AbuseIPDB » 64.236.137.132
64.236.137.132 was found in our database!
This IP was reported 8 times. Confidence of
Abuse
is 30% : ?
ISP
Microsoft Limited
Usage Type
Data Center/Web Hosting/Transit
ASN
AS8075
Domain Name
microsoft.com
Country
๐บ๐ธ
United States of America
City
Chicago, Illinois
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 64.236.137.132 :
This IP address has been reported a total of
8
times from
6 distinct
sources.
64.236.137.132 was first reported on
October 4th 2025 , and the most recent report was
20 hours ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
Major Hostility
2026-07-01 14:52:55
(20 hours ago)
"GET /.git/HEAD HTTP/1.1" 404
"GET /.git/config HTTP/1.1" 404
"GET /.git/logs/HEAD HTTP/1.1" 404
"GE ...
show more
"GET /.git/HEAD HTTP/1.1" 404
"GET /.git/config HTTP/1.1" 404
"GET /.git/logs/HEAD HTTP/1.1" 404
"GET /.git/refs/heads/master HTTP/1.1" 404
"GET /.git/refs/heads/main HTTP/1.1" 404
"GET /.git/index HTTP/1.1" 404
"GET /.env HTTP/1.1" 404
"GET /.env.local HTTP/1.1" 404
"GET /.env.production HTTP/1.1" 404
"GET /.env.backup HTTP/1.1" 404
"GET /.env.save HTTP/1.1" 404
"GET /.env.prod HTTP/1.1" 404
"GET /.env.old HTTP/1.1" 404
"GET /.env.bak HTTP/1.1" 404
"GET /.env.docker HTTP/1.1" 404
"GET /.env_production HTTP/1.1" 404
"GET /.env.development HTTP/1.1" 404
"GET /wp-config.php HTTP/1.1" 404
"GET /wp-config.php.bak HTTP/1.1" 404
show less
Web App Attack
๐ง๐พ
lns.bz
2026-06-28 18:10:01
(3 days ago)
Too many 404 requests [BY]
Web App Attack
Anonymous
2026-06-28 17:45:49
(3 days ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-06-28 17:08:42
(3 days ago)
(mod_security) mod_security (id:949110) triggered by 64.236.137.132 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:949110) triggered by 64.236.137.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 13:08:35.363058 2026] [security2:error] [pid 7287:tid 7287] [client 64.236.137.132:26501] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "192.64.150.240"] [uri "/.git/HEAD"] [unique_id "akFVE2FgDJbqeufYfA-EXgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-01-12 16:45:33
(5 months ago)
Drop from IP address 64.236.137.132 to tcp-port 23
Port Scan
Anonymous
2026-01-12 15:46:25
(5 months ago)
Unauthorized connection attempt on Port 23
Port Scan
Hacking
Exploited Host
Anonymous
2025-10-28 08:14:38
(8 months ago)
Excessive crawling/scraping
Hacking
Brute-Force
Anonymous
2025-10-04 18:16:22
(8 months ago)
Excessive crawling/scraping
Hacking
Brute-Force
Showing 1 to
8
of 8 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: