JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 40.79.245.19

40.79.245.19 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 96%: ?

96%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 40.79.245.19

Whois 40.79.245.19

IP Abuse Reports for 40.79.245.19:

This IP address has been reported a total of 38 times from 31 distinct sources. 40.79.245.19 was first reported on August 23rd 2025, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 lns.bz	2026-06-11 00:01:29 (23 hours ago)	.env scanning [BY]	Web App Attack
🇩🇪 ITSNF	2026-06-10 20:05:02 (1 day ago)	Blocked by OPNsense firewall; 8 hits, proto=tcp, ports=2082,2083,2086,2087,443,80,8080,8443	Port Scan Hacking
🇫🇷 chengkev	2026-06-10 18:02:21 (1 day ago)	Esta IP fue detectada por CrowdSec, activando crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇫🇷 dynamix	2026-06-10 17:24:29 (1 day ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 16:43:47 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 40.79.245.19 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 40.79.245.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 12:43:43.341872 2026] [security2:error] [pid 32667:tid 32667] [client 40.79.245.19:37710] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.69"] [uri "/.git/HEAD"] [unique_id "aimUP56rErF5rKRGPWohewAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 15:44:32 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 40.79.245.19 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 40.79.245.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 11:44:26.875212 2026] [security2:error] [pid 8826:tid 8826] [client 40.79.245.19:37615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.107"] [uri "/.git/HEAD"] [unique_id "aimGWqJC6IsgJv8mCT-ocgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-06-10 15:32:31 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇺🇸 kuroneko_omu	2026-06-10 14:59:58 (1 day ago)	Fail2Ban <webattack> jail detected 5 attempts against 40.79.245.19.	DDoS Attack Hacking Brute-Force Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-10 14:50:42 (1 day ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-iad5-2)	Hacking Bad Web Bot
🇮🇹 Inartis	2026-06-10 14:25:56 (1 day ago)	40.79.245.19 - - [10/Jun/2026:16:25:54 +0200] "GET /.git/config HTTP/1.1" 404 4042 "-" "Mozilla/5.0 ... show more 40.79.245.19 - - [10/Jun/2026:16:25:54 +0200] "GET /.git/config HTTP/1.1" 404 4042 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" 40.79.245.19 - - [10/Jun/2026:16:25:55 +0200] "GET /.env HTTP/1.1" 404 4042 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 40.79.245.19 - - [10/Jun/2026:16:25:55 +0200] "GET /.env.local HTTP/1.1" 404 4042 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-03 04:40:30 (1 week ago)	2026-06-03 04:40:30 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-03 04:02:08 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 2083 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 2083 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇹🇷 SeczarSecureOps	2026-06-03 03:21:29 (1 week ago)	Auto-blocked by Seczar SecureOps — Port Scan Detection (13 events in 10min) at 2026-06-03 03:21	Port Scan
🇺🇸 RAP	2026-06-03 03:05:03 (1 week ago)	2026-06-03 03:05:03 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.180

🇺🇸 198.44.159.109

🇲🇽 187.191.48.22

🇳🇱 185.223.235.57

🇫🇷 185.187.169.24

🇨🇳 106.52.49.148

🇫🇷 62.171.176.188

🇨🇳 47.97.127.96

🇫🇷 37.58.136.133

🇩🇪 213.209.159.56

🇺🇸 165.154.254.143

🇺🇸 2400:cb00:960:1000:7cdf:bc75:bf9b:59a5

🇰🇷 211.46.177.174

🇺🇸 108.181.23.71

🇺🇸 103.195.100.210

🇺🇸 66.132.172.110

🇳🇱 46.23.108.183

🇸🇪 216.58.201.194

🇮🇳 182.18.161.165

🇸🇪 130.49.112.151