JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.216.53

135.232.216.53 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.216.53

Whois 135.232.216.53

IP Abuse Reports for 135.232.216.53:

This IP address has been reported a total of 34 times from 25 distinct sources. 135.232.216.53 was first reported on October 13th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇭 Sawasdee	2026-06-18 21:03:39 (5 hours ago)	Port Scan ...	Port Scan
Anonymous	2026-06-18 15:33:03 (10 hours ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇳🇴 jad-abuse	2026-06-18 15:30:05 (10 hours ago)	ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_expos ... show more ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure, env_probe. Observed by 1 sensor(s); 13 hits. show less	Web App Attack
🇭🇰 i553041	2026-06-16 23:07:30 (2 days ago)	135.232.216.53 - - [17/Jun/2026:07:06:28 +0800] "GET /.git/config HTTP/1.1" 404 125 "-" "Mozilla/5.0 ... show more 135.232.216.53 - - [17/Jun/2026:07:06:28 +0800] "GET /.git/config HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" 135.232.216.53 - - [17/Jun/2026:07:06:30 +0800] "GET /.git/logs/HEAD HTTP/1.1" 404 187 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 135.232.216.53 - - [17/Jun/2026:07:06:35 +0800] "GET /.git/refs/heads/main HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 135.232.216.53 - - [17/Jun/2026:07:06:36 +0800] "GET /.git/index HTTP/1.1" 404 187 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" 135.232.216.53 - - [17/Jun/2026:07:06:39 +0800] "GET /.env HTTP/1.1" 404 187 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 135.232.216.53 - - [17/Jun/2026:07:06:43 +0800] "G ... show less	Brute-Force SSH
🇷🇴 abuse_IP_reporter	2026-06-16 22:45:04 (2 days ago)	Jun 17 01:38:34 server UFW BLOCK SRC=135.232.216.53 DF PROTO=TCP SPT=8717	Port Scan
🇺🇸 TPI-Abuse	2026-06-16 21:13:00 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 135.232.216.53 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.216.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 17:12:56.323187 2026] [security2:error] [pid 15649:tid 15649] [client 135.232.216.53:8713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.29"] [uri "/.git/HEAD"] [unique_id "ajG8WMndGGCaOo2T8m65bAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MPL	2026-06-16 20:31:36 (2 days ago)	tcp port scan (11 or more attempts)	Port Scan
🇩🇪 rtfm	2026-06-16 20:03:15 (2 days ago)	Web scanning bot triggered honeypot bait path '/.git/config' (Git repository configuration exposure ... show more Web scanning bot triggered honeypot bait path '/.git/config' (Git repository configuration exposure exploit.). Host blocked. show less	Port Scan Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 19:59:36 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 135.232.216.53 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.216.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 15:59:31.473032 2026] [security2:error] [pid 14704:tid 14704] [client 135.232.216.53:8250] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.137"] [uri "/.git/logs/HEAD"] [unique_id "ajGrI03a_elUA5DcX9CacgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Axel	2026-06-16 15:29:37 (2 days ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 45056 \| TTL: 46 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 45056 \| TTL: 46 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-03 04:44:59 (2 weeks ago)	13 hits, proto=tcp, ports=2082,2083,2086,2087,443,80,8080,8443	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-03 03:57:29 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 135.232.216.53 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.216.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 23:57:25.663263 2026] [security2:error] [pid 27700:tid 27700] [client 135.232.216.53:17238] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.226"] [uri "/.env.local"] [unique_id "ah-mJTmrTVL9aeGQPVLqtQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-03 03:39:43 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 masterguru	2026-06-03 03:14:20 (2 weeks ago)	Host header is a numeric IP address. Pattern match "^ (920350-166)	Hacking Bad Web Bot

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇹 190.93.13.19

🇺🇸 158.94.187.168

🇭🇰 125.59.252.103

🇨🇳 106.74.27.30

🇱🇹 62.60.130.251

🇧🇷 45.205.1.5

🇺🇸 206.72.199.210

🇧🇷 205.210.31.230

🇧🇴 181.115.215.100

🇳🇱 176.65.139.66

🇺🇸 142.111.152.251

🇺🇸 64.62.197.190

🇫🇷 46.105.39.49

🇳🇱 45.148.10.141

🇱🇰 43.224.126.107

🇬🇧 5.226.140.65

🇰🇭 202.79.29.108

🇧🇪 198.235.24.186

🇮🇳 182.95.150.106

🇳🇬 129.205.124.212