JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.255.198.61

52.255.198.61 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 58%: ?

58%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.255.198.61

Whois 52.255.198.61

IP Abuse Reports for 52.255.198.61:

This IP address has been reported a total of 19 times from 9 distinct sources. 52.255.198.61 was first reported on June 2nd 2026, and the most recent report was 14 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 07:20:33 (14 minutes ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 03:20:30.693313 2026] [security2:error] [pid 24186:tid 24186] [client 52.255.198.61:49986] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maycockfamily.com"] [uri "/.git/HEAD"] [unique_id "ajozvg5rOMzVhQY3f0Il_gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 sockominfo	2026-06-23 07:00:56 (33 minutes ago)	Access to sensitive files detected w/ specific boundary.. Threat Score: 5.2/10 (MEDIUM). Confidence: ... show more Access to sensitive files detected w/ specific boundary.. Threat Score: 5.2/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 2.9/10 (Low). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇫🇷 MatStef132	2026-06-23 06:42:38 (52 minutes ago)	MatShield L7: blocked on mathost.eu (secret-path-probe)	DDoS Attack
🇺🇸 TPI-Abuse	2026-06-23 06:36:21 (58 minutes ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 02:36:14.964601 2026] [security2:error] [pid 25136:tid 25154] [client 52.255.198.61:32828] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mateo-abogados.com"] [uri "/.git/HEAD"] [unique_id "ajopXvbs1x-vqgfYNRGiXwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 06:15:53 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 02:15:47.830877 2026] [security2:error] [pid 28113:tid 28113] [client 52.255.198.61:45704] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martinvjohnson.com"] [uri "/.git/HEAD"] [unique_id "ajokk2O629tHQ-pWA4fbWQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 05:52:04 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 01:52:00.285695 2026] [security2:error] [pid 22208:tid 22208] [client 52.255.198.61:34638] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marinestorage.com"] [uri "/.git/HEAD"] [unique_id "ajofAHQgoro3R3OYLY9y8QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 05:35:20 (1 hour ago)	(mod_security) mod_security (id:949110) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:949110) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 01:34:57.021199 2026] [security2:error] [pid 9533:tid 9533] [client 52.255.198.61:40554] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "maricotippett.com"] [uri "/.git/HEAD"] [unique_id "ajobAQsSHSjf9kckVREbdwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-23 05:06:37 (2 hours ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 04:58:41 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 00:58:38.181387 2026] [security2:error] [pid 10455:tid 10455] [client 52.255.198.61:59480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marcosmelero.com"] [uri "/.git/HEAD"] [unique_id "ajoSfqwXPJdDVeX8CSLndwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 04:28:32 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 00:28:25.487222 2026] [security2:error] [pid 5200:tid 5252] [client 52.255.198.61:45902] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mandhco.com"] [uri "/.git/HEAD"] [unique_id "ajoLaXvCzGuL-0uXDiZRXQAAAgM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 04:13:02 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 00:12:54.467396 2026] [security2:error] [pid 6166:tid 6166] [client 52.255.198.61:55822] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manaplas.com"] [uri "/.git/HEAD"] [unique_id "ajoHxoWbHQlpMrpqfNMLyAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-06-23 03:55:01 (3 hours ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 52.255.198.61 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 52.255.198.61 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 03:14:34 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 23:14:27.326110 2026] [security2:error] [pid 10276:tid 10276] [client 52.255.198.61:33770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manty.com"] [uri "/.git/HEAD"] [unique_id "ajn6E53ZFBEY5asSAf2iPAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 02:20:31 (5 hours ago)	(mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 52.255.198.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 22:20:25.361826 2026] [security2:error] [pid 11127:tid 11127] [client 52.255.198.61:55706] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mailbox.krakowski.net"] [uri "/.git/HEAD"] [unique_id "ajntaabTaoyyj-Dhzbgq6AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2026-06-22 10:06:03 (21 hours ago)	2026-06-22 @ 12:06:02 (CET) ~ Blocked for trying to access: /plugins/system/jcemediabox/js/jcemediab ... show more 2026-06-22 @ 12:06:02 (CET) ~ Blocked for trying to access: /plugins/system/jcemediabox/js/jcemediabox.js show less	Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.232.3.17

🇮🇳 168.144.177.195

🇮🇱 2a05:d025:668:3b00:f1fa:f86e:9aae:b9e1

🇲🇾 180.72.193.156

🇷🇺 178.185.183.116

🇧🇷 160.20.170.245

🇩🇪 138.246.253.24

🇨🇳 106.13.181.87

🇺🇸 65.49.1.176

🇺🇸 64.62.197.224

🇳🇱 51.158.173.123

🇳🇱 45.95.29.252

🇰🇷 36.39.140.2

🇺🇸 20.29.90.34

🇬🇧 195.96.139.147

🇳🇿 121.73.162.163

🇨🇳 103.217.187.199

🇧🇬 84.252.66.174

🇺🇸 66.132.186.218

🇳🇱 51.158.173.124