JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.249.79.50

74.249.79.50 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.249.79.50

Whois 74.249.79.50

IP Abuse Reports for 74.249.79.50:

This IP address has been reported a total of 43 times from 33 distinct sources. 74.249.79.50 was first reported on August 2nd 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Tanados	2026-06-13 15:49:28 (2 days ago)	Blocked by UFW [2087/tcp] Source port: 30255 TTL: 44 Packet length: 60 TOS: 0x00 This report was ge ... show more Blocked by UFW [2087/tcp] Source port: 30255 TTL: 44 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 centurion	2026-06-13 15:18:41 (2 days ago)	Blocked by UFW on ns03 [80/tcp] Source port: 30770 TTL: 45 Packet length: 60 TOS: 0x00 This report ... show more Blocked by UFW on ns03 [80/tcp] Source port: 30770 TTL: 45 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇫🇷 dynamix	2026-06-13 14:26:51 (2 days ago)	Multiple WAF Violations	Web App Attack
🇳🇱 astijf	2026-06-13 14:02:47 (2 days ago)	Port Scan detected from 74.249.79.50 (US/United States/-). 5 hits in the last 110 seconds	Brute-Force Port Scan
🇺🇸 Starburst SysOp Team	2026-06-13 13:45:09 (2 days ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-iad5-2)	Hacking Bad Web Bot
🇺🇸 RAP	2026-06-13 13:32:27 (2 days ago)	2026-06-13 13:32:27 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
Anonymous	2026-06-13 13:30:02 (2 days ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇺🇸 Starburst SysOp Team	2026-06-13 13:08:04 (2 days ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-3)	Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 12:18:43 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 74.249.79.50 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 74.249.79.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:18:39.624750 2026] [security2:error] [pid 10899:tid 10899] [client 74.249.79.50:31578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.11"] [uri "/.git/HEAD"] [unique_id "ai1Kn1Sp5ng24MjNuHs4ugAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Axel	2026-06-13 12:02:43 (2 days ago)	Blocked by UFW on MVI [8443/tcp] \| SPT: 29906 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [8443/tcp] \| SPT: 29906 \| TTL: 48 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 e.fierstra	2026-06-13 11:02:30 (2 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇨🇭 Zdeněk Svancar	2026-06-13 10:31:38 (2 days ago)	74.249.79.50 - - [13/Jun/2026:10:31:31 +0000] "GET /.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macinto ... show more 74.249.79.50 - - [13/Jun/2026:10:31:31 +0000] "GET /.env HTTP/1.1" 404 118 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" 74.249.79.50 - - [13/Jun/2026:10:31:38 +0000] "GET /phpinfo.php HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" ... show less	Port Scan Bad Web Bot Web App Attack
Anonymous	2026-06-13 10:27:55 (2 days ago)	fail2ban_an apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [uri "/.git/H ... show more fail2ban_an apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [uri "/.git/HEAD"] show less	Bad Web Bot Web App Attack
Anonymous	2026-06-10 10:21:28 (5 days ago)	(caddyscan) Scanner path probe from 74.249.79.50 (US/United States/-): 5 in the last 3600 secs; Port ... show more (caddyscan) Scanner path probe from 74.249.79.50 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 216.128.134.2 200 2627 74.249.79.50 - - [10/Jun/2026:10:21:22 +0000] "GET /.git/HEAD HTTP/1.1" 216.128.134.2 200 2627 74.249.79.50 - - [10/Jun/2026:10:21:23 +0000] "GET /.git/config HTTP/1.1" 216.128.134.2 200 2627 74.249.79.50 - - [10/Jun/2026:10:21:24 +0000] "GET /.env HTTP/1.1" 216.128.134.2 200 2627 74.249.79.50 - - [10/Jun/2026:10:21:25 +0000] "GET /.env.local HTTP/1.1" 216.128.134.2 200 2627 74.249.79.50 - - [10/Jun/2026:10:21:26 +0000] "GET /.env.production HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-10 10:14:40 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 74.249.79.50 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 74.249.79.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 06:14:34.676501 2026] [security2:error] [pid 11251:tid 11251] [client 74.249.79.50:40138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.138"] [uri "/.git/HEAD"] [unique_id "aik5Ctrz0xcQmLzUWsxOkwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.92

🇮🇩 163.7.12.183

🇻🇳 160.191.242.189

🇷🇺 77.66.192.139

🇬🇧 54.38.147.242

🇺🇸 34.29.182.234

🇺🇸 20.168.7.169

🇺🇸 216.158.231.26

🇷🇴 193.46.255.86

🇫🇮 157.180.107.233

🇭🇰 119.246.15.94

🇬🇧 81.19.219.213

🇷🇴 80.94.92.182

🇷🇴 80.94.92.171

🇮🇳 59.145.160.158

🇨🇦 52.139.33.254

🇺🇸 47.251.14.178

🇪🇸 34.175.64.125

🇬🇧 198.244.226.218

🇬🇧 194.50.235.138