JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.55.210.229

65.55.210.229 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 23%: ?

23%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Hostname(s)	msnbot-65-55-210-229.search.msn.com
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Moses Lake, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.55.210.229

Whois 65.55.210.229

IP Abuse Reports for 65.55.210.229:

This IP address has been reported a total of 10 times from 8 distinct sources. 65.55.210.229 was first reported on July 23rd 2025, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇷 setupgr	2026-06-13 14:03:48 (20 hours ago)	(mod_security) mod_security (id:11000010) triggered by 65.55.210.229: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000010) triggered by 65.55.210.229: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 17:03:47.618801 2026] [security2:error] [pid 864848:tid 864986] [remote 65.55.210.229:56769] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "bingbot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "11000010"] [msg "BLOCKED BOT: bingbot - in sea-sound.com"] [severity "CRITICAL"] [hostname "sea-sound.com"] [uri "/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css"] [unique_id "ai1jQ9p_WC-pRDvpMAChjAABEBI"], referer: https://sea-sound.com/ show less	Port Scan
🇷🇺 Mga Admin	2026-06-12 15:53:17 (1 day ago)	65.55.210.229 - - [12/Jun/2026:22:53:16 +0700] "GET /ukbb_exome_matrix/krtap1-3.rdata HTTP/1.1" 404 ... show more 65.55.210.229 - - [12/Jun/2026:22:53:16 +0700] "GET /ukbb_exome_matrix/krtap1-3.rdata HTTP/1.1" 404 196 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/136.0.0.0 Safari/537.36" ... show less	Web App Attack
🇦🇺 MAGIC	2026-05-23 02:23:33 (3 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-05-20 00:47:16 (3 weeks ago)	65.55.210.229 - - [20/May/2026:00:47:12 +0000] "GET /svg/moon-phase-7.svg HTTP/2.0" 444 0 "https://t ... show more 65.55.210.229 - - [20/May/2026:00:47:12 +0000] "GET /svg/moon-phase-7.svg HTTP/2.0" 444 0 "https://taiwan.suann.net/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/146.0.7680.165 Safari/537.36" 65.55.210.229 - - [20/May/2026:00:47:13 +0000] "GET /svg/moon-phase-6.svg HTTP/2.0" 444 0 "https://taiwan.suann.net/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/146.0.7680.165 Safari/537.36" 65.55.210.229 - - [20/May/2026:00:47:13 +0000] "GET /svg/moon-phase-5.svg HTTP/2.0" 444 0 "https://taiwan.suann.net/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/146.0.7680.165 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 09:34:21 (1 month ago)	(mod_security) mod_security (id:243420) triggered by 65.55.210.229 (msnbot-65-55-210-229.search.msn. ... show more (mod_security) mod_security (id:243420) triggered by 65.55.210.229 (msnbot-65-55-210-229.search.msn.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 05:34:16.597410 2026] [security2:error] [pid 13776:tid 13776] [client 65.55.210.229:52357] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.hodlmoser.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.hodlmoser.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ae3cD_ISVj5qazCogYWxygAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 Anytech	2026-04-02 21:40:59 (2 months ago)	Blocked by Conn-Monitor: Automated bot activity	Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-02-21 01:23:07 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇳 ThreatBook.io	2026-02-01 22:23:45 (4 months ago)	ThreatBook Intelligence: Search Engine Crawler,Whitelist more details on https://threatbook.io/ip/65 ... show more ThreatBook Intelligence: Search Engine Crawler,Whitelist more details on https://threatbook.io/ip/65.55.210.229 2026-02-01 05:10:49 /i18n/zh_CN/vui.txt show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-09 12:38:18 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 65.55.210.229 (msnbot-65-55-210-229.search.msn. ... show more (mod_security) mod_security (id:210730) triggered by 65.55.210.229 (msnbot-65-55-210-229.search.msn.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 09 07:38:15.664557 2026] [security2:error] [pid 26923:tid 26923] [client 65.55.210.229:35268] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|civilwarzone.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "aWD2tweIhwPaVXqOBj7SrgAAAAg"], referer: https://civilwarzone.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇴 j458rjqwi348fhjq46	2025-07-23 08:37:17 (10 months ago)	Malicious IP detected by WAF with anomaly score 11.0. Attack types: Suspicious short random path, Ex ... show more Malicious IP detected by WAF with anomaly score 11.0. Attack types: Suspicious short random path, Exposure of ASPX page, Exposure of environment file (.env) (+1 more). Activity: 2218 requests to 495 URLs. Period: 2025-07-23 01:40:35 - 2025-07-23 01:40:35 (America/Bogota). Origin: US. Source: Automated WAF log analysis. show less	Hacking Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 195.46.129.82

🇰🇼 62.150.237.107

🇫🇷 51.178.111.225

🇨🇳 39.171.240.69

🇧🇪 34.77.185.95

🇬🇧 2a06:4880:c000::f8

🇬🇧 198.105.122.87

🇲🇿 196.28.226.66

🇺🇸 162.216.149.221

🇰🇷 118.37.214.187

🇺🇸 40.124.173.90

🇧🇪 34.53.225.166

🇺🇸 4.227.135.144

🇨🇦 208.96.233.67

🇮🇳 125.20.210.182

🇩🇪 69.5.169.57

🇩🇪 69.5.169.32

🇺🇸 48.214.144.79

🇨🇳 36.139.239.23

🇮🇳 34.93.71.45