AbuseIPDB » 13.79.25.141

13.79.25.141 was found in our database!

This IP was reported 218 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 13.79.25.141

Whois 13.79.25.141

IP Abuse Reports for 13.79.25.141:

This IP address has been reported a total of 218 times from 86 distinct sources. 13.79.25.141 was first reported on March 13th 2025, and the most recent report was 26 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Anonymous	2025-03-28 06:44:03 (26 minutes ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
LRob.fr	2025-03-28 06:00:02 (1 hour ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
tentwentyfour	2025-03-28 03:03:07 (4 hours ago)	Blocked for probing for web application vulnerabilities	Brute-Force Web App Attack
Anonymous	2025-03-27 19:55:24 (11 hours ago)	13.79.25.141 - - [27/Mar/2025:20:55:10 +0100] "GET /geju.php HTTP/1.1" 404 10984 13.79.25.141 ... show more13.79.25.141 - - [27/Mar/2025:20:55:10 +0100] "GET /geju.php HTTP/1.1" 404 10984 13.79.25.141 - - [27/Mar/2025:20:55:12 +0100] "GET /wp.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:13 +0100] "GET /aaa.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:14 +0100] "GET /hoot.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:15 +0100] "GET /about.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:17 +0100] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:18 +0100] "GET /wp-content/db-cache.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:19 +0100] "GET /wp-content/themes/twentyeleven/functions.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:21 +0100] "GET /wp-content/themes/oceanwp/functions.php HTTP/1.1" 404 10958 13.79.25.141 - - [27/Mar/2025:20:55:22 +0100] "GET /wp-content/themes/twentythirteen/functions.php HTTP/1.1" 404 10958 ... show less	Web Spam Web App Attack
FeG Deutschland	2025-03-27 18:36:43 (12 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
S.O.B.A. Dev.	2025-03-27 10:58:15 (20 hours ago)	Threat Blocked by BeeHive from (ASN:8075) (Network:MICROSOFT-CORP-MSN-AS-BLOCK) (Host:soba.dev) (Met ... show moreThreat Blocked by BeeHive from (ASN:8075) (Network:MICROSOFT-CORP-MSN-AS-BLOCK) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2025-03-27T10:58:15Z) show less	Web Spam Brute-Force Web App Attack
S.O.B.A. Dev.	2025-03-27 10:57:45 (20 hours ago)	Web vulnerability scanning	Web Spam Brute-Force Web App Attack
SCHAPPY	2025-03-27 07:36:12 (23 hours ago)	Malicious activity from IP detected: crowdsecurity/http-probing.	Hacking Web App Attack
Hazael	2025-03-27 05:22:35 (1 day ago)	SNOOPING - intended to probe for or exploit website vulnerabilities. From: Dublin, Ireland - Microso ... show moreSNOOPING - intended to probe for or exploit website vulnerabilities. From: Dublin, Ireland - Microsoft Corporation (AS8075 Microsoft Corporation) - Agent: show less	Web App Attack
evr	2025-03-26 17:57:19 (1 day ago)	[Fail2Ban]: Jail apache-auth triggered 5 time(s) for 13.79.25.141. [Wed Mar 26 18:56:51.820466 ... show more[Fail2Ban]: Jail apache-auth triggered 5 time(s) for 13.79.25.141. [Wed Mar 26 18:56:51.820466 2025] [authz_core:error] [pid 13462:tid 13636] [client 13.79.25.141:0] AH01630: client denied by server configurat-n: /var/www/html/-/vendor/phpunit [Wed Mar 26 18:56:55.900901 2025] [authz_core:error] [pid 13462:tid 13627] [client 13.79.25.141:0] AH01630: client denied by server configurat-n: /var/www/html/-/.github [Wed Mar 26 18:56:59.082039 2025] [authz_core:error] [pid 13462:tid 13614] [client 13.79.25.141:0] AH01630: client denied by server configurat-n: /var/www/html/-/.tmb [Wed Mar 26 18:57:06.614470 2025] [authz_core:error] [pid 13462:tid 13614] [client 13.79.25.141:0] AH01630: client denied by server configurat-n: /var/www/html/-/vendor/ [Wed Mar 26 18:57:18.793977 2025] [authz_core:error] [pid 13640:tid 13671] [client 13.79.25.141:0] AH01630: client denied by server configurat-n: /var/www/html/-/vendor/bin/loader.php ... show less	Brute-Force Web App Attack
FeG Deutschland	2025-03-26 17:31:51 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 7	Exploited Host Web App Attack
cmbplf	2025-03-26 15:10:39 (1 day ago)	2.330 requests from abuseipdb.com blacklisted IP (1yr7mos2w)	Brute-Force Bad Web Bot
Anonymous	2025-03-26 11:26:49 (1 day ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
Anonymous	2025-03-26 05:48:31 (2 days ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Bay13	2025-03-26 01:45:13 (2 days ago)	f2b http-redirect	Hacking Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩