JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 40.76.119.212

40.76.119.212 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 40.76.119.212

Whois 40.76.119.212

IP Abuse Reports for 40.76.119.212:

This IP address has been reported a total of 36 times from 30 distinct sources. 40.76.119.212 was first reported on September 5th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2026-06-11 07:18:58 (2 days ago)	Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-10 0 ... show more Attack detected by Fortinet - applications3: Spring.Boot.Actuator.Unauthorized.Access - 2026-06-10 04:51:52 - Source Port 29223 show less	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-10 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 LotPhantom	2026-06-10 14:49:11 (3 days ago)	2026-06-10T14:49:10.646905+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-06-10T14:49:10.646905+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=40.76.119.212 DST=157.230.217.55 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=55173 DF PROTO=TCP SPT=58598 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-10T14:49:10.661463+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=40.76.119.212 DST=157.230.217.55 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=40042 DF PROTO=TCP SPT=58578 DPT=8080 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Hacking
🇺🇸 mutebot.net	2026-06-10 14:47:03 (3 days ago)	SRC=40.76.119.212, PROTO=TCP, SPT=58609, DPT=8080	Port Scan
🇺🇸 MPL	2026-06-10 11:56:58 (3 days ago)	tcp port scan (8 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-10 11:56:58 (3 days ago)	tcp port scan (24 or more attempts)	Port Scan
🇧🇷 diego	2026-06-10 11:25:20 (3 days ago)	[probe-44-49] 2026-06-10 11:06:34, Client: 40.76.119.212, Protocol: 6, Unauthorized activity to HTTP ... show more [probe-44-49] 2026-06-10 11:06:34, Client: 40.76.119.212, Protocol: 6, Unauthorized activity to HTTP: POST /___proxy_subdomain_whm/login/ show less	Web App Attack
🇩🇪 Ba-Yu	2026-06-10 11:17:44 (3 days ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 dynamix	2026-06-10 10:35:25 (3 days ago)	Multiple WAF Violations	Web App Attack
🇺🇸 wteiken	2026-06-10 09:42:49 (3 days ago)	2026-06-10T05:42:44.851263-04:00 nostromo.teiken.net kernel: [37012.843430] syn_limit:IN=en-wan OUT= ... show more 2026-06-10T05:42:44.851263-04:00 nostromo.teiken.net kernel: [37012.843430] syn_limit:IN=en-wan OUT= MAC=00:50:43:37:c2:00:88:a2:5e:1c:98:0c:08:00 SRC=40.76.119.212 DST=173.52.106.128 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=22162 DF PROTO=TCP SPT=29210 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-10T05:42:45.977808-04:00 nostromo.teiken.net kernel: [37013.977859] syn_limit:IN=en-wan OUT= MAC=00:50:43:37:c2:00:88:a2:5e:1c:98:0c:08:00 SRC=40.76.119.212 DST=173.52.106.128 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=34173 DF PROTO=TCP SPT=30301 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-10T05:42:46.778846-04:00 nostromo.teiken.net kernel: [37014.778875] syn_limit:IN=en-wan OUT= MAC=00:50:43:37:c2:00:88:a2:5e:1c:98:0c:08:00 SRC=40.76.119.212 DST=173.52.106.128 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=63687 DF PROTO=TCP SPT=29219 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-10T05:42:47.577676-04:00 nostromo.teiken.net kernel: [37015.577702] syn_limit:IN=en-wan OUT= MAC=00:50:43:37:c2:00:88:a2 ... show less	Port Scan
🇫🇷 dwmp	2026-06-10 07:08:40 (3 days ago)	[10/Jun/2026:09:08:35.704434 +0200] aikNc3lVFlMtzS2zjQCjagAAAQU 40.76.119.212 42424 38.242.227.117 7 ... show more [10/Jun/2026:09:08:35.704434 +0200] aikNc3lVFlMtzS2zjQCjagAAAQU 40.76.119.212 42424 38.242.227.117 7080 [10/Jun/2026:09:08:36.648084 +0200] aikNdJ0hDSxhf83FUBA7QgAAAVY 40.76.119.212 42426 38.242.227.117 7080 [10/Jun/2026:09:08:39.856922 +0200] aikNd3lVFlMtzS2zjQCjawAAAQQ 40.76.119.212 42432 38.242.227.117 7080 ... show less	Brute-Force SSH
🇫🇷 service Informatique	2026-06-03 04:00:37 (1 week ago)	GET /wp-config	Web App Attack
🇬🇧 andypiper	2026-06-03 01:02:03 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇷🇸 Scan	2026-06-03 00:12:33 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 2a01:4f9:3051:3bc9::2

🇧🇷 205.210.31.186

🇭🇰 123.58.210.86

🇰🇷 59.21.37.60

🇲🇾 47.254.230.4

🇸🇬 43.133.39.225

🇳🇱 5.61.209.92

🇵🇰 223.123.43.2

🇩🇪 213.209.159.158

🇱🇹 195.12.191.130

🇩🇰 152.115.152.218

🇮🇪 128.251.36.118

🇨🇳 115.190.211.2

🇫🇷 62.84.186.183

🇨🇳 60.166.83.153

🇳🇱 45.148.10.183

🇨🇳 14.29.181.34

🇨🇳 222.135.82.50

🇰🇷 211.51.149.30

🇭🇰 199.45.154.124