JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.252.111.102

52.252.111.102 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.252.111.102

Whois 52.252.111.102

IP Abuse Reports for 52.252.111.102:

This IP address has been reported a total of 69 times from 35 distinct sources. 52.252.111.102 was first reported on March 3rd 2022, and the most recent report was 4 years ago.

Old Reports: The most recent abuse report for this IP address is from 4 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇾 syokadmin	2022-03-28 09:42:09 (4 years ago)	(mod_security) mod_security (id:225170) triggered by 52.252.111.102 (US/United States/-): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 52.252.111.102 (US/United States/-): 1 in the last 3600 secs show less	Brute-Force
🇩🇪 ps-center	2022-03-27 19:23:58 (4 years ago)	SS1: Web Attack GET //wp-includes/wlwmanifest.xml GET //blog/wp-includes/wlwmanifest.xml	Web Spam Hacking Bad Web Bot Web App Attack
🇦🇺 clapper	2022-03-27 13:09:03 (4 years ago)	(mod_security) mod_security (id:350202) triggered by 52.252.111.102 (US/United States/-): 5 in the l ... show more (mod_security) mod_security (id:350202) triggered by 52.252.111.102 (US/United States/-): 5 in the last 14400 secs; ID: rub show less	Brute-Force Bad Web Bot
🇩🇪 conseilgouz	2022-03-26 13:14:04 (4 years ago)	pre-7 : Trying access unauthorized files/dir=>//wp-includes/wlwmanifest.xml	Hacking
🇦🇺 clapper	2022-03-25 21:50:27 (4 years ago)	(mod_security) mod_security (id:350202) triggered by 52.252.111.102 (US/United States/-): 5 in the l ... show more (mod_security) mod_security (id:350202) triggered by 52.252.111.102 (US/United States/-): 5 in the last 14400 secs; ID: DAN show less	Brute-Force Bad Web Bot
🇲🇾 syokadmin	2022-03-25 20:56:34 (4 years ago)	(mod_security) mod_security (id:225170) triggered by 52.252.111.102 (US/United States/-): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 52.252.111.102 (US/United States/-): 1 in the last 3600 secs show less	Brute-Force
🇸🇬 Sofibox Cyberwatch	2022-03-25 19:19:12 (4 years ago)	[bad_ip: 52.252.111.102 [alert_level: Medium Risk [inbound(1)+outbound(0): 1 [target_port: 443 [clas ... show more [bad_ip: 52.252.111.102 [alert_level: Medium Risk [inbound(1)+outbound(0): 1 [target_port: 443 [class: nil [msg: SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) [csf_block_status: ok-ip-block-success [blcheck_ip_score: 98.45% (3/193) [blcheck_domain: "bl.fmb.la,all.s5h.net,dnsbl.spfbl.net" [blcheck_comment: "blcheck IPv4+IPv6 scanner v0.7.8 @ github.com/sofibox/blcheck" [log_suspicious_score: 5.26% [mod_security_alert: false [has_cidr24_network: false(0) show less	Web App Attack
🇨🇭 blinx	2022-03-25 18:30:20 (4 years ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇬🇧 findlab	2022-03-24 20:50:02 (4 years ago)	Backdrop CMS module - Request: //wp-includes/wlwmanifest.xml	Bad Web Bot Web App Attack
🇺🇸 Major Hostility	2022-03-24 17:24:14 (4 years ago)	"GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /xmlrpc.php?rsd HTTP/1.1" 403 "GET /blog/wp-inc ... show more "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /xmlrpc.php?rsd HTTP/1.1" 403 "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /media/wp-includes/wlwmanifest.xml HTTP/1.1" 404 show less	Web App Attack
🇺🇸 HJ5Ss4Ju	2022-03-24 07:12:50 (4 years ago)	Blocked by Wordfence (SID 1)	Web App Attack
🇫🇷 francoisunix	2022-03-23 13:36:31 (4 years ago)	52.252.111.102 - - [23/Mar/2022:17:36:28 +0000] "POST /xmlrpc.php HTTP/1.1" 401 425 "-" "Mozilla/5.0 ... show more 52.252.111.102 - - [23/Mar/2022:17:36:28 +0000] "POST /xmlrpc.php HTTP/1.1" 401 425 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 52.252.111.102 - - [23/Mar/2022:17:36:29 +0000] "POST /xmlrpc.php HTTP/1.1" 401 425 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 52.252.111.102 - - [23/Mar/2022:17:36:29 +0000] "POST /xmlrpc.php HTTP/1.1" 401 425 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" show less	Web App Attack
🇳🇱 CryptoYakari	2022-03-22 18:25:00 (4 years ago)	52.252.111.102 - - [23/Mar/2022:01:24:55 +0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 404 358 ... show more 52.252.111.102 - - [23/Mar/2022:01:24:55 +0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 404 3589 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 52.252.111.102 - - [23/Mar/2022:01:24:55 +0300] "GET //xmlrpc.php?rsd HTTP/1.0" 404 201 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 52.252.111.102 - - [23/Mar/2022:01:24:56 +0300] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0" 404 3589 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 52.252.111.102 - - [23/Mar/2022:01:24:56 +0300] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.0" 404 3589 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 52.252.111.102 - - [23/Mar/2022:01:24:56 +0300] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0" 404 35 ... show less	Web Spam Blog Spam Bad Web Bot Web App Attack
🇩🇪 AMRE	2022-03-22 12:39:24 (4 years ago)	xmlrpc	Brute-Force
🇩🇪 Tamsy	2022-03-22 09:16:26 (4 years ago)	Web app vulnerability scanning	Web App Attack

Showing 1 to 15 of 69 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 115.190.165.165

🇭🇰 45.207.196.123

🇩🇪 213.209.159.226

🇹🇼 198.235.24.40

🇸🇬 101.47.159.125

🇷🇺 95.188.91.101

🇳🇱 91.92.40.13

🇳🇱 77.83.39.94

🇰🇷 58.229.141.26

🇵🇱 45.141.233.195

🇲🇽 187.190.35.163

🇮🇩 180.243.3.165

🇰🇷 175.206.1.60

🇺🇸 172.253.0.27

🇨🇳 123.10.118.206

🇬🇧 89.37.172.133

🇺🇸 47.89.234.183

🇸🇬 47.82.13.128

🇺🇸 45.88.186.227

🇩🇪 18.195.149.54