JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.232.74

135.232.232.74 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 81%: ?

81%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.232.74

Whois 135.232.232.74

IP Abuse Reports for 135.232.232.74:

This IP address has been reported a total of 13 times from 13 distinct sources. 135.232.232.74 was first reported on April 23rd 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (3 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-03 11:03:51 (14 hours ago)	PORT & IP Scan.	Port Scan Brute-Force
🇺🇸 RAP	2026-06-03 05:10:30 (20 hours ago)	2026-06-03 05:10:30 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 masterguru	2026-06-03 04:13:17 (21 hours ago)	Host header is a numeric IP address. Pattern match "^ (920350-147)	Hacking Bad Web Bot
🇺🇸 technash	2026-06-03 03:50:00 (22 hours ago)	Port scanning detection [Fortinet/Sentinel]. Deny/drop traffic.	Port Scan
🇬🇧 PeravixGroup	2026-06-03 03:36:06 (22 hours ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 ersei.net	2026-06-03 03:07:14 (22 hours ago)	Brute force multiple 403s	Brute-Force
🇺🇸 xmission.com	2026-06-03 02:33:20 (23 hours ago)	Blocked by UFW (TCP on 2087) Source port: 7943 TTL: 52 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 2087) Source port: 7943 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 135.232.232.74) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-06-03 02:25:14 (23 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-03 01:44:57 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 135.232.232.74 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 135.232.232.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 21:44:50.486474 2026] [security2:error] [pid 15239:tid 15239] [client 135.232.232.74:8204] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.34"] [uri "/.git/HEAD"] [unique_id "ah-HEjcT7V9KRL04RCKF-AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Hulk Smash	2026-06-03 01:13:19 (1 day ago)	Automated report, webserver-auth troll for exploits and/or SSH Attempts	Brute-Force Hacking
Anonymous	2026-06-03 00:57:34 (1 day ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 Rayulcifer	2026-04-23 15:58:10 (1 month ago)	135.232.232.74 - - [23/Apr/2026:10:58:09 -0500] "CONNECT www.google.com:443 HTTP/1.1" 502 488 "-" "M ... show more 135.232.232.74 - - [23/Apr/2026:10:58:09 -0500] "CONNECT www.google.com:443 HTTP/1.1" 502 488 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" 135.232.232.74 - - [23/Apr/2026:10:58:09 -0500] "GET http://clients2.google.com/time/1/current?cup2key=9:7e-sC0GpShpslQTzia1TeuBBnqT-9WpdKhsAuatiiTc&cup2hreq=e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP/1.1" 200 855 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 172.71.198.133

🇩🇪 172.71.148.113

🇺🇸 147.185.132.243

🇳🇱 144.31.14.203

🇮🇳 139.59.91.214

🇵🇰 103.151.237.40

🇨🇳 180.184.43.90

🇧🇷 177.72.195.114

🇳🇱 176.65.148.2

🇺🇸 162.216.150.22

🇮🇩 103.129.175.209

🇷🇴 92.118.39.62

🇳🇱 45.148.10.141

🇻🇪 186.93.75.219

🇷🇺 178.65.112.28

🇫🇷 164.68.98.43

🇺🇸 162.216.150.20

🇺🇸 159.203.136.205

🇺🇸 147.185.132.93

🇬🇧 138.68.137.43