JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.201.42

135.232.201.42 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 98%: ?

98%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.201.42

Whois 135.232.201.42

IP Abuse Reports for 135.232.201.42:

This IP address has been reported a total of 32 times from 24 distinct sources. 135.232.201.42 was first reported on January 2nd 2026, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 12:53:51 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 08:53:44.255605 2026] [security2:error] [pid 20897:tid 20897] [client 135.232.201.42:22406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.89"] [uri "/.git/HEAD"] [unique_id "ajFHWJ8kq_-okn9bAqsySAAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ecs.ge	2026-06-16 12:01:42 (19 hours ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇨🇿 Countryman	2026-06-16 11:21:03 (20 hours ago)	IPS detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇩🇪 ghostwarriors	2026-06-16 10:50:19 (20 hours ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇮🇩 hermawan	2026-06-16 10:39:50 (21 hours ago)	1781606376.549758 135.232.201.42 103.166.156.58 64240_2-4-8-1-3_1440_10 2026-06-16 17:39:36 WIB ...	Email Spam Hacking
🇺🇸 Axel	2026-06-16 08:28:33 (23 hours ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 22528 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 22528 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 SentinalX by uzumaru	2026-06-09 02:49:16 (1 week ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: fapi.binance.com:443 show less	Open Proxy Port Scan
🇧🇪 sid3windr	2026-06-08 19:41:16 (1 week ago)	GET /.git/HEAD (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 08:33:36 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:33:32.406438 2026] [security2:error] [pid 8091:tid 8091] [client 135.232.201.42:53348] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.167"] [uri "/.git/HEAD"] [unique_id "aiUs3Mo_QOoAsVYaJuLuaAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-06-07 08:21:08 (1 week ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇩🇪 KPS	2026-06-07 07:38:33 (1 week ago)	PortscanM	Port Scan
🇺🇸 RAP	2026-06-07 07:36:34 (1 week ago)	2026-06-07 07:36:34 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-07 06:01:50 (1 week ago)	IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/appsec-vpatch; Action=ban; Events=2; Co ... show more IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/appsec-vpatch; Action=ban; Events=2; Country=US; ASN=8075 MICROSOFT-CORP-MSN-AS-BLOCK show less	Hacking
🇧🇷 SOC PR	2026-06-07 05:38:08 (1 week ago)	IPS: Web Server Exposed Git Repository Information Disclosure.	Hacking
Anonymous	2026-06-07 05:27:34 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 61.222.211.114

🇩🇪 202.61.245.131

🇧🇷 201.28.237.90

🇱🇹 195.12.191.130

🇧🇷 187.16.97.90

🇺🇸 174.138.35.202

🇵🇰 122.129.67.154

🇭🇰 103.20.223.56

🇮🇹 89.46.195.159

🇺🇸 65.49.1.138

🇸🇬 47.128.61.163

🇸🇬 47.84.203.75

🇳🇱 31.14.32.5

🇳🇱 204.76.203.212

🇹🇭 202.129.1.26

🇧🇷 200.155.66.2

🇸🇬 185.111.159.216

🇪🇨 177.53.215.134

🇺🇸 172.253.9.220

🇻🇳 103.167.89.222