JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 51.8.121.170

51.8.121.170 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 66%: ?

66%

ISP	Microsoft Deutschland MCIO GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 51.8.121.170

Whois 51.8.121.170

IP Abuse Reports for 51.8.121.170:

This IP address has been reported a total of 13 times from 12 distinct sources. 51.8.121.170 was first reported on May 3rd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 03:12:23 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 51.8.121.170 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 51.8.121.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 23:12:16.781758 2026] [security2:error] [pid 31228:tid 31304] [client 51.8.121.170:59525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.133"] [uri "/.git/HEAD"] [unique_id "ajIQkJAg7gSAUmj1unjH_QAAAc4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Axel	2026-06-17 01:52:44 (1 day ago)	Blocked by UFW on MVI [2095/tcp] \| SPT: 59437 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2095/tcp] \| SPT: 59437 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-17 01:38:41 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 51.8.121.170 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 51.8.121.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 21:38:37.371306 2026] [security2:error] [pid 22831:tid 22831] [client 51.8.121.170:59435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.247"] [uri "/.git/HEAD"] [unique_id "ajH6nVSdbQA1R4Su_l4JfwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 centurion	2026-06-17 01:17:34 (1 day ago)	Unauthorized attempt on lab [2078/tcp] Source port: 59460 TTL: 45 Packet length: 60 TOS: 0x00 https: ... show more Unauthorized attempt on lab [2078/tcp] Source port: 59460 TTL: 45 Packet length: 60 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇸🇪 donarev419	2026-06-17 01:05:19 (1 day ago)	Port scan detected on port 2083 (connection without data transfer)	Port Scan
🇳🇱 GabrielJST	2026-06-17 00:48:28 (1 day ago)	Port Scan detected from 51.8.121.170 (US/United States/-).	Port Scan
🇷🇸 Scan	2026-06-17 00:23:26 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-06-16 23:26:57 (1 day ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇵🇱 sefinek.net	2026-06-02 09:09:40 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2086 [1], 2083 [1] TCP Reported by: https://gith ... show more Honeypot hit: Empty payload (likely service probe); 2086 [1], 2083 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇧🇷 SOC PR	2026-06-02 08:16:14 (2 weeks ago)	IPS: Sensitive Configuration File Disclosure.	Hacking
🇦🇺 LiftUp Hosting	2026-06-02 08:09:58 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2087 [1], 2082 [1] TCP	Port Scan
Anonymous	2026-06-02 07:02:01 (2 weeks ago)	2026-06-02T08:02:00.511180+01:00 vps kernel: [42123888.801856] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-02T08:02:00.511180+01:00 vps kernel: [42123888.801856] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=51.8.121.170 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=13856 DF PROTO=TCP SPT=43072 DPT=8080 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇯🇵 demonsword	2026-05-03 17:27:09 (1 month ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: edge-mqtt.facebook.com:80 show less	Open Proxy Port Scan

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 85.217.140.29

🇷🇺 37.204.22.234

🇳🇱 185.93.89.43

🇨🇳 182.119.229.31

🇨🇳 106.117.105.59

🇳🇱 91.92.40.35

🇳🇱 91.92.40.14

🇺🇸 66.132.224.28

🇺🇸 66.132.195.74

🇳🇱 45.153.34.195

🇺🇸 34.73.208.3

🇺🇸 20.168.116.70

🇺🇸 18.97.5.82

🇺🇸 18.97.5.54

🇮🇳 2404:6800:4000:1004::122

🇨🇳 221.197.252.109

🇧🇪 198.235.24.240

🇨🇳 182.138.158.234

🇸🇬 145.223.130.172

🇷🇴 141.98.83.240