JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.234.43.180

52.234.43.180 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 62%: ?

62%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.234.43.180

Whois 52.234.43.180

IP Abuse Reports for 52.234.43.180:

This IP address has been reported a total of 14 times from 14 distinct sources. 52.234.43.180 was first reported on January 13th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 london2038.com	2026-06-02 01:41:48 (1 week ago)	Connection atttempts against closed TCP ports Jun 2 03:41:41 BLOCK SRC=52.234.43.180 LEN=60 TOS=0x0 ... show more Connection atttempts against closed TCP ports Jun 2 03:41:41 BLOCK SRC=52.234.43.180 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=34376 DF PROTO=TCP SPT=22341 DPT=2087 WINDOW=64240 RES=0x00 SYN Jun 2 03:41:41 BLOCK SRC=52.234.43.180 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=10456 DF PROTO=TCP SPT=22348 DPT=8443 WINDOW=64240 RES=0x00 SYN Jun 2 03:41:48 BLOCK SRC=52.234.43.180 LEN=40 TOS=0x00 PREC=0x00 TTL=117 ID=1 DF PROTO=TCP SPT=22348 DPT=8443 WINDOW=0 RES=0x00 ACK RST show less	Port Scan
🇳🇱 Selckie	2026-06-02 01:38:28 (1 week ago)	fail2ban: NGINX unusual impact	Web App Attack
🇺🇸 mnsf	2026-06-02 01:05:08 (1 week ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇳🇱 BIV	2026-06-02 00:20:44 (1 week ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 2082,80,8080. Auto ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 2082,80,8080. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇷🇸 Scan	2026-06-02 00:11:15 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2026-06-01 23:14:13 (1 week ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 Jimbocous	2026-06-01 23:09:00 (1 week ago)	Unauthorised access attempts. Probing for known web app vulnerabilities. Yet another in the unending ... show more Unauthorised access attempts. Probing for known web app vulnerabilities. Yet another in the unending stream of brute force attacks originating from the Microsoft network. show less	Brute-Force Web App Attack Hacking
🇨🇦 polycoda	2026-06-01 23:00:42 (1 week ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - 📡 Port Scan (Non Decay-Based)	Port Scan Hacking Web App Attack
🇳🇱 BellFix	2026-06-01 22:18:31 (1 week ago)	Fail2ban reported 52.234.43.180 for npm-docker	Web App Attack
🇫🇷 GabrielJST	2026-06-01 22:10:19 (1 week ago)	Port Scan detected from 52.234.43.180 (US/United States/-).	Port Scan
Anonymous	2026-06-01 21:48:23 (1 week ago)	Port Scan	Port Scan
🇬🇧 PeravixGroup	2026-06-01 21:04:19 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-06-01 20:35:11 (1 week ago)	Blocked by UFW (TCP on 2087) Source port: 22528 TTL: 47 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2087) Source port: 22528 TTL: 47 Packet length: 60 TOS: 0x00 This report (for 52.234.43.180) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Rayulcifer	2026-01-13 18:33:48 (5 months ago)	52.234.43.180 - - [13/Jan/2026:13:33:47 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 502 488 "-" "-" ... show more 52.234.43.180 - - [13/Jan/2026:13:33:47 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 502 488 "-" "-" 52.234.43.180 - - [13/Jan/2026:13:33:47 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 502 488 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.231

🇺🇸 173.252.70.8

🇫🇮 82.29.95.7

🇺🇦 79.143.45.75

🇧🇬 79.124.56.138

🇸🇬 43.173.178.119

🇬🇭 41.139.11.228

🇺🇸 34.42.148.245

🇺🇸 143.42.173.60

🇺🇸 136.111.111.214

🇳🇱 91.92.40.52

🇧🇪 62.213.218.78

🇫🇷 51.254.113.225

🇧🇿 45.227.254.152

🇺🇸 23.185.176.47

🇳🇱 213.177.179.91

🇭🇰 199.45.154.141

🇨🇳 180.110.149.157

🇲🇾 103.187.26.126

🇳🇱 91.92.42.170