JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.236.133.128

64.236.133.128 was found in our database!

This IP was reported 210 times. Confidence of Abuse is 61%: ?

61%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.236.133.128

Whois 64.236.133.128

IP Abuse Reports for 64.236.133.128:

This IP address has been reported a total of 210 times from 158 distinct sources. 64.236.133.128 was first reported on July 25th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-03 06:58:57 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-06-03 06:04:31 (1 week ago)	2026-06-03T07:04:31.053753+01:00 vps kernel: [42206838.427924] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-03T07:04:31.053753+01:00 vps kernel: [42206838.427924] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=64.236.133.128 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=19872 DF PROTO=TCP SPT=61885 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇳🇱 taivas.nl	2026-06-03 06:00:05 (1 week ago)	General_bad_requests	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-03 05:49:54 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇩🇪 Admins@FBN	2026-06-03 05:30:48 (1 week ago)	FW-PortScan: Traffic Blocked srcport=61894 dstport=2082	Port Scan
🇩🇪 EGP Abuse Dept	2026-06-03 05:06:21 (1 week ago)	Scanning for web/db/file exploits on tpc-024.mach3builders.nl	SQL Injection Bad Web Bot Web App Attack
🇩🇪 dpsbs	2026-06-03 04:58:31 (1 week ago)	multiple ips intrustions detected	Hacking
🇮🇱 spd.co.il	2026-05-24 00:03:25 (2 weeks ago)	Web application attack detected	Hacking Web App Attack
Anonymous	2026-05-22 01:32:54 (2 weeks ago)	(PERMBLOCK) 64.236.133.128 (US/United States/-) has had more than 4 temp blocks in the last 86400 se ... show more (PERMBLOCK) 64.236.133.128 (US/United States/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇫🇷 dynamix	2026-05-22 01:13:55 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇩🇪 Philister11	2026-05-22 01:01:21 (2 weeks ago)	CrowdSec: crowdsecurity/http-path-traversal-probing (US/AS8075)	Web App Attack Hacking
Anonymous	2026-05-22 00:27:39 (2 weeks ago)	(caddyscan) Scanner path probe from 64.236.133.128 (US/United States/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 64.236.133.128 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 64.236.133.128 - - [22/May/2026:00:27:36 +0000] "GET /config/.env HTTP/1.1" [REDACTED] 200 2627 64.236.133.128 - - [22/May/2026:00:27:36 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 64.236.133.128 - - [22/May/2026:00:27:36 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 64.236.133.128 - - [22/May/2026:00:27:36 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 64.236.133.128 - - [22/May/2026:00:27:36 +0000] "GET /@fs/.env?import&raw HTTP/1.1" show less	Port Scan
🇫🇷 HerrWolf	2026-05-21 22:15:02 (2 weeks ago)	CrowdSec Detection: crowdsecurity/http-sensitive-files	Web App Attack
🇺🇸 Rayulcifer	2026-04-11 15:57:06 (1 month ago)	64.236.133.128 - - [11/Apr/2026:10:57:05 -0500] "GET https://zooyoo.top/index.php HTTP/1.1" 200 908 ... show more 64.236.133.128 - - [11/Apr/2026:10:57:05 -0500] "GET https://zooyoo.top/index.php HTTP/1.1" 200 908 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 64.236.133.128 - - [11/Apr/2026:10:57:05 -0500] "GET https://zooyoo.top/index.php HTTP/1.1" 200 907 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇳🇱 homeshowdomain.nl	2026-04-07 22:02:19 (2 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-06. show less	Web App Attack SSH Hacking

Showing 1 to 15 of 210 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.244.22.213

🇻🇪 201.249.205.94

🇺🇸 195.184.76.166

🇺🇸 146.190.134.221

🇫🇷 91.231.89.7

🇫🇷 91.231.89.2

🇺🇸 91.230.168.211

🇺🇸 205.210.31.98

🇧🇷 200.108.174.4

🇹🇼 198.235.24.123

🇺🇸 195.184.76.205

🇩🇪 193.228.139.227

🇨🇳 115.190.126.68

🇨🇳 113.221.97.184

🇳🇱 93.123.109.114

🇫🇷 91.231.89.128

🇫🇷 91.231.89.10

🇺🇸 91.230.168.144

🇧🇬 91.191.209.198

🇷🇴 80.94.92.164