JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.238.198.211

52.238.198.211 was found in our database!

This IP was reported 418 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.238.198.211

Whois 52.238.198.211

IP Abuse Reports for 52.238.198.211:

This IP address has been reported a total of 418 times from 264 distinct sources. 52.238.198.211 was first reported on June 23rd 2026, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Peregrine	2026-06-26 03:14:45 (23 hours ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 52.238.198.211 172.69.17.10 - - [24/Jun/2026:02:04: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 52.238.198.211 172.69.17.10 - - [24/Jun/2026:02:04:14 -0300] "GET /inputs.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇫🇷 SpaceHost-Server	2026-06-25 22:31:37 (1 day ago)		Brute-Force Web App Attack
🇧🇪 boxed-it	2026-06-25 18:07:22 (1 day ago)	GET /wp-content/uploads/index.php (Tarpitted for 1d15h8m31s, wasted 8.06MB)	Web App Attack
🇫🇷 Catalin Negru	2026-06-25 13:05:52 (1 day ago)	Recidive ban by fail2ban on server.blackbit.ro	Brute-Force
🇬🇧 openstrike.co.uk	2026-06-25 05:14:21 (1 day ago)	464 attacks on PHP URLs: GET /wp-content/plugins/index.php HTTP/1.1	Web App Attack
🇳🇱 Site.eu	2026-06-25 05:01:57 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 homeshowdomain.nl	2026-06-24 22:01:52 (2 days ago)	Auto-ban: 13 malicious requests on 2026-06-23 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 13 malicious requests on 2026-06-23 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇫🇷 tecnicorioja	2026-06-24 22:00:43 (2 days ago)	wp-login attack [24/Jun/2026:06:34:09	Brute-Force Web App Attack
🇧🇪 Ivo Vynckier	2026-06-24 13:09:00 (2 days ago)	52.238.198.211 - - [23/Jun/2026:20:12:47 +0200] "GET /inputs.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 ( ... show more 52.238.198.211 - - [23/Jun/2026:20:12:47 +0200] "GET /inputs.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.238.198.211 - - [23/Jun/2026:20:12:48 +0200] "GET /ioxi-o.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.238.198.211 - - [23/Jun/2026:20:12:48 +0200] "GET /function/function.php HTTP/1.1" 404 2322 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
Anonymous	2026-06-24 13:07:36 (2 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
🇸🇪 teskedsgumman.se	2026-06-24 06:46:00 (2 days ago)	content scraping on a one page wp blog, with links to my other sites:( AI?	Bad Web Bot Hacking
Anonymous	2026-06-24 05:18:12 (2 days ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-06-24 05:14:54 (2 days ago)	3016 attacks on PHP URLs, ACME URLs: GET /wp-content/plugins/index.php HTTP/1.1 GET /.well-known/acm ... show more 3016 attacks on PHP URLs, ACME URLs: GET /wp-content/plugins/index.php HTTP/1.1 GET /.well-known/acme-challenge/admin.php HTTP/1.1 show less	Web App Attack
🇺🇸 WizardsToolkit	2026-06-24 05:12:56 (2 days ago)	tried to access server backup files	Web App Attack
🇺🇸 ambor	2026-06-24 05:09:47 (2 days ago)	Attack type: wordpress_attack_attempt \| Target: /admin.php \| UA: Mozilla/5.0 (Windows NT 10.0; Win64 ... show more Attack type: wordpress_attack_attempt \| Target: /admin.php \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWeb \| Country: US show less	Web App Attack Brute-Force

Showing 1 to 15 of 418 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 206.81.4.2

🇧🇪 198.235.24.179

🇳🇱 185.89.249.3

🇺🇸 69.4.83.194

🇨🇳 58.243.46.62

🇺🇸 54.144.121.112

🇧🇪 34.79.14.247

🇰🇷 1.241.64.237

🇺🇸 151.245.233.242

🇺🇸 147.185.132.54

🇺🇸 107.150.105.153

🇬🇧 94.9.233.149

🇱🇻 81.30.98.62

🇧🇬 79.124.56.146

🇺🇸 66.132.186.219

🇺🇸 64.62.197.61

🇨🇳 43.248.108.205

🇺🇸 43.173.69.147

🇬🇧 35.203.211.84

🇬🇧 35.203.210.183