JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.119.237.65

135.119.237.65 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 70%: ?

70%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.119.237.65

Whois 135.119.237.65

IP Abuse Reports for 135.119.237.65:

This IP address has been reported a total of 25 times from 19 distinct sources. 135.119.237.65 was first reported on October 16th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 [email protected]	2026-06-28 02:27:03 (1 day ago)	Attack attempt against Interwebbi servers; Port Scan detected from 135.119.237.65 (US/United State ... show more Attack attempt against Interwebbi servers; Port Scan detected from 135.119.237.65 (US/United States/-). 5 hits in the last 401 seconds; IP: 135.119.237.65; Ports: *; Direction: 0; Trigger: PS_LIMIT; show less	Brute-Force
🇩🇪 igerman	2026-06-28 01:58:31 (1 day ago)	caddy probes: env-probe: GET /.env.backup(DROP), GET /.env.development(DROP), GET /.env.old(DROP), G ... show more caddy probes: env-probe: GET /.env.backup(DROP), GET /.env.development(DROP), GET /.env.old(DROP), GET /.env.prod(DROP), GET /.env.production(DROP), GET /.env.save(DROP), GET /.env_production(DROP) \| git-repo: GET /.git/config(DROP), GET /.git/refs/heads/main(DROP), GET /.git/refs/heads/master(DROP) \| web: GET /.git-credentials(DROP), GET /actuator/env(DROP), GET /app/config/parameters.yml(DROP), GET /backup.sql(DROP), GET /backup/database.sql(DROP), GET /config.php(DROP), GET /config/config.php(DROP), GET /config/database.php(DROP), GET /config/database.yml(DROP), GET /dump.sql(DROP), GET /includes/config.php(DROP), GET /info.php(DROP), GET /phpinfo.php(DROP) \| wordpress: GET /wp-config.php(DROP), GET /wp-config.php.bak(DROP) show less	Web App Attack
🇷🇸 Scan	2026-06-28 00:29:33 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇪 boxed-it	2026-06-27 23:52:05 (1 day ago)	GET /.git/refs/heads/master (Tarpitted for 1m28s, wasted 5.27kB)	Web App Attack
🇺🇸 MPL	2026-06-27 23:26:31 (1 day ago)	tcp port scan (16 or more attempts)	Port Scan
Anonymous	2026-06-13 20:24:41 (2 weeks ago)	Port Scan Attack.	Port Scan
🇺🇸 drewf.ink	2026-06-13 19:10:11 (2 weeks ago)	[19:10] Port scanning. Port(s) scanned: TCP/5000, TCP/2096, TCP/2095	Port Scan
🇺🇸 Axel	2026-06-13 17:26:35 (2 weeks ago)	Blocked by UFW on MVI [8880/tcp] \| SPT: 28680 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [8880/tcp] \| SPT: 28680 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-08 08:34:07 (3 weeks ago)	ModSecurity rejected a query	Bad Web Bot Web App Attack
Anonymous	2026-06-08 05:26:33 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-07 22:34:39 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 135.119.237.65 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.119.237.65 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 18:34:34.822395 2026] [security2:error] [pid 8557:tid 8557] [client 135.119.237.65:30922] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.106"] [uri "/.git/HEAD"] [unique_id "aiXx-hrI0b9ahr5bfqz7lwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-06-07 22:09:22 (3 weeks ago)	Too many 404 requests [BY]	Web App Attack
🇦🇺 2000cn.com.au	2026-06-07 21:38:42 (3 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇫🇷 masterguru	2026-06-07 21:18:02 (3 weeks ago)	Host header is a numeric IP address. Pattern match "^ (920350-131)	Hacking Bad Web Bot
🇺🇸 MPL	2026-06-07 21:16:11 (3 weeks ago)	tcp port scan (12 or more attempts)	Port Scan

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.207

🇦🇷 181.1.175.80

🇵🇱 178.219.102.18

🇲🇽 177.241.234.59

🇺🇸 108.165.146.11

🇨🇳 106.117.111.142

🇨🇳 106.117.109.100

🇨🇳 106.117.107.211

🇩🇪 104.207.51.106

🇺🇸 103.196.9.146

🇫🇷 91.231.89.161

🇳🇱 68.66.251.43

🇮🇩 43.157.243.191

🇧🇷 191.36.154.175

🇮🇩 180.252.255.109

🇲🇾 180.75.235.57

🇲🇾 180.73.10.160

🇫🇮 147.185.133.245

🇮🇳 125.22.249.36

🇲🇦 105.158.141.249