JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.232.52

135.232.232.52 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.232.52

Whois 135.232.232.52

IP Abuse Reports for 135.232.232.52:

This IP address has been reported a total of 35 times from 27 distinct sources. 135.232.232.52 was first reported on August 24th 2025, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (3 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇧🇷 SOC PR	2026-06-03 04:41:20 (21 hours ago)	IPS: Web Server Exposed Git Repository Information Disclosure.	Hacking
🇧🇷 diego	2026-06-03 04:40:20 (21 hours ago)	[probe-44-49] 2026-06-03 04:22:51, Client: 135.232.232.52, Protocol: 6, Unauthorized activity to HTT ... show more [probe-44-49] 2026-06-03 04:22:51, Client: 135.232.232.52, Protocol: 6, Unauthorized activity to HTTP: POST /___proxy_subdomain_whm/login/ show less	Web App Attack
🇷🇴 iulianh	2026-06-03 04:29:20 (21 hours ago)	80,443	Brute-Force SSH
🇹🇭 Sawasdee	2026-06-03 04:03:09 (22 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
Anonymous	2026-06-03 03:38:41 (22 hours ago)	Portscan: TCP/2087, TCP/8443, TCP/2082, TCP/2086, TCP/8080, TCP/2083	Port Scan
🇧🇾 lns.bz	2026-06-03 03:37:29 (22 hours ago)	Too many 404 requests [BY]	Web App Attack
🇧🇪 delabiemedia.be	2026-06-03 02:36:18 (23 hours ago)	135.232.232.52 - - [03/Jun/2026:04:36:08 +0200] "GET /.git/config HTTP/1.1" 404 134 "-" "Mozilla/5.0 ... show more 135.232.232.52 - - [03/Jun/2026:04:36:08 +0200] "GET /.git/config HTTP/1.1" 404 134 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 135.232.232.52 - - [03/Jun/2026:04:36:11 +0200] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 135.232.232.52 - - [03/Jun/2026:04:36:14 +0200] "GET /.env.local HTTP/1.1" 404 134 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" 135.232.232.52 - - [03/Jun/2026:04:36:16 +0200] "GET /.env.production HTTP/1.1" 404 134 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" 135.232.232.52 - - [03/Jun/2026:04:36:18 +0200] "GET /.env.backup HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" ... show less	Web App Attack
🇬🇧 PeravixGroup	2026-06-03 02:27:47 (23 hours ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-03 02:27:02 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 135.232.232.52 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.232.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:26:59.564776 2026] [security2:error] [pid 22806:tid 22806] [client 135.232.232.52:3712] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.104"] [uri "/.git/config"] [unique_id "ah-Q80etoqYUb9g4pCT1LwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇸 Scan	2026-06-03 01:52:36 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2026-06-03 01:29:50 (1 day ago)	tcp port scan (16 or more attempts)	Port Scan
🇬🇧 ISPLtd	2026-06-03 01:08:02 (1 day ago)	Jun 2 22:08:01 135.232.232.52 TCP SPT=3072 DPT=2087 SYN Jun 2 22:08:01 135.232.232.52 TCP SPT=3633 ... show more Jun 2 22:08:01 135.232.232.52 TCP SPT=3072 DPT=2087 SYN Jun 2 22:08:01 135.232.232.52 TCP SPT=3633 DPT=8080 SYN Jun 2 22:08:01 135.232.232.52 TCP SPT=3621 DPT=2083 ... show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-03 01:03:31 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 135.232.232.52 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.232.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 21:03:27.109706 2026] [security2:error] [pid 8365:tid 8365] [client 135.232.232.52:2314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.247"] [uri "/.git/HEAD"] [unique_id "ah99X3t_XagCfSeWGvRqagAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 00:47:43 (1 day ago)	Web Attack Gitscanner Traffic Detected	Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 172.71.198.133

🇩🇪 172.71.148.113

🇺🇸 147.185.132.243

🇳🇱 144.31.14.203

🇮🇳 139.59.91.214

🇵🇰 103.151.237.40

🇨🇳 180.184.43.90

🇧🇷 177.72.195.114

🇳🇱 176.65.148.2

🇺🇸 162.216.150.22

🇮🇩 103.129.175.209

🇷🇴 92.118.39.62

🇳🇱 45.148.10.141

🇻🇪 186.93.75.219

🇷🇺 178.65.112.28

🇫🇷 164.68.98.43

🇺🇸 162.216.150.20

🇺🇸 159.203.136.205

🇺🇸 147.185.132.93

🇬🇧 138.68.137.43