JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.119.73.164

135.119.73.164 was found in our database!

This IP was reported 986 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.119.73.164

Whois 135.119.73.164

IP Abuse Reports for 135.119.73.164:

This IP address has been reported a total of 986 times from 472 distinct sources. 135.119.73.164 was first reported on June 22nd 2026, and the most recent report was 40 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 pigro	2026-06-26 09:05:14 (40 seconds ago)	135.119.73.164 - - [26/Jun/2026:11:05:13 +0200] "GET /admin.php HTTP/1.1" 404 153 "-" "-" 135.119.73 ... show more 135.119.73.164 - - [26/Jun/2026:11:05:13 +0200] "GET /admin.php HTTP/1.1" 404 153 "-" "-" 135.119.73.164 - - [26/Jun/2026:11:05:14 +0200] "GET /about.php HTTP/1.1" 404 153 "-" "-" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-26 09:02:19 (3 minutes ago)	135.119.73.164 - - [26/Jun/2026:12:02:19 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 135.119.73.164 - - [26/Jun/2026:12:02:19 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 707 "-" "-" ... show less	Web App Attack
🇩🇪 raph	2026-06-26 08:59:19 (6 minutes ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-26 08:50:43 (15 minutes ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇨🇭 4server	2026-06-26 08:48:07 (17 minutes ago)	[FriJun2610:48:01.9656442026][security2:error][pid3444647:tid3444904][client135.119.73.164:0]ModSecu ... show more [FriJun2610:48:01.9656442026][security2:error][pid3444647:tid3444904][client135.119.73.164:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\\|tml\\|t\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"5100\"][id\"382238\"][rev\"2\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHPfileexecutioninuploadsdirectorydenied\"][data\"wp-content/uploads/index.php\"][severity\"CRITICAL\"][hostname\"hosting-domain-swiss.ch\"][uri\"/wp-content/uploads/index.php\"][unique_id\"aj48wcBDi_tvGKk24MyKNAAAAQc\"] show less	Hacking Web App Attack
Anonymous	2026-06-26 08:43:16 (22 minutes ago)	135.119.73.164 - - [26/Jun/2026:10:42:57 +0200] "GET /inputs.php HTTP/1.1" 404 29094 135.119.73.164 ... show more 135.119.73.164 - - [26/Jun/2026:10:42:57 +0200] "GET /inputs.php HTTP/1.1" 404 29094 135.119.73.164 - - [26/Jun/2026:10:42:58 +0200] "GET /ioxi-o.php HTTP/1.1" 404 29092 135.119.73.164 - - [26/Jun/2026:10:43:00 +0200] "GET /function/function.php HTTP/1.1" 404 29093 135.119.73.164 - - [26/Jun/2026:10:43:02 +0200] "GET /rip.php HTTP/1.1" 404 29092 135.119.73.164 - - [26/Jun/2026:10:43:04 +0200] "GET /admin.php HTTP/1.1" 404 29092 135.119.73.164 - - [26/Jun/2026:10:43:07 +0200] "GET /cache.php HTTP/1.1" 404 29093 135.119.73.164 - - [26/Jun/2026:10:43:08 +0200] "GET /themes.php HTTP/1.1" 404 29092 135.119.73.164 - - [26/Jun/2026:10:43:10 +0200] "GET /an.php HTTP/1.1" 404 29093 135.119.73.164 - - [26/Jun/2026:10:43:12 +0200] "GET /index/function.php HTTP/1.1" 404 29093 135.119.73.164 - - [26/Jun/2026:10:43:13 +0200] "GET /randkeyword.PhP7 HTTP/1.1" 404 30446 ... show less	Web Spam Web App Attack
🇩🇪 maxpower	2026-06-26 08:42:13 (23 minutes ago)	(aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 135.119.73.164 (US/United States/-): 1 in the ... show more (aggressive_scanner) REGOLA 9 - Aggressive Web Scanner 135.119.73.164 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 135.119.73.164 - - [26/Jun/2026:10:41:57 +0200] "GET /404.php HTTP/2.0" 404 14558 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "135.119.73.164" host=ilgiardinodeiciliegi.villapardi.it show less	Port Scan
🇺🇸 Rip	2026-06-26 08:40:31 (25 minutes ago)	WordPress fingerprinting and attack surface probing	Port Scan Web App Attack
🇵🇹 furaredesPT	2026-06-26 08:37:45 (28 minutes ago)	Scan targeting /wp-content/plugins/hellopress/wp_filemanager.php, /wp-admin/, /cgi-bin/.	Bad Web Bot Web App Attack
🇫🇷 phoenix1jl96	2026-06-26 08:32:26 (33 minutes ago)	2026/06/26 10:31:49 [error] 4285#4285: 753 "/home/user-data/www/default/cgi-bin/index.html" is not ... show more 2026/06/26 10:31:49 [error] 4285#4285: 753 "/home/user-data/www/default/cgi-bin/index.html" is not found (2: No such file or directory), client: 135.119.73.164, server: autodiscover.dsatec.fr, request: "GET /cgi-bin/ HTTP/1.1", host: "autodiscover.dsatec.fr" 2026/06/26 10:31:53 [error] 4285#4285: *753 open() "/home/user-data/www/default/wp-login.php" failed (2: No such file or directory), client: 135.119.73.164, server: autodiscover.dsatec.fr, request: "GET /wp-login.php HTTP/1.1", host: "autodiscover.dsatec.fr" ... show less	DNS Compromise DNS Poisoning DDoS Attack Ping of Death Web Spam Email Spam Blog Spam Port Scan Hacking Brute-Force Bad Web Bot SSH Web App Attack
🇩🇪 Skyrider	2026-06-26 08:32:24 (33 minutes ago)	Nginx: HTTP 4xx probe/scan attempts. Automated fail2ban report.	Bad Web Bot Web App Attack
🇩🇪 macrob	2026-06-26 08:23:39 (42 minutes ago)	2026/06/26 08:23:34 [error] 4133854#4133854: 331679065 access forbidden by rule, client: 135.119.73 ... show more 2026/06/26 08:23:34 [error] 4133854#4133854: 331679065 access forbidden by rule, client: 135.119.73.164, server: antzfund.com, request: "GET /admin.php HTTP/1.1", host: "antzfund.com" 2026/06/26 08:23:37 [error] 4133854#4133854: 331679205 access forbidden by rule, client: 135.119.73.164, server: antzfund.com, request: "GET /adminfuns.php HTTP/1.1", host: "antzfund.com" 2026/06/26 08:23:37 [error] 4133856#4133856: 331679069 access forbidden by rule, client: 135.119.73.164, server: antzfund.com, request: "GET /xmlrpc.php HTTP/1.1", host: "antzfund.com" ... show less	Web App Attack
🇩🇪 4server	2026-06-26 08:19:51 (46 minutes ago)	[FriJun2610:19:49.8711122026][security2:error][pid2950856:tid2950884][client135.119.73.164:0]ModSecu ... show more [FriJun2610:19:49.8711122026][security2:error][pid2950856:tid2950884][client135.119.73.164:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\\|tml\\|t\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf\"][line\"5100\"][id\"382238\"][rev\"2\"][msg\"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHPfileexecutioninuploadsdirectorydenied\"][data\"wp-content/uploads/index.php\"][severity\"CRITICAL\"][hostname\"solaristech.ch\"][uri\"/wp-content/uploads/index.php\"][unique_id\"aj42JcWgT28xs12GrxfGjwAAARU\"] show less	Port Scan Brute-Force Web App Attack
🇫🇮 Christopher Hughes	2026-06-26 08:12:29 (53 minutes ago)	[Fri Jun 26 09:12:28.437109 2026] [proxy_fcgi:error] [pid 1172187:tid 139821838227008] [client 135.1 ... show more [Fri Jun 26 09:12:28.437109 2026] [proxy_fcgi:error] [pid 1172187:tid 139821838227008] [client 135.119.73.164:53581] AH01071: Got error 'Primary script unknown' [Fri Jun 26 09:12:28.711952 2026] [proxy_fcgi:error] [pid 1172187:tid 139822750684736] [client 135.119.73.164:53581] AH01071: Got error 'Primary script unknown' [Fri Jun 26 09:12:28.859387 2026] [proxy_fcgi:error] [pid 1172187:tid 139822240880192] [client 135.119.73.164:53581] AH01071: Got error 'Primary script unknown' [Fri Jun 26 09:12:29.075221 2026] [proxy_fcgi:error] [pid 1172187:tid 139821225854528] [client 135.119.73.164:53581] AH01071: Got error 'Primary script unknown' [Fri Jun 26 09:12:29.211537 2026] [proxy_fcgi:error] [pid 1172187:tid 139822207309376] [client 135.119.73.164:53581] AH01071: Got error 'Primary script unknown' ... show less	Web App Attack
🇩🇪 Skyrider	2026-06-26 08:12:27 (53 minutes ago)	crowdsecurity/http-probing	Web App Attack

Showing 1 to 15 of 986 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.163.105

🇧🇷 187.58.241.90

🇧🇷 186.227.75.58

🇫🇷 167.86.82.207

🇺🇸 146.70.202.24

🇻🇳 14.175.65.219

🇨🇳 218.0.63.25

🇧🇷 205.210.31.199

🇧🇷 187.62.87.27

🇨🇴 181.62.52.38

🇩🇪 130.12.180.52

🇱🇰 123.231.115.230

🇨🇳 120.85.119.14

🇨🇳 60.190.243.162

🇮🇳 34.100.175.233

🇮🇳 182.70.255.242

🇺🇸 172.190.216.105

🇱🇹 172.69.52.171

🇺🇸 141.11.88.5

🇻🇳 103.20.97.192