JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.193.35

135.232.193.35 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.193.35

Whois 135.232.193.35

IP Abuse Reports for 135.232.193.35:

This IP address has been reported a total of 38 times from 29 distinct sources. 135.232.193.35 was first reported on July 15th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2026-06-03 07:35:28 (2 days ago)	Attack detected by Fortinet - web_server: HTPasswd.Access - 2026-06-02 12:47:31 - Source Port 52773	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-03 03:33:44 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 135.232.193.35 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.193.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 23:33:39.511550 2026] [security2:error] [pid 4040:tid 4040] [client 135.232.193.35:18150] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.60"] [uri "/.git/config"] [unique_id "ah-gk23O0tLZDLh2S5z8MwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 02:34:02 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 135.232.193.35 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.193.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:33:55.059731 2026] [security2:error] [pid 27417:tid 27417] [client 135.232.193.35:18186] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.223"] [uri "/.git/HEAD"] [unique_id "ah-SkydzLKdqEnnI6ywdlQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 02:17:21 (2 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 geeek	2026-06-03 02:06:35 (2 days ago)	Port scanning: 8080 TCP Blocked	Port Scan
🇷🇸 Scan	2026-06-03 02:04:09 (2 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇳🇱 cybertailor	2026-06-03 01:47:28 (2 days ago)	135.232.193.35 - - [03/Jun/2026:06:47:17 +0500] "GET /.git/HEAD HTTP/1.1" 404 146 "-" "Mozilla/5.0 ( ... show more 135.232.193.35 - - [03/Jun/2026:06:47:17 +0500] "GET /.git/HEAD HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 135.232.193.35 - - [03/Jun/2026:06:47:20 +0500] "GET /.git/config HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 135.232.193.35 - - [03/Jun/2026:06:47:23 +0500] "GET /.env.local HTTP/1.1" 404 178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 135.232.193.35 - - [03/Jun/2026:06:47:25 +0500] "GET /.env.backup HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" 135.232.193.35 - - [03/Jun/2026:06:47:26 +0500] "GET /.env.save HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" ... show less	Port Scan
🇬🇧 andypiper	2026-06-03 01:01:35 (2 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 LSPCCU	2026-06-03 00:13:39 (2 days ago)	TSEC Honeypot Network report. Threat score: 100/100. Categories: Port Scan, Hacking, Brute-Force, We ... show more TSEC Honeypot Network report. Threat score: 100/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: ssh-telnet, cowrie. Context: IP observed in Suricata network metadata. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇬🇧 PeravixGroup	2026-06-02 23:50:07 (2 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇵🇱 sefinek.net	2026-06-02 23:42:01 (2 days ago)	Blocked by UFW on PL02 [2087/tcp] \| SPT: 17872 \| TTL: 44 \| LEN: 60 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on PL02 [2087/tcp] \| SPT: 17872 \| TTL: 44 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 Slackin' Jack	2026-06-02 23:03:19 (2 days ago)	Unauthorized scraper/crawler on port 80/443. (135.232.193.35)	Bad Web Bot
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 PeravixGroup	2026-06-02 20:38:44 (2 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 MPL	2026-06-02 19:58:59 (2 days ago)	tcp port scan (8 or more attempts)	Port Scan

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 146.70.199.174

🇺🇸 2607:f8b0:4001:c5f::12e

🇩🇪 213.209.159.231

🇨🇱 186.189.89.93

🇰🇷 183.104.26.197

🇩🇪 64.226.116.41

🇹🇿 41.59.10.42

🇺🇸 192.210.228.134

🇭🇰 154.92.17.30

🇺🇸 138.113.22.151

🇳🇱 82.170.250.27

🇸🇬 47.128.127.91

🇨🇦 15.195.1.42

🇷🇴 2.57.122.238

🇮🇳 223.181.108.208

🇦🇷 181.29.5.42

🇱🇧 178.135.18.155

🇷🇺 176.120.22.113

🇵🇰 119.157.76.100

🇯🇲 72.27.114.131