JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.236.123.156

52.236.123.156 was found in our database!

This IP was reported 158 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇪 Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.236.123.156

Whois 52.236.123.156

IP Abuse Reports for 52.236.123.156:

This IP address has been reported a total of 158 times from 125 distinct sources. 52.236.123.156 was first reported on November 23rd 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-12-15 08:28:04 (5 months ago)	Blocked: Reason='Auto-block via DW'; Requests=0	Hacking
🇦🇺 artful	2025-11-25 02:44:00 (6 months ago)	Excessive errors ~6k in recent days	Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-24 23:01:43 (6 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-11-23. show less	Hacking Web App Attack SSH
🇹🇷 rtbh.com.tr	2025-11-24 20:10:06 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 IRISIO	2025-11-24 12:36:18 (6 months ago)	scans/SQL injection/spam posts : 2685 queries	SQL Injection Web App Attack
🇳🇿 jya	2025-11-24 10:48:00 (6 months ago)	WordPress attack.	Bad Web Bot Web App Attack
🇭🇺 DumaNet	2025-11-24 09:35:00 (6 months ago)	Web app attack attempts, scanning for vulnerability. Date: 2025 Nov 23. 16:55:09 Source IP: 52.236 ... show more Web app attack attempts, scanning for vulnerability. Date: 2025 Nov 23. 16:55:09 Source IP: 52.236.123.156 Portion of the log(s): 52.236.123.156 - [23/Nov/2025:16:55:09 +0100] "GET /mail.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:09 +0100] "GET /xx.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:09 +0100] "GET /wp-admin/js/themes.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:08 +0100] "GET /images/m.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:08 +0100] "GET /link.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:08 +0100] "GET /i1.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:08 +0100] "GET /404.php?fm=true HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:08 +0100] "GET /wp-includes/style-engine/about.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16:55:08 +0100] "GET /plugins/Cache/footer.php HTTP/1.1" 404 153 "-" "-" 52.236.123.156 - [23/Nov/2025:16 show less	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2025-11-24 06:13:47 (6 months ago)	283 attacks on PHP URLs: GET /.well-known/acme-challenge/admin.php HTTP/1.1	Web App Attack
🇧🇪 taivas.nl	2025-11-24 05:32:18 (6 months ago)	Many_bad_calls	Web App Attack
🇺🇸 octageeks.com	2025-11-24 05:06:56 (6 months ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇳🇱 jjnxpct	2025-11-24 04:48:51 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /assets/js/wp-config.php (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
Anonymous	2025-11-24 04:30:50 (6 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 Mehmet_The_Script_Kiddie	2025-11-24 01:23:47 (6 months ago)	CloudFlare WAF REPORT: /adminer.php	Bad Web Bot Web App Attack
🇬🇧 [email protected]	2025-11-24 01:01:27 (6 months ago)	...	Brute-Force SSH
Anonymous	2025-11-24 00:36:00 (6 months ago)	vars[0]=md5&vars[1][]=Hello	Hacking Brute-Force Web App Attack

Showing 1 to 15 of 158 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 210.222.46.15

🇳🇱 178.16.54.74

🇧🇷 177.44.71.7

🇮🇳 139.59.16.12

🇺🇸 129.146.243.24

🇻🇳 115.84.183.240

🇷🇺 95.167.225.76

🇸🇬 47.79.206.110

🇸🇬 128.199.231.249

🇯🇵 124.155.125.131

🇰🇷 124.49.73.213

🇰🇷 115.68.168.163

🇳🇿 103.93.145.33

🇫🇷 62.210.199.83

🇱🇹 62.60.130.59

🇨🇳 58.48.170.235

🇺🇸 20.168.127.122

🇺🇸 20.39.62.227

🇩🇪 8.211.45.1

🇲🇽 187.191.48.6