Check an IP Address, Domain Name, Subnet, or ASN

135.119.88.100 was found in our database!

Confidence Level

67%

High?

Geolocation

🇺🇸

United StatesDes Moines

ISPMicrosoft Corporation

ASNAS8075

Activity Timeline

First seenJan 23, 2026, 10:04 PM

Last seen1h ago

78Sessions

110Events

Protocol Breakdown

HTTPS

18 / 22

DOCKER

8 / 16

SSH

8 / 12

HTTP

7 / 11

SMTP

8 / 11

SMB

6 / 8

ELASTICSEARCH

6 / 8

TELNET

4 / 6

FTP

4 / 4

MONGODB

2 / 4

SIP

3 / 3

IMAP

2 / 3

REDIS

2 / 2

135.119.88.100 has a high threat confidence level of 67%, originating from Des Moines, United States, on the Microsoft Corporation network (8075). It has been observed across 78 sessions targeting HTTPS, DOCKER, SSH, HTTP, SMTP and 8 other protocols, First observed on January 23, 2026, most recently active March 10, 2026.

Behaviors

Classified behavioral patterns observed

Docker Invalid Protocol Probe

info2x

Client repeatedly sends GET requests to the /bad-request Docker API endpoint, indicating malformed or incompatible traffic against the Docker daemon. This pattern is typically associated with generic internet scanning or tools attempting HTTP interaction without speaking the proper Docker API protocol.

Http Root Path Request

info1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

Https Root Path Request

info1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

Http Bad Request Route Probe

info1x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

Primitives

Individual actions observed

Docker Get Method6 Elastic Http Get Request6 Mongodb Buildinfo3 Http Method Get2 Docker Bad Request Uri2 Ftp Auth Ssl1 Ftp Auth Tls1 Https Path Root1 Http Path Bad Request1 Redis Mglndd Client Identifier Tag1

Related Threats

Explore related threat intelligence

🇺🇸More threats fromUnited States ASMore threats fromMicrosoft Corporation HTTPSMore threats targetingHTTPS DOCKERMore threats targetingDOCKER SSHMore threats targetingSSH HTTPMore threats targetingHTTP SMTPMore threats targetingSMTP SMBMore threats targetingSMB ELASTICSEARCHMore threats targetingELASTICSEARCH TELNETMore threats targetingTELNET FTPMore threats targetingFTP MONGODBMore threats targetingMONGODB SIPMore threats targetingSIP IMAPMore threats targetingIMAP REDISMore threats targetingREDIS { }Browse allAttack Patterns

WHOIS Lookup

IP Address	Confidence	Events
40.82.214.8	100%	605
20.65.193.19	73%	115
20.65.194.9	61%	101
20.46.244.172	65%	94
20.163.34.74	78%	162

IP Address	Confidence	Events
130.12.180.39	91%	11,972
66.132.153.125	100%	2,268
130.12.180.117	91%	11,273
130.12.180.77	91%	11,284
130.12.180.188	87%	1,790