JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.119.235.80

135.119.235.80 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 83%: ?

83%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.119.235.80

Whois 135.119.235.80

IP Abuse Reports for 135.119.235.80:

This IP address has been reported a total of 55 times from 42 distinct sources. 135.119.235.80 was first reported on November 28th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 Kepler-1649c	2026-06-21 10:05:11 (5 hours ago)	Detected Attack: HTPasswd.Access	Hacking
🇺🇸 MPL	2026-06-21 07:44:17 (7 hours ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-21 06:46:23 (8 hours ago)	(mod_security) mod_security (id:210492) triggered by 135.119.235.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.119.235.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 02:46:18.488858 2026] [security2:error] [pid 25780:tid 25780] [client 135.119.235.80:46083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.60"] [uri "/.git/HEAD"] [unique_id "ajeIunwV5YbhlAh-nCsPnAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇭 Sawasdee	2026-06-21 04:36:06 (10 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-21 04:31:54 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 135.119.235.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.119.235.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 00:31:49.099795 2026] [security2:error] [pid 6791:tid 6791] [client 135.119.235.80:46724] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.29"] [uri "/.git/HEAD"] [unique_id "ajdpNa415DR-Ful60408EgAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇬 Stoyko Stoykov	2026-06-17 22:01:16 (3 days ago)	135.119.235.80 - - [18/Jun/2026:01:01:15 +0300] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 ( ... show more 135.119.235.80 - - [18/Jun/2026:01:01:15 +0300] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇨🇦 alexbfr	2026-06-17 20:43:05 (3 days ago)	Fail2Ban Report, nginx-bot-trap jail: Automated honeypot detection.	Port Scan
🇦🇺 FireGuard Server	2026-06-17 19:30:02 (3 days ago)	Blocked by OPNsense firewall; 8 hits, proto=tcp, ports=2077,2078,2082,2083,2086,2087,2095,2096	Port Scan Hacking
🇯🇵 Kinsei Engineering Inc.	2026-06-17 18:59:39 (3 days ago)	UFW:High-frequency access to unused ports	Port Scan
Anonymous	2026-06-17 16:54:51 (3 days ago)	8 hits, proto=tcp, ports=2077,2078,2082,2083,2086,2087,2095,2096	Port Scan Hacking
🇩🇪 Blexyel	2026-06-09 16:40:44 (1 week ago)	135.119.235.80 - - [09/Jun/2026:18:40:43 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 ... show more 135.119.235.80 - - [09/Jun/2026:18:40:43 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" ... show less	Brute-Force Web App Attack
🇦🇺 PetePK	2026-06-06 11:29:03 (2 weeks ago)	Probed 8 time(s): TCP/2083, TCP/2082, TCP/443, TCP/80, TCP/2087, TCP/8080, TCP/8443, TCP/2086	Port Scan
🇺🇸 TPI-Abuse	2026-06-06 10:16:02 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 135.119.235.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:949110) triggered by 135.119.235.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 06:15:57.131933 2026] [security2:error] [pid 28899:tid 28899] [client 135.119.235.80:41748] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "192.64.150.239"] [uri "/.git/HEAD"] [unique_id "aiPzXW6BOWJQ730KvIXnDAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 tpjg	2026-06-06 10:04:26 (2 weeks ago)	Automated: 15 requests with error status in 120s window from 135.119.235.80. Evidence: /backup.sql:3 ... show more Automated: 15 requests with error status in 120s window from 135.119.235.80. Evidence: /backup.sql:301,/.htpasswd:301,/app/config/parameters.yml:301,/config.php:301,/.DS_Store:301,/server-status:301,/.aws/credentials:301,/wp-config.php.bak:301,/.env.save:301,/.env.backup:301,/.env.production:301,/.env.local:301,/.env:301,/.git/config:301,/.git/HEAD:301 show less	Web App Attack
Anonymous	2026-06-06 09:05:01 (2 weeks ago)	suspicious request in access.log	Web App Attack

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 106.13.109.25

🇮🇳 27.63.19.51

🇰🇷 211.248.157.125

🇬🇧 193.163.125.121

🇺🇸 192.210.198.84

🇭🇰 103.56.115.187

🇨🇿 78.44.192.210

🇮🇳 2401:4900:883c:ba58:a9ee:16b7:4884:faaa

🇺🇸 216.73.216.202

🇱🇹 194.165.16.164

🇺🇸 194.0.213.67

🇩🇪 167.94.146.79

🇮🇩 157.10.182.14

🇨🇳 121.37.99.180

🇮🇩 108.136.162.67

🇳🇱 91.92.40.12

🇩🇪 69.5.169.142

🇱🇹 45.227.254.170

🇮🇳 20.235.93.26

🇨🇦 20.220.56.65