JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.161.59.145

52.161.59.145 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Cheyenne, Wyoming

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.161.59.145

Whois 52.161.59.145

IP Abuse Reports for 52.161.59.145:

This IP address has been reported a total of 47 times from 33 distinct sources. 52.161.59.145 was first reported on November 18th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 gu-alvareza	2026-06-03 07:05:14 (4 days ago)	Spring.Boot.Actuator.Unauthorized.Access	Brute-Force
🇧🇾 lns.bz	2026-06-03 00:01:10 (4 days ago)	.env scanning [BY]	Web App Attack
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (5 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇳🇱 oisecnet	2026-06-02 21:02:07 (5 days ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-02. 25 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-02. 25 requests from this IP. show less	Brute-Force Web App Attack SSH
🇺🇸 MPL	2026-06-02 20:48:54 (5 days ago)	tcp port scan (8 or more attempts)	Port Scan
🇵🇱 nfsec.pl	2026-06-02 20:19:31 (5 days ago)	Detected: TCP scan on port: 8080 with flags: SYN	Port Scan
🇫🇷 Richie	2026-06-02 20:00:08 (5 days ago)	[HOST2] Port Scan detected	Port Scan
🇺🇸 RAP	2026-06-02 18:19:38 (5 days ago)	2026-06-02 18:19:38 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 lnklnx	2026-06-02 17:32:23 (5 days ago)	www.lnklnx.com:80 52.161.59.145 - - [02/Jun/2026:12:32:20 -0500] "GET /.git/config HTTP/1.1" 301 595 ... show more www.lnklnx.com:80 52.161.59.145 - - [02/Jun/2026:12:32:20 -0500] "GET /.git/config HTTP/1.1" 301 595 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" ... show less	Web App Attack
🇺🇸 xmission.com	2026-06-02 17:31:13 (5 days ago)	Blocked by UFW (TCP on 8080) Source port: 57536 TTL: 52 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 8080) Source port: 57536 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 52.161.59.145) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇹🇷 Threat.live	2026-06-02 17:10:03 (5 days ago)	Suspicious Connection Attempts	Brute-Force
🇯🇵 VXG-NET	2026-06-02 17:09:04 (5 days ago)	port=80, indicator_type=info-leak	Hacking
🇺🇸 RogueAutomata	2026-06-02 17:05:00 (5 days ago)	Detected malicious request: GET /.git/config Detections triggered: Environment/config probe Access ... show more Detected malicious request: GET /.git/config Detections triggered: Environment/config probe Access via IP addr (v4) show less	Web App Attack
🇺🇸 Cyber Crusader	2026-06-02 13:56:50 (5 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 gu-alvareza	2026-06-02 07:05:38 (5 days ago)	HTPasswd.Access	Brute-Force

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 206.189.191.70

🇮🇳 206.189.143.89

🇷🇺 188.187.152.106

🇺🇸 172.253.86.115

🇺🇸 2620:171:f1:f0::235

🇮🇳 206.189.133.245

🇮🇳 206.189.130.118

🇬🇧 206.189.112.134

🇺🇸 205.185.127.60

🇭🇰 150.5.150.69

🇨🇳 111.26.95.126

🇺🇸 107.150.98.168

🇮🇷 85.208.253.44

🇫🇷 80.87.206.93

🇫🇷 80.14.10.34

🇧🇬 79.124.60.146

🇺🇸 66.132.172.149

🇰🇷 59.25.152.167

🇺🇸 34.16.7.161

🇺🇸 205.185.126.121