JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.201.50

135.232.201.50 was found in our database!

This IP was reported 103 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.201.50

Whois 135.232.201.50

IP Abuse Reports for 135.232.201.50:

This IP address has been reported a total of 103 times from 79 distinct sources. 135.232.201.50 was first reported on July 19th 2025, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Som1ght3n	2026-06-03 05:47:35 (16 hours ago)	The IP probed for sensitive web application files, specifically attempting to access "/.git/HEAD", i ... show more The IP probed for sensitive web application files, specifically attempting to access "/.git/HEAD", indicating an attempt to discover exposed source code. show less	Hacking
🇧🇷 vfAcceloReporter	2026-06-03 04:45:38 (17 hours ago)	135.232.201.50 - - [03/Jun/2026:01:45:38 -0300] "GET /.env.production HTTP/1.1" 404 125 "-" "Mozilla ... show more 135.232.201.50 - - [03/Jun/2026:01:45:38 -0300] "GET /.env.production HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" ... show less	Brute-Force Web App Attack Exploited Host
🇺🇸 MPL	2026-06-03 04:28:54 (18 hours ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-03 03:37:22 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.50 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 23:37:17.887700 2026] [security2:error] [pid 28369:tid 28369] [client 135.232.201.50:27592] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.28"] [uri "/.git/HEAD"] [unique_id "ah-hbfbYR3oYDrHzQDSVewAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-03 03:23:29 (19 hours ago)	Web vulnerability probing: /.DS_Store (bogus vhost/SNI)	Web App Attack
Anonymous	2026-06-03 03:03:43 (19 hours ago)	PORT & IP Scan.	Port Scan Brute-Force
🇫🇷 Safronus	2026-06-03 02:38:19 (19 hours ago)	Banned by fail2ban jail=nginx-noscript match=$f2bV_matches	Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-03 02:11:13 (20 hours ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-1)	Hacking Bad Web Bot
🇧🇾 lns.bz	2026-06-03 01:46:14 (20 hours ago)	Too many 404 requests [BY]	Web App Attack
🇯🇵 HeliJP	2026-06-03 01:45:57 (20 hours ago)	2026-06-03T01:43:58Z - Recognized attacks\bad behavior from IP address 135.232.201.50 on port 443\80 ... show more 2026-06-03T01:43:58Z - Recognized attacks\bad behavior from IP address 135.232.201.50 on port 443\80 (13 daily hits): client denied by server configuration show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇩🇪 ITSNF	2026-06-03 01:25:02 (21 hours ago)	Blocked by OPNsense firewall; 16 hits, proto=tcp, ports=2082,2083,2086,2087,443,80,8080,8443	Port Scan Hacking
🇬🇧 andypiper	2026-06-03 01:00:46 (21 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇦🇺 2000cn.com.au	2026-06-03 00:27:38 (22 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇸 brantknudson.org	2026-06-03 00:15:36 (22 hours ago)	Request path 'GET /.git/config HTTP/1.1'	Web App Attack Hacking
🇳🇱 COMPLEX	2026-06-03 00:15:33 (22 hours ago)	Unsolicited TCP traffic \| Action: DROP \| Port 443	Phishing

Showing 1 to 15 of 103 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.108.147.76

🇮🇶 81.22.35.238

🇩🇪 69.5.169.3

🇺🇸 66.132.172.34

🇩🇪 47.245.135.78

🇬🇧 37.10.113.218

🇨🇳 221.234.36.123

🇺🇸 205.210.31.103

🇭🇰 199.45.154.119

🇺🇸 195.184.76.125

🇧🇷 177.198.104.230

🇳🇱 109.106.244.93

🇺🇸 91.230.168.215

🇺🇸 91.230.168.89

🇮🇹 91.80.152.183

🇱🇹 45.227.254.170

🇺🇸 32.218.110.75

🇰🇷 211.106.137.135

🇺🇸 205.210.31.85

🇹🇼 198.235.24.78