JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.236.142.150

64.236.142.150 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 38%: ?

38%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.236.142.150

Whois 64.236.142.150

IP Abuse Reports for 64.236.142.150:

This IP address has been reported a total of 14 times from 12 distinct sources. 64.236.142.150 was first reported on April 9th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-10 03:40:50 (1 week ago)	2026-06-10 03:40:50 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 03:25:57 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 64.236.142.150 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 64.236.142.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 23:25:50.117616 2026] [security2:error] [pid 22338:tid 22338] [client 64.236.142.150:59652] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.120"] [uri "/.git/HEAD"] [unique_id "aijZPp5J52b0_rKjFLll2gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 01:41:57 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 64.236.142.150 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 64.236.142.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:41:50.768497 2026] [security2:error] [pid 31350:tid 31350] [client 64.236.142.150:59149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.139"] [uri "/.git/HEAD"] [unique_id "aijA3rykc6bkMY9AInd8UQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-10 01:41:17 (1 week ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-1)	Hacking Bad Web Bot
🇷🇸 Scan	2026-06-10 00:20:52 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-06-09 21:57:56 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 pduggusa	2026-05-06 00:42:50 (1 month ago)	Detected attacking dugganusa.com at 2026-05-06T00:42:50.942Z \| Attack: Web Service \| Source: DugganU ... show more Detected attacking dugganusa.com at 2026-05-06T00:42:50.942Z \| Attack: Web Service \| Source: DugganUSA PreCog auto-block show less	Hacking
🇺🇸 Rayulcifer	2026-04-27 17:04:24 (1 month ago)	64.236.142.150 - - [27/Apr/2026:12:04:22 -0500] "CONNECT hvpnvn.edu.vn:443 HTTP/1.1" 502 488 "-" "-" ... show more 64.236.142.150 - - [27/Apr/2026:12:04:22 -0500] "CONNECT hvpnvn.edu.vn:443 HTTP/1.1" 502 488 "-" "-" 64.236.142.150 - - [27/Apr/2026:12:04:22 -0500] "\x16\x03\x01" 400 392 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇯🇵 demonsword	2026-04-27 17:03:41 (1 month ago)	HTTP proxy scanner (CONNECT / open proxy probe) target: hvpnvn.edu.vn:443	Port Scan
🇳🇱 homeshowdomain.nl	2026-04-10 22:03:30 (2 months ago)	Auto-ban: >3000 req/min op 2026-04-10	Web App Attack SSH Hacking
🇫🇷 IRISIO	2026-04-10 16:07:29 (2 months ago)	scans/SQL injection/spam posts : 1 queries	Web App Attack SQL Injection
🇺🇸 TPI-Abuse	2026-04-10 13:21:24 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 64.236.142.150 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 64.236.142.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 09:21:15.736645 2026] [security2:error] [pid 1661760:tid 1661760] [client 64.236.142.150:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.abdulhameeds.art"] [uri "/@fs/app/.git/config"] [unique_id "adj5S-G5yLP9Hcmy-vRZ-QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇴 Abuse Buster	2026-04-09 11:12:15 (2 months ago)	64.236.142.150 - - [09/Apr/2026:13:12:13 +0200] "GET /.git/config HTTP/2.0" 404 22 "https://claude.a ... show more 64.236.142.150 - - [09/Apr/2026:13:12:13 +0200] "GET /.git/config HTTP/2.0" 404 22 "https://claude.ai/" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0" 64.236.142.150 - - [09/Apr/2026:13:12:13 +0200] "GET /.git/credentials HTTP/2.0" 404 22 "https://medium.com/" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0" 64.236.142.150 - - [09/Apr/2026:13:12:13 +0200] "GET /.git-credentials HTTP/2.0" 404 22 "https://docs.google.com/" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0" 64.236.142.150 - - [09/Apr/2026:13:12:13 +0200] "GET /.gitconfig HTTP/2.0" 404 22 "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0" ... show less	Web App Attack
Anonymous	2026-04-09 09:30:02 (2 months ago)	suspicious request in access.log	Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 223.194.21.240

🇭🇰 156.226.172.133

🇳🇱 91.92.40.4

🇦🇷 45.178.70.3

🇵🇰 223.123.71.78

🇺🇸 216.25.89.138

🇿🇼 197.221.232.44

🇸🇬 185.200.116.73

🇸🇪 171.25.158.87

🇸🇬 129.226.200.18

🇺🇸 104.219.232.138

🇧🇬 79.124.62.178

🇺🇸 66.132.172.43

🇺🇸 3.211.181.86

🇺🇸 205.210.31.59

🇺🇿 185.139.137.62

🇺🇸 174.35.67.105

🇸🇬 172.217.97.17

🇮🇳 168.144.92.125

🇺🇸 162.216.149.222