JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.123.183.58

52.123.183.58 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 5%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.123.183.58

Whois 52.123.183.58

IP Abuse Reports for 52.123.183.58:

This IP address has been reported a total of 16 times from 1 distinct source. 52.123.183.58 was first reported on May 26th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 19:25:18 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:25:10.587813 2026] [security2:error] [pid 27357:tid 27357] [client 52.123.183.58:39424] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.cbcconsult.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "aj2AlscrT5cPSR0rT7B7GwAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 14:44:30 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 10:44:21.382168 2026] [security2:error] [pid 14364:tid 14364] [client 52.123.183.58:4610] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.cbcconsult.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "ah7sRXftaL-rnNFzYF7-vgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 20:22:53 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 16:22:46.325387 2026] [security2:error] [pid 17754:tid 17754] [client 52.123.183.58:18497] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.4azadi.org\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.4azadi.org"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "ahNeFhsimt5APYQqRJ4zewAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 13:36:31 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 09:36:25.558169 2026] [security2:error] [pid 23865:tid 23865] [client 52.123.183.58:26497] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.feaverslane.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "ahBb2dQ3_pQQgDe0-SwScwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 17:04:50 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 12:04:43.540162 2026] [security2:error] [pid 7804:tid 7804] [client 52.123.183.58:34693] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.feaverslane.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com"] [unique_id "aZXxK20nn3f1GUhRqzZRfAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-30 18:52:10 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 30 13:52:04.698001 2026] [security2:error] [pid 17630:tid 17630] [client 52.123.183.58:9216] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.cbcconsult.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aXz91KMlZo3dFaLxwW7rfAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-13 07:47:38 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 13 02:47:34.067459 2025] [security2:error] [pid 32227:tid 32227] [client 52.123.183.58:52096] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.peaksalesnw.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.peaksalesnw.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aT0aFmT01AjY2a5WT65xFwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 20:10:47 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 15:10:42.607125 2025] [security2:error] [pid 9244:tid 9244] [client 52.123.183.58:30848] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.cbcconsult.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aTcwwoEUGlFrkbmsSo02wgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-15 05:09:29 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 00:09:22.144177 2025] [security2:error] [pid 17527:tid 17527] [client 52.123.183.58:29760] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.cmcnow.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cmcnow.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aRgLAuRlZFVyJNnU7WGKSQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-30 02:41:53 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 29 22:41:47.688441 2025] [security2:error] [pid 8186:tid 8186] [client 52.123.183.58:53184] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.feaverslane.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aQLQa3eklvbo0A4tcUKLKAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-22 17:01:43 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 22 13:01:40.527831 2025] [security2:error] [pid 11942:tid 12016] [client 52.123.183.58:64577] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.sasintegrated.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.sasintegrated.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aPkN9LywCu6KohGTxUjHzAAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-15 14:27:32 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 15 10:27:25.355214 2025] [security2:error] [pid 26497:tid 26497] [client 52.123.183.58:43009] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.varalla.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.varalla.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aO-vTdj4Mw5WXQ9ZuGi10gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-06 14:48:44 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 06 10:48:39.598641 2025] [security2:error] [pid 3692441:tid 3692441] [client 52.123.183.58:62464] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.cbcconsult.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.cbcconsult.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aOPWx2x-I6bceOCIm97bWgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-08 17:14:33 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 08 13:14:28.634783 2025] [security2:error] [pid 29701:tid 29701] [client 52.123.183.58:10369] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.varalla.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.varalla.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aG1R9BO9FeDxDgeCGliiBgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-27 00:36:23 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 52.123.183.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 26 20:36:17.078961 2025] [security2:error] [pid 1282344:tid 1282344] [client 52.123.183.58:48199] [client 52.123.183.58] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.feaverslane.com\|F\|2"] [data ".com#[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.feaverslane.com"] [uri "/autodiscover/autodiscover.json/v1.0/live.com#[email protected]"] [unique_id "aDUJAQHF7hj7i0VcbSjE8QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇴 196.216.60.5

🇭🇺 185.111.208.245

🇮🇳 182.19.35.57

🇳🇱 45.156.87.93

🇳🇱 45.148.10.152

🇭🇰 152.32.213.68

🇺🇸 147.185.132.135

🇨🇱 136.248.247.188

🇺🇸 108.24.173.108

🇨🇳 106.38.205.224

🇫🇷 91.196.152.219

🇮🇩 49.0.24.107

🇸🇬 47.84.106.109

🇺🇸 45.92.229.9

🇺🇸 40.124.174.209

🇺🇸 40.119.41.182

🇮🇩 36.72.206.32

🇺🇸 20.29.21.25

🇻🇳 14.241.33.188

🇺🇸 13.83.90.155