JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 40.76.117.240

40.76.117.240 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 77%: ?

77%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 40.76.117.240

Whois 40.76.117.240

IP Abuse Reports for 40.76.117.240:

This IP address has been reported a total of 44 times from 38 distinct sources. 40.76.117.240 was first reported on August 25th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇸 Scan	2026-06-14 23:59:03 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-14 23:56:44 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 19:56:37.176167 2026] [security2:error] [pid 4933:tid 4933] [client 40.76.117.240:31884] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.26"] [uri "/.git/HEAD"] [unique_id "ai8_tWDn36QRIC1ly6UPSAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 knock	2026-06-14 23:31:52 (1 day ago)	Knock-Knock honeypot brute-force: proto8 (17 total hits)	Brute-Force
🇺🇸 MPL	2026-06-14 23:25:26 (1 day ago)	tcp port scan (20 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-14 22:49:41 (1 day ago)	tcp port scan (8 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-14 20:24:36 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 16:24:30.391349 2026] [security2:error] [pid 24436:tid 24436] [client 40.76.117.240:32514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.241"] [uri "/.git/HEAD"] [unique_id "ai8N_vGpS30lF4cWY5wt6wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Axel	2026-06-14 19:40:40 (1 day ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 32086 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 32086 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-14 18:48:35 (1 day ago)	unsolicited connect TCP dport 443 (sport 32897)	Hacking
🇫🇷 dynamix	2026-06-14 18:39:41 (1 day ago)	Multiple WAF Violations	Web App Attack
🇩🇪 tall1oN	2026-06-10 04:18:22 (6 days ago)	40.76.117.240 - - [10/Jun/2026:06:18:20 +0200] "GET /.git/HEAD HTTP/1.1" 200 4096 "-" "Mozilla/5.0 ( ... show more 40.76.117.240 - - [10/Jun/2026:06:18:20 +0200] "GET /.git/HEAD HTTP/1.1" 200 4096 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "79.140.118.156" 40.76.117.240 - - [10/Jun/2026:06:18:22 +0200] "GET /.git/config HTTP/1.1" 200 4096 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" "79.140.118.156" ... show less	Web App Attack Port Scan Hacking
🇫🇷 dynamix	2026-06-10 04:07:40 (6 days ago)	Multiple WAF Violations	Web App Attack
🇳🇱 juutis	2026-06-10 03:23:09 (6 days ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 03:13:23 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 23:13:16.104466 2026] [security2:error] [pid 12761:tid 12761] [client 40.76.117.240:46891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.109"] [uri "/.git/HEAD"] [unique_id "aijWTJ3tENct8QkALbi_uQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 0xi	2026-05-26 08:00:28 (3 weeks ago)	SSH brute-force attack detected (42 attempts). Targeted ports: 22, 80, 443. Triggered sensors: P0f, ... show more SSH brute-force attack detected (42 attempts). Targeted ports: 22, 80, 443. Triggered sensors: P0f, Suricata, Cowrie. Observed via distributed honeypot network. show less	Brute-Force SSH
🇩🇪 psauxit	2026-05-26 06:22:42 (3 weeks ago)	Fail2Ban - UFW port probing on unauthorized port	Port Scan

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.211

🇺🇸 198.12.72.27

🇧🇷 167.126.6.183

🇨🇳 111.10.175.206

🇺🇸 91.230.168.174

🇺🇸 91.230.168.151

🇺🇸 91.230.168.150

🇫🇷 91.196.152.212

🇨🇱 68.211.177.55

🇺🇸 52.117.127.253

🇳🇱 45.148.10.147

🇬🇧 35.203.210.238

🇺🇸 34.31.88.250

🇦🇪 2620:171:62:f002:9999::225

🇺🇸 209.182.193.155

🇺🇸 208.87.243.251

🇺🇸 204.48.28.177

🇹🇷 172.69.251.188

🇸🇪 171.25.158.113

🇺🇸 162.216.150.187