JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 135.232.201.230

135.232.201.230 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 64%: ?

64%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 135.232.201.230

Whois 135.232.201.230

IP Abuse Reports for 135.232.201.230:

This IP address has been reported a total of 19 times from 13 distinct sources. 135.232.201.230 was first reported on September 12th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-06-13 08:18:32 (1 day ago)	17 packets to ports 2077 2078 2082 2083 2086 2087 2095 2096 3000 3001 4000 5000 8090 8443 8880 9000 ... show more 17 packets to ports 2077 2078 2082 2083 2086 2087 2095 2096 3000 3001 4000 5000 8090 8443 8880 9000 10000 show less	Port Scan
🇦🇹 urnilxfgbez	2026-06-12 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇷🇸 Scan	2026-06-12 00:14:20 (3 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 Axel	2026-06-11 23:43:43 (3 days ago)	Blocked by UFW on MVI [8880/tcp] \| SPT: 20552 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [8880/tcp] \| SPT: 20552 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-06-03 00:03:53 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-02 20:40:45 (1 week ago)	2026-06-02 20:40:45 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇺🇸 MPL	2026-06-02 20:26:18 (1 week ago)	tcp port scan (32 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 20:25:14 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 16:25:06.334427 2026] [security2:error] [pid 32013:tid 32057] [client 135.232.201.230:50308] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.126"] [uri "/.git/HEAD"] [unique_id "ah88InvuofWc1cyiKNACoQAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 20:04:25 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 16:04:20.306501 2026] [security2:error] [pid 7599:tid 7599] [client 135.232.201.230:50408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.71"] [uri "/.git/HEAD"] [unique_id "ah83RI6B43qmbgjxZIkMywAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 19:40:27 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 15:40:20.544183 2026] [security2:error] [pid 16077:tid 16077] [client 135.232.201.230:50491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.111"] [uri "/.git/HEAD"] [unique_id "ah8xpHtF7Eq67dtQVHcItgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 19:20:14 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 135.232.201.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 15:20:10.501563 2026] [security2:error] [pid 21180:tid 21180] [client 135.232.201.230:51164] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.153"] [uri "/.git/HEAD"] [unique_id "ah8s6njxGsL2XTmx0ZnGhwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-02 18:26:26 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 MPL	2026-06-02 18:21:58 (1 week ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 seanwall	2026-06-02 18:06:13 (1 week ago)	Automated scanner/attacker probing war-room. Paths: ['/.git/HEAD', '/.git/config']. UA: ['Mozilla/5. ... show more Automated scanner/attacker probing war-room. Paths: ['/.git/HEAD', '/.git/config']. UA: ['Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0'] show less	Port Scan Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.38.244.245

🇺🇸 184.105.139.111

🇨🇳 182.119.229.35

🇰🇷 106.249.246.149

🇵🇰 103.169.64.131

🇮🇳 103.132.243.250

🇺🇸 66.132.172.150

🇬🇧 217.146.80.102

🇲🇽 187.224.142.39

🇲🇽 187.191.48.9

🇫🇷 159.26.112.56

🇺🇸 147.182.212.254

🇮🇳 122.168.81.145

🇨🇳 112.6.30.71

🇮🇳 106.222.231.253

🇸🇬 47.236.161.239

🇧🇷 45.225.255.223

🇳🇱 5.187.35.142

🇫🇮 2a00:1450:4010:c0e::12b

🇮🇩 202.72.196.75