking
🇧🇷 diego	2024-12-23 03:45:20 (1 year ago)	[rede-44-49] 12/23/2024-00:45:20.192449, 52.228.152.140, Protocol: 6, ET CINS Active Threat Intellig ... show more [rede-44-49] 12/23/2024-00:45:20.192449, 52.228.152.140, Protocol: 6, ET CINS Active Threat Intelligence Poor Reputation IP group 91 show less	Hacking
🇺🇸 Hobby Bob	2024-12-23 01:52:12 (1 year ago)	Dec 23 02:52:12 server dovecot: pop3-login: Disconnected (no auth attempts in 10 secs): user=, rip=5 ... show more Dec 23 02:52:12 server dovecot: pop3-login: Disconnected (no auth attempts in 10 secs): user=, rip=52.228.152.140, lip=X.X.X.X session= show less	Port Scan Hacking
🇫🇷 subnetprotocol	2024-12-22 23:59:37 (1 year ago)	23/Dec/2024:00:58:30.874969 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client ... show more 23/Dec/2024:00:58:30.874969 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 52.228.152.140] ModSecurity: Warning. Matched phrase "zgrab" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "55"] [id "913100"] [msg "Found User-Agent associated with security scanner"] [data "Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.7"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scanner"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [hostname "212.129.0.235"] [uri "/autodiscover/autodiscover.json"] [unique_id "Z2inpo5_9H5Gmjh2l2KcrAAAAJM"] 23/Dec/2024:00:58:36.372675 +0100Apache-Error: [file "apache2_util.c"] [line 275] [level 3] [client 52.228.152.140] ModSecurity: Warning. Matched phrase "zgrab" at REQUEST_HEA ... show less	Hacking Web App Attack
Anonymous	2024-12-22 23:58:24 (1 year ago)	52.228.152.140 detected on srv01	Brute-Force
🇩🇪 Little Iguana	2024-12-22 23:12:07 (1 year ago)	trying to access non-authorized port	Port Scan
🇳🇱 Study Bitcoin 🤗	2024-12-22 21:25:22 (1 year ago)	Port probe to tcp/9200 (wap connectionless session service) [ros]	Port Scan

Showing 1 to 15 of 1189 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.255.63

🇵🇱 134.112.56.47

🇻🇳 27.78.70.85

🇺🇸 162.216.149.246

🇨🇳 121.61.162.140

🇨🇳 117.72.211.35

🇨🇳 101.43.118.136

🇫🇷 91.196.152.122

🇧🇬 91.191.209.74

🇸🇾 91.144.21.210

🇧🇿 45.227.254.156

🇺🇸 20.169.74.52

🇮🇩 203.2.151.28

🇷🇺 185.244.173.5

🇺🇸 162.216.150.17

🇦🇫 149.54.51.82

🇩🇪 138.68.68.118

🇨🇳 120.78.121.127

🇺🇸 71.125.85.161

🇵🇱 46.20.58.124