JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.119.238.192

135.119.238.192 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.119.238.192

Whois 135.119.238.192

IP Abuse Reports for 135.119.238.192:

This IP address has been reported a total of 95 times from 67 distinct sources. 135.119.238.192 was first reported on August 10th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-10 12:23:18 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 08:23:11.551604 2026] [security2:error] [pid 1664116:tid 1664116] [client 135.119.238.192:49582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cswiki.us"] [uri "/.git/config"] [unique_id "adjrr7Xwcdwotwl4FX0sIAAAAAA"], referer: https://outlook.live.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 ipoac.nl	2026-04-10 12:22:52 (1 month ago)	-:443 135.119.238.192 - - [10/Apr/2026:14:22:51 +0200] - "GET /.git/config HTTP/2.0" 404 43111 "http ... show more -:443 135.119.238.192 - - [10/Apr/2026:14:22:51 +0200] - "GET /.git/config HTTP/2.0" 404 43111 "https://chat.openai.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.1; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-10 12:01:06 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 08:01:02.651978 2026] [security2:error] [pid 1560842:tid 1560842] [client 135.119.238.192:50159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hillsboroughcountyresident.com.alanmariotti.com"] [uri "/.git/config"] [unique_id "adjmfuuCbVi2heGd1turtQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 11:28:52 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 07:28:45.682112 2026] [security2:error] [pid 1572186:tid 1572186] [client 135.119.238.192:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ac.cloudex.click"] [uri "/.git/config"] [unique_id "adje7Q-n6z5Ub1QOG1zbggAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 interbiznw.com	2026-04-10 11:12:24 (1 month ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 10:35:36 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 06:35:29.666567 2026] [security2:error] [pid 1291508:tid 1291537] [client 135.119.238.192:48128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "soluciona.biz"] [uri "/.git/config"] [unique_id "adjScbSPVzZyWQnxf7I9UAAAAVI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-10 10:30:57 (1 month ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 10:03:59 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 06:03:55.048339 2026] [security2:error] [pid 590545:tid 590545] [client 135.119.238.192:48670] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uhrmazhi.com.greighhouse.com"] [uri "/.git/config"] [unique_id "adjLCzzPmA9L3ylPfBLWOwAAAAs"], referer: https://medium.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 09:42:08 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.119.238.192 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 05:42:00.834397 2026] [security2:error] [pid 143456:tid 143456] [client 135.119.238.192:50128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jwwsb.jaspercity.com"] [uri "/.git/config"] [unique_id "adjF6NgyPjQcUIpEVpKn4AAAAAE"], referer: https://www.reddit.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bontekoe.technology	2026-03-28 01:01:38 (2 months ago)	Port scan or Brute-Force detected. (src_port=17344, dst_port=443)	Brute-Force
Anonymous	2026-03-06 01:15:43 (2 months ago)	[Thu Mar 5 22:29:12 2026 GMT] "xxxx.com Webmail Services"<[email protected]> [RDNS_NONE,PDS_ ... show more [Thu Mar 5 22:29:12 2026 GMT] "xxxx.com Webmail Services"<[email protected]> [RDNS_NONE,PDS_FRNOM_TODOM_NAKED_TO], Subject: Important Notice You have 3 unsent messages show less	Email Spam
Anonymous	2026-03-05 22:32:33 (2 months ago)	SMTP scanner - relay access denied	Brute-Force Exploited Host
🇺🇸 xmission.com	2026-03-05 22:03:07 (2 months ago)	Blocked 30 connection attempts due to Spamhaus RBL (RJCT05) in the past 4 hours. To request delistin ... show more Blocked 30 connection attempts due to Spamhaus RBL (RJCT05) in the past 4 hours. To request delisting, visit https://www.spamhaus.org/lookup/ to check your IP status and submit a delist request if eligible. show less	Email Spam
Anonymous	2026-02-13 08:30:07 (3 months ago)	\| Multiple SQL injection attempts from same source ip.(multiple servers)	Hacking SQL Injection Web App Attack
🇺🇸 pduggusa	2026-02-02 02:02:18 (4 months ago)	Detected attacking dugganusa.com at 2026-02-02T02:02:18.581Z \| Attack: Web Service \| Source: DugganU ... show more Detected attacking dugganusa.com at 2026-02-02T02:02:18.581Z \| Attack: Web Service \| Source: DugganUSA PreCog auto-block show less	Hacking

Showing 61 to 75 of 95 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 84.46.247.185

🇩🇴 45.172.152.74

🇹🇼 221.120.77.34

🇹🇭 117.121.214.50

🇨🇳 111.228.36.44

🇨🇳 61.136.246.87

🇺🇸 38.148.249.2

🇺🇸 24.197.29.113

🇺🇸 18.217.187.82

🇳🇱 212.8.251.106

🇻🇪 201.249.192.30

🇳🇮 190.212.210.126

🇺🇸 172.234.195.116

🇺🇸 162.216.150.16

🇰🇷 118.37.214.187

🇧🇼 41.223.73.183

🇬🇧 35.203.211.233

🇸🇪 213.66.145.107

🇮🇩 202.138.252.58

🇵🇰 182.190.220.126