JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.119.63.203

135.119.63.203 was found in our database!

This IP was reported 217 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.119.63.203

Whois 135.119.63.203

IP Abuse Reports for 135.119.63.203:

This IP address has been reported a total of 217 times from 174 distinct sources. 135.119.63.203 was first reported on May 26th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-26 14:55:58 (1 week ago)	PSCSERV WPSCAN 135.119.63.203	Bad Web Bot Web App Attack
🇫🇷 solution.it	2026-05-26 14:51:58 (1 week ago)	[Tue May 26 16:51:57.711785 2026] [php7:error] [pid 2779586:tid 2779586] [client 135.119.63.203:6264 ... show more [Tue May 26 16:51:57.711785 2026] [php7:error] [pid 2779586:tid 2779586] [client 135.119.63.203:62645] script '/var/www/html/aaa.php' not found or unable to stat show less	Web App Attack
🇫🇮 as211431.net	2026-05-26 14:50:32 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-admin/includes/index.php UA: Empty string This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 deskpass.com	2026-05-26 14:49:18 (1 week ago)	GET /special.php	Web App Attack
🇮🇩 soc-yk	2026-05-26 14:46:10 (1 week ago)	Type: suspicious_network_activity Threat: suspicious_public_web_client Risk: 100 Events: 175 Eviden ... show more Type: suspicious_network_activity Threat: suspicious_public_web_client Risk: 100 Events: 175 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇺🇸 S.O.B.A. Dev.	2026-05-26 14:46:07 (1 week ago)	Threat Blocked by BeeHive from (ASN:8075) (Network:Microsoft Corporation) (Host:soba.dev) (Method:GE ... show more Threat Blocked by BeeHive from (ASN:8075) (Network:Microsoft Corporation) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-05-26T14:46:07Z) show less	Brute-Force Web Spam Web App Attack
Anonymous	2026-05-26 14:43:05 (1 week ago)	(caddyscan) Scanner path probe from 135.119.63.203 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 135.119.63.203 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 135.119.63.203 - - [26/May/2026:14:26:58 +0000] "GET /wp-admin/includes/index.php HTTP/1.1" [REDACTED] 200 2627 135.119.63.203 - - [26/May/2026:14:27:01 +0000] "GET /wp-admin/maint/admin.php HTTP/1.1" [REDACTED] 200 2627 135.119.63.203 - - [26/May/2026:14:27:01 +0000] "GET /wp-admin/about.php HTTP/1.1" [REDACTED] 200 2627 135.119.63.203 - - [26/May/2026:14:43:01 +0000] "GET /wp-admin/css/colors/blue/ HTTP/1.1" [REDACTED] 200 2627 135.119.63.203 - - [26/May/2026:14:43:03 +0000] "GET /wp-admin/js/index.php HTTP/1.1" show less	Port Scan
🇫🇷 PacketFilter	2026-05-26 14:42:41 (1 week ago)	Fail2Ban	Hacking Web App Attack
Anonymous	2026-05-26 14:39:19 (1 week ago)	$f2bV_matches	Port Scan Hacking
Anonymous	2026-05-26 14:37:59 (1 week ago)	[redacted] 135.119.63.203 - - [26/May/2026:16:37:50 +0200] "GET /admin.php HTTP/1.1" 404 153130 "-" ... show more [redacted] 135.119.63.203 - - [26/May/2026:16:37:50 +0200] "GET /admin.php HTTP/1.1" 404 153130 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:51 +0200] "GET /admin.php HTTP/1.1" 404 153130 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:54 +0200] "GET /wp-content/themes/admin.php HTTP/1.1" 404 153233 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:55 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 153234 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:55 +0200] "GET /wp-content/themes/admin.php HTTP/1.1" 404 153233 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:55 +0200] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 153234 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:57 +0200] "GET /wp-includes/admin.php HTTP/1.1" 404 153142 "-" "-" [redacted] 135.119.63.203 - - [26/May/2026:16:37:58 +0200] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 404 196 "-" "- ... show less	Hacking Web App Attack
🇭🇺 whitehoodie	2026-05-26 14:32:10 (1 week ago)	AUTOMATED REPORT: Trying to access /wp-login.php	Hacking Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-05-26 14:31:31 (1 week ago)	Try to access /wp-content/plugins/hellopress/wp_filemanager.php	Web App Attack
🇲🇾 Rizzy	2026-05-26 14:31:03 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇳🇱 ConsulHosting	2026-05-26 14:29:18 (1 week ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇺🇸 kosada.com	2026-05-26 14:24:14 (1 week ago)	Web vulnerability probing: /aa.php (bogus vhost/SNI)	Web App Attack

Showing 166 to 180 of 217 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 103.172.204.219

🇷🇺 81.162.97.5

🇺🇸 66.132.195.101

🇺🇸 18.216.141.193

🇫🇷 2a02:4780:27:1888:0:1ae8:5c18:1

🇪🇸 193.46.192.20

🇨🇴 190.90.154.74

🇺🇸 172.190.220.228

🇵🇹 161.230.217.176

🇬🇧 35.203.210.109

🇮🇳 115.96.79.14

🇰🇷 112.216.129.27

🇻🇳 103.75.182.178

🇩🇪 82.165.92.194

🇮🇪 54.73.69.186

🇧🇷 45.238.101.91

🇳🇱 45.148.10.206

🇺🇸 40.124.174.133

🇻🇳 27.79.41.195

🇺🇸 20.83.48.88