JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 40.116.93.50

40.116.93.50 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 40.116.93.50

Whois 40.116.93.50

IP Abuse Reports for 40.116.93.50:

This IP address has been reported a total of 28 times from 25 distinct sources. 40.116.93.50 was first reported on September 11th 2025, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Celtic	2026-06-06 20:36:12 (13 hours ago)	Blocked by Fail2Ban with Jail (plesk-modsecurity)	Brute-Force SSH
🇳🇱 ipoac.nl	2026-06-06 18:05:54 (15 hours ago)	ipoac.nl:80 40.116.93.50 - - [06/Jun/2026:20:05:52 +0200] 203.26.133.32 "GET /.git/HEAD HTTP/1.1" 40 ... show more ipoac.nl:80 40.116.93.50 - - [06/Jun/2026:20:05:52 +0200] 203.26.133.32 "GET /.git/HEAD HTTP/1.1" 404 1679 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" show less	Bad Web Bot
Anonymous	2026-06-06 17:30:44 (16 hours ago)	AS8075: 40.116.0.0/16 - Microsoft Corporation (US)	Port Scan
Anonymous	2026-06-06 17:09:03 (16 hours ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-06 17:08:45 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 40.116.93.50 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 40.116.93.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 13:08:41.367390 2026] [security2:error] [pid 11920:tid 11920] [client 40.116.93.50:7874] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.4"] [uri "/.git/HEAD"] [unique_id "aiRUGf145-oXWZcr69XPrwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 16:46:25 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 40.116.93.50 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 40.116.93.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 12:46:19.083790 2026] [security2:error] [pid 29102:tid 29102] [client 40.116.93.50:7966] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.114"] [uri "/.git/HEAD"] [unique_id "aiRO26ySkGcG8vDUtoqvhwAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-06 16:00:02 (17 hours ago)	Imunify360 WAF block (graylisted)	Web App Attack
Anonymous	2026-06-06 15:30:04 (18 hours ago)	Triggered: repeated knocking on closed ports.	Port Scan
🇮🇩 Burayot	2026-06-06 15:09:24 (18 hours ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 40.116.93.50 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 40.116.93.50 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇧🇷 SOC Blue Team	2026-06-02 05:28:17 (5 days ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇹🇼 kk_it_man	2026-06-02 04:23:02 (5 days ago)	ET INFO Request to Hidden Environment File - Inbound ET WEB_SERVER WEB-PHP phpinfo access GPL WE ... show more ET INFO Request to Hidden Environment File - Inbound ET WEB_SERVER WEB-PHP phpinfo access GPL WEB_SERVER .htpasswd access show less	Port Scan
🇧🇾 lns.bz	2026-06-02 02:24:09 (5 days ago)	Too many 404 requests [BY]	Web App Attack
🇧🇷 SOCBR	2026-06-02 02:19:57 (5 days ago)	IPS: Web Server Enforcement Violation.	Hacking
🇩🇪 _ArminS_	2026-06-02 01:58:11 (5 days ago)	SP-Scan 4608:8443 detected 2026.06.02 03:58:11 blocked until 2026.07.21 21:00:58	Port Scan
🇺🇸 SSP	2026-06-02 01:50:04 (5 days ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 212.1.211.241

🇮🇳 182.95.180.178

🇺🇸 162.216.150.210

🇪🇬 156.194.92.239

🇺🇸 143.198.161.248

🇵🇭 120.28.212.162

🇱🇰 111.223.188.168

🇰🇪 102.217.127.99

🇿🇦 102.206.92.62

🇺🇸 66.132.172.135

🇮🇪 54.171.60.241

🇮🇪 52.214.211.75

🇰🇪 41.90.68.69

🇮🇹 5.99.196.202

🇩🇪 2a00:c380:c102:ec01:9999::242

🇷🇺 188.247.43.42

🇺🇸 172.238.171.10

🇺🇸 147.185.132.226

🇮🇳 128.185.254.54

🇮🇳 103.112.224.81