JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 40.76.117.245

40.76.117.245 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 69%: ?

69%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 40.76.117.245

Whois 40.76.117.245

IP Abuse Reports for 40.76.117.245:

This IP address has been reported a total of 27 times from 20 distinct sources. 40.76.117.245 was first reported on October 11th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-06-09 15:12:39 (1 week ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 40.76.117.245 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 40.76.117.245 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇵🇱 Wepted	2026-06-09 14:46:16 (1 week ago)	Port scan detected by honeypot	Port Scan Hacking
🇺🇸 MPL	2026-06-09 13:27:23 (1 week ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 RAP	2026-06-09 13:09:37 (1 week ago)	2026-06-09 13:09:37 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:55:59 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:55:55.420645 2026] [security2:error] [pid 10555:tid 10555] [client 40.76.117.245:4617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.192"] [uri "/.git/HEAD"] [unique_id "aigNW3ReP0RzPDW6CGxxdAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 ipoac.nl	2026-06-09 12:39:45 (1 week ago)	ipoac.nl:80 40.76.117.245 - - [09/Jun/2026:14:39:44 +0200] 203.26.133.254 "GET /.git/HEAD HTTP/1.1" ... show more ipoac.nl:80 40.76.117.245 - - [09/Jun/2026:14:39:44 +0200] 203.26.133.254 "GET /.git/HEAD HTTP/1.1" 404 1679 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-09 12:32:42 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:32:36.250129 2026] [security2:error] [pid 24012:tid 24012] [client 40.76.117.245:4809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.109"] [uri "/.git/HEAD"] [unique_id "aigH5I58pdhrcw595gQK7wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 Threat.live	2026-06-09 12:25:02 (1 week ago)	Suspicious Connection Attempts	Brute-Force
Anonymous	2026-06-09 12:01:04 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-09 11:40:06 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:39:59.866635 2026] [security2:error] [pid 623:tid 623] [client 40.76.117.245:4304] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.197"] [uri "/.git/HEAD"] [unique_id "aif7j1Vwg5upKcuwPvBqdQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:24:13 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:24:06.436789 2026] [security2:error] [pid 9622:tid 9622] [client 40.76.117.245:4273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.28"] [uri "/.git/HEAD"] [unique_id "aif31nX5ylVaPqetaoXxAAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:51:09 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 40.76.117.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:51:03.022118 2026] [security2:error] [pid 25961:tid 25961] [client 40.76.117.245:5913] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.183"] [uri "/.git/HEAD"] [unique_id "aifwF5Gmae2ZNj74gBvxYgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2026-06-09 10:41:26 (1 week ago)	F2B - Malicious activity detected. Excessive port scans. -8ff06ede-	Port Scan
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇷🇸 Scan	2026-06-03 00:01:48 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.173.141

🇺🇸 54.146.223.200

🇳🇱 23.109.232.80

🇪🇨 205.235.2.176

🇧🇪 198.235.24.205

🇭🇰 123.58.210.86

🇰🇷 121.161.242.168

🇰🇷 59.15.58.148

🇨🇳 36.249.60.142

🇺🇸 107.175.156.152

🇱🇹 81.30.98.49

🇺🇸 50.116.72.139

🇧🇷 45.165.14.197

🇺🇸 34.134.55.61

🇺🇸 20.65.193.54

🇺🇸 3.131.24.55

🇩🇪 213.209.159.56

🇨🇳 115.195.97.22

🇷🇺 81.201.17.192

🇪🇬 41.128.181.199