JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.234.41.66

52.234.41.66 was found in our database!

This IP was reported 198 times. Confidence of Abuse is 52%: ?

52%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.234.41.66

Whois 52.234.41.66

IP Abuse Reports for 52.234.41.66:

This IP address has been reported a total of 198 times from 148 distinct sources. 52.234.41.66 was first reported on October 18th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-02 11:01:33 (1 week ago)	2026-06-02 11:01:33 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 xmission.com	2026-06-02 09:16:52 (1 week ago)	Blocked by UFW (TCP on 8080) Source port: 62528 TTL: 52 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 8080) Source port: 62528 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 52.234.41.66) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇹🇷 Threat.live	2026-06-02 09:05:05 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 RAP	2026-06-02 06:29:10 (1 week ago)	2026-06-02 06:29:10 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇧🇷 somosbr	2026-06-02 00:54:09 (1 week ago)	[2026-06-02T00:54:09Z] Unsolicited scan from 52.234.41.66 to port 443/tcp	Port Scan
🇷🇸 Scan	2026-06-02 00:11:18 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇮 Yachiyo Runami	2026-06-01 23:42:45 (1 week ago)	Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 40-4 ... show more Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 40-43 \| Len: 60B(2x) \| Win: 64240(2) \| F2B/ufw-honeypot@2026-06-01T23:42:45Z show less	Port Scan Hacking
🇺🇸 RAP	2026-06-01 22:05:04 (1 week ago)	2026-06-01 22:05:04 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇩🇪 acadeova	2026-06-01 21:59:34 (1 week ago)	🚨 Recon detected (nft drop) SRC=52.234.41.66 Observed=TCP dpt=80 in=enp0s6 ttl=44 Time=recent(journa ... show more 🚨 Recon detected (nft drop) SRC=52.234.41.66 Observed=TCP dpt=80 in=enp0s6 ttl=44 Time=recent(journalctl: 10 minutes ago) Assessment=Generic scanning / reconnaissance (PORT_SCAN) show less	Port Scan
🇬🇧 PeravixGroup	2026-06-01 21:35:16 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇩🇪 2048	2026-05-11 15:24:32 (4 weeks ago)	2026-05-11T17:24:29.285706+02:00 machodeer kernel: [1220985.748013] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-11T17:24:29.285706+02:00 machodeer kernel: [1220985.748013] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=52.234.41.66 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=59337 DF PROTO=TCP SPT=56344 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-11T17:24:30.323743+02:00 machodeer kernel: [1220986.785984] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=52.234.41.66 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=59338 DF PROTO=TCP SPT=56344 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-11T17:24:31.347515+02:00 machodeer kernel: [1220987.809826] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=52.234.41.66 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=59339 DF PROTO=TCP SPT=56344 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Port Scan
🇨🇱 ifiguero	2026-03-31 14:32:41 (2 months ago)	Web Attack (\x00\x00\x00\x00\x00). 7d ban	Web App Attack
🇨🇭 pingusurmars	2026-03-31 14:29:52 (2 months ago)	Blocked by UFW on amperetwo [23555/tcp] Source port: 48144 TTL: 236 Packet length: 40 TOS: 0x00 Thi ... show more Blocked by UFW on amperetwo [23555/tcp] Source port: 48144 TTL: 236 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 polido	2026-03-31 14:28:11 (2 months ago)	Unauthorized connection attempt to port 443 from 52.234.41.66	Port Scan
🇹🇷 0xi	2026-03-13 15:00:46 (2 months ago)	SSH brute-force attack detected (51 attempts). Targeted ports: 22. Triggered sensors: P0f, Cowrie, S ... show more SSH brute-force attack detected (51 attempts). Targeted ports: 22. Triggered sensors: P0f, Cowrie, Suricata, Fatt. Post-exploitation commands were executed. Observed via distributed honeypot network. show less	Brute-Force SSH

Showing 1 to 15 of 198 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 155.117.127.214

🇺🇸 74.125.17.245

🇸🇬 47.79.11.66

🇳🇱 45.148.10.183

🇬🇧 35.203.211.85

🇲🇽 189.217.130.86

🇺🇸 172.232.181.88

🇳🇵 160.250.254.20

🇱🇹 141.98.11.83

🇱🇹 45.227.254.170

🇳🇱 45.148.10.157

🇺🇸 44.220.185.45

🇺🇦 195.60.175.119

🇨🇳 182.140.17.223

🇩🇪 72.56.189.168

🇺🇸 50.6.224.135

🇺🇸 45.74.252.63

🇲🇽 189.203.34.140

🇬🇧 172.82.91.4

🇨🇳 101.126.54.95