JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.52.170.96

65.52.170.96 was found in our database!

This IP was reported 255 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.52.170.96

Whois 65.52.170.96

IP Abuse Reports for 65.52.170.96:

This IP address has been reported a total of 255 times from 221 distinct sources. 65.52.170.96 was first reported on June 3rd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Peregrine	2026-06-08 03:14:28 (1 week ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 65.52.170.96 172.71.214.123 - - [04/Jun/2026:01:07: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 65.52.170.96 172.71.214.123 - - [04/Jun/2026:01:07:21 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-06 03:14:50 (1 week ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 65.52.170.96 172.71.214.123 - - [04/Jun/2026:01:07: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 65.52.170.96 172.71.214.123 - - [04/Jun/2026:01:07:21 -0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇩🇪 Holger	2026-06-06 00:48:06 (1 week ago)	WordPress WebAttack	Brute-Force Web App Attack
🇪🇸 Gem	2026-06-05 22:10:00 (1 week ago)	Unauthorized web scan.	Web App Attack
Anonymous	2026-06-05 14:08:17 (1 week ago)	Trying to access config files	Web App Attack
🇫🇮 geot	2026-06-05 13:51:15 (1 week ago)	WordPress scanning bot	Hacking Bad Web Bot Web App Attack
🇭🇺 DumaNet	2026-06-05 10:14:00 (1 week ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 04. 12:10:25 Source IP: 65.52. ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 04. 12:10:25 Source IP: 65.52.170.96 Portion of the log(s): 65.52.170.96 - [04/Jun/2026:12:10:25 +0200] "GET /erty.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:24 +0200] "GET /06.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:24 +0200] "GET /vgtyu.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:24 +0200] "GET /xoot.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:24 +0200] "GET /666.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:24 +0200] "GET /kolda.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:23 +0200] "GET /xqq.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:23 +0200] "GET /myfile.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:23 +0200] "GET /wp-act.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026:12:10:23 +0200] "GET /wp5.php HTTP/1.1" 404 153 "-" "-" 65.52.170.96 - [04/Jun/2026 show less	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-05 05:14:06 (1 week ago)	25 attacks on PHP URLs: GET /black.php HTTP/1.1	Web App Attack
Anonymous	2026-06-05 00:07:52 (1 week ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: HK, Attack patterns: WordPress scanning, Backup file probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-04 22:00:40 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-04	Web App Attack SSH Hacking
Anonymous	2026-06-04 21:35:58 (1 week ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
🇳🇱 oisecnet	2026-06-04 21:02:55 (1 week ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-04. 8 requests from this I ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-04. 8 requests from this IP. show less	Brute-Force Web App Attack SSH
Anonymous	2026-06-04 20:46:45 (1 week ago)	Portscan: TCP/80 (6x)	Port Scan
Anonymous	2026-06-04 17:17:03 (1 week ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇳🇱 JCB	2026-06-04 16:46:00 (1 week ago)	65.52.170.96 - - [04/Jun/2026:07:55:26 +0300] "GET /classgoto24.php HTTP/1.1" 404 456 "-" "-" 65.52 ... show more 65.52.170.96 - - [04/Jun/2026:07:55:26 +0300] "GET /classgoto24.php HTTP/1.1" 404 456 "-" "-" 65.52.170.96 - - [04/Jun/2026:07:55:27 +0300] "GET /cu.php HTTP/1.1" 404 456 "-" "-" ... show less	Web App Attack

Showing 1 to 15 of 255 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 118.33.113.91

🇺🇸 104.152.52.215

🇮🇩 103.249.19.137

🇮🇳 103.106.232.28

🇳🇬 102.88.137.213

🇺🇸 91.230.168.32

🇨🇦 85.217.149.36

🇮🇩 69.5.23.222

🇪🇬 62.193.91.121

🇸🇬 45.78.235.96

🇧🇪 34.38.149.165

🇮🇩 202.155.157.145

🇦🇷 200.89.159.59

🇵🇦 200.46.177.242

🇩🇪 151.243.11.37

🇺🇸 138.113.23.170

🇮🇳 135.235.138.43

🇰🇷 110.14.190.221

🇺🇸 74.125.17.248

🇻🇳 42.116.119.34