JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.119.132.147

135.119.132.147 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.119.132.147

Whois 135.119.132.147

IP Abuse Reports for 135.119.132.147:

This IP address has been reported a total of 50 times from 42 distinct sources. 135.119.132.147 was first reported on August 6th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 BIV	2026-06-03 06:54:46 (1 day ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 2083,2086,443,80,8443. ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 2083,2086,443,80,8443. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇺🇸 Starburst SysOp Team	2026-06-03 06:31:13 (1 day ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-1)	Hacking Bad Web Bot
🇹🇭 Sawasdee	2026-06-03 06:30:10 (1 day ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇺🇸 MPL	2026-06-03 06:14:45 (1 day ago)	tcp port scan (10 or more attempts)	Port Scan
🇹🇷 SeczarSecureOps	2026-06-03 05:15:31 (1 day ago)	Seczar SecureOps — Port Scan Detection (6 events) — quarantined 43200m on fgdcapi	Port Scan
🇮🇪 AutosOnShow	2026-06-03 05:11:05 (1 day ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-03 05:10:08.877 \|	Web App Attack
🇹🇷 Threat.live	2026-06-03 04:05:03 (1 day ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 pixiekat	2026-06-03 03:26:51 (1 day ago)	[Wed Jun 03 03:26:46.981155 2026] [authz_core:error] [pid 80520:tid 80565] [client 135.119.132.147:5 ... show more [Wed Jun 03 03:26:46.981155 2026] [authz_core:error] [pid 80520:tid 80565] [client 135.119.132.147:55049] AH01630: client denied by server configuration: /var/www/html/.env [Wed Jun 03 03:26:48.355111 2026] [authz_core:error] [pid 80689:tid 80713] [client 135.119.132.147:55155] AH01630: client denied by server configuration: /var/www/html/.env.local [Wed Jun 03 03:26:48.967853 2026] [authz_core:error] [pid 80518:tid 80542] [client 135.119.132.147:55040] AH01630: client denied by server configuration: /var/www/html/.env.production [Wed Jun 03 03:26:49.926953 2026] [authz_core:error] [pid 80689:tid 80699] [client 135.119.132.147:55042] AH01630: client denied by server configuration: /var/www/html/.env.backup [Wed Jun 03 03:26:50.591334 2026] [authz_core:error] [pid 80520:tid 80546] [client 135.119.132.147:55163] AH01630: client denied by server configuration: /var/www/html/.env.save ... show less	Brute-Force
🇵🇱 Yachiyo Runami	2026-06-03 03:26:36 (1 day ago)	Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 42-4 ... show more Port Scan on Honeypot \| Ports: 8080/HTTP-proxy, 80/HTTP \| Proto: TCP(2) \| Flags: all SYN \| TTL: 42-44 \| Len: 60B(2x) \| Win: 64240(2) \| F2B/ufw-honeypot@2026-06-03T03:26:36Z show less	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-03 03:22:38 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 135.119.132.147 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.132.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 23:22:30.693011 2026] [security2:error] [pid 30242:tid 30242] [client 135.119.132.147:54284] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.88"] [uri "/.env.production"] [unique_id "ah-d9kyzLnO8QKlG57qd5wAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 Fusty	2026-06-03 03:18:53 (1 day ago)	Unauthorized attempt on (TCP on port 2082). Source port: 54128 TTL: 43 Packet length: 60 Timestamp: ... show more Unauthorized attempt on (TCP on port 2082). Source port: 54128 TTL: 43 Packet length: 60 Timestamp: 2026-06-03 05:18:53 show less	Port Scan
🇺🇸 MPL	2026-06-03 03:14:33 (1 day ago)	tcp port scan (16 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-03 02:59:11 (1 day ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇳🇱 soverin	2026-06-03 02:51:45 (1 day ago)	Network scan on port 443	Email Spam
Anonymous	2026-06-03 02:47:02 (1 day ago)	Malicious activity detected	Hacking Web App Attack

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 182.191.77.164

🇺🇸 96.125.170.174

🇧🇬 91.191.209.198

🇺🇸 40.160.2.239

🇨🇳 14.21.56.148

🇵🇪 161.132.38.234

🇮🇳 128.185.33.241

🇩🇪 85.192.31.14

🇬🇧 45.82.76.107

🇮🇶 37.238.63.132

🇺🇸 35.169.240.53

🇧🇪 34.156.79.181

🇮🇳 14.98.203.198

🇨🇦 167.114.139.16

🇬🇧 92.31.1.102

🇫🇮 65.21.0.152

🇮🇳 64.227.170.224

🇳🇱 64.89.162.55

🇺🇸 64.62.156.84

🇳🇱 45.198.224.22