JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.230.167.74

52.230.167.74 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.230.167.74

Whois 52.230.167.74

IP Abuse Reports for 52.230.167.74:

This IP address has been reported a total of 144 times from 111 distinct sources. 52.230.167.74 was first reported on June 8th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-10 04:34:56 (5 days ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇳🇱 Site.eu	2026-06-10 04:00:48 (5 days ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-10 01:08:41 (5 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Webshell probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:01:52 (5 days ago)	Auto-ban: >3000 req/min op 2026-06-09	Web App Attack SSH Hacking
Anonymous	2026-06-09 18:20:06 (5 days ago)	Portscan: TCP/80 (6x)	Port Scan
🇺🇸 ipblock.com	2026-06-09 17:22:00 (5 days ago)	Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇺🇸 deskpass.com	2026-06-09 16:52:22 (5 days ago)	GET /file.php	Web App Attack
🇩🇪 itsolon	2026-06-09 16:05:21 (5 days ago)	[09/Jun/2026:13:36:45 +0200] 178100500530.107152 52.230.167.74 0 217.154.7.177 443 [09/Jun/2026:13:3 ... show more [09/Jun/2026:13:36:45 +0200] 178100500530.107152 52.230.167.74 0 217.154.7.177 443 [09/Jun/2026:13:36:47 +0200] 17810050073.760335 52.230.167.74 0 217.154.7.177 443 [09/Jun/2026:13:36:48 +0200] 178100500884.926753 52.230.167.74 0 217.154.7.177 443 [09/Jun/2026:13:36:51 +0200] 178100501162.808328 52.230.167.74 5478 217.154.7.177 80 [09/Jun/2026:13:36:51 +0200] 178100501184.985109 52.230.167.74 0 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇮🇳 dineshskt4all	2026-06-09 15:30:27 (5 days ago)	[Tue Jun 09 15:30:19.529863 2026] [proxy_fcgi:error] [pid 3913498:tid 138601010525888] [client 52.23 ... show more [Tue Jun 09 15:30:19.529863 2026] [proxy_fcgi:error] [pid 3913498:tid 138601010525888] [client 52.230.167.74:0] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇩🇪 Viveronese	2026-06-09 15:27:20 (5 days ago)	HTTP vulnerability scanning	Web App Attack
🇩🇪 LRob.fr	2026-06-09 15:00:05 (5 days ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇩🇪 raph	2026-06-09 14:59:28 (5 days ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-06-09 14:52:13 (5 days ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 52.230.167.74 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 52.230.167.74 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
🇩🇪 Manuel Braeuer	2026-06-09 14:03:33 (5 days ago)	52.230.167.74 - - [09/Jun/2026:16:02:54 +0200] "GET /readme.php HTTP/1.1" 403 146 "-" "-" 52.230.167 ... show more 52.230.167.74 - - [09/Jun/2026:16:02:54 +0200] "GET /readme.php HTTP/1.1" 403 146 "-" "-" 52.230.167.74 - - [09/Jun/2026:16:03:27 +0200] "GET /license.txt HTTP/1.1" 403 146 "-" "-" 52.230.167.74 - - [09/Jun/2026:16:03:29 +0200] "GET /php.ini HTTP/1.1" 403 146 "-" "-" 52.230.167.74 - - [09/Jun/2026:16:03:31 +0200] "GET /wp-config-sample.php HTTP/1.1" 403 146 "-" "-" 52.230.167.74 - - [09/Jun/2026:16:03:32 +0200] "GET /wp-config.php HTTP/1.1" 403 146 "-" "-" ... show less	Web App Attack
🇺🇸 WellSpring	2026-06-09 13:51:18 (5 days ago)	generic probe on 305.today/config.php — WellSpr.ing/NetSentinel civic-AI security layer	Bad Web Bot

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f298:6:a014::386:ec51

🇸🇪 176.125.241.194

🇺🇸 161.153.12.161

🇺🇸 136.111.222.91

🇨🇳 116.179.37.54

🇺🇸 96.35.4.110

🇫🇮 95.216.252.68

🇺🇸 91.230.168.190

🇲🇾 49.124.147.252

🇷🇺 195.239.183.246

🇹🇼 114.34.130.221

🇨🇦 85.217.149.41

🇫🇷 85.217.140.38

🇨🇦 72.136.102.96

🇨🇦 65.38.89.228

🇺🇸 137.184.141.239

🇩🇪 91.99.139.53

🇷🇺 78.139.80.132

🇧🇬 78.128.112.74

🇪🇬 41.38.21.44