40.79.130.128 Threat Intelligence and Host Information

Aug 05, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 40.79.130.128 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country: France
Network:
Noticed: 1 times
Protocols Attacked: SSH
Passive DNS Results: tactileo.africa depotcoffre.bakertilly.fr mspbi.net pre-uk.samtest.fr subdomaintest20240930t065032901z.powerappsportals.com safir.rexelservices.fr riip.scp-vote.com formation-continue.enpc.fr site-hmvtp.powerappsportals.com snbago.scp-vote.com glossary.uefa.ch fluxprixdispov2.ouigo.com sponsor-content.euro2024.com ibc.content-contribution.euro2024.com file-exchange.uefa.ch manage.isogeo.com www.digital-trust-seine.fr access.pprd.ext.kpmg.fr www.researchdisclosure.com sso.isogeo.com d365testurl.powerappsportals.com splashboard-pre.uefa.ch notation.ipag.fr jures.ipag.fr asi-rat.powerappsportals.com chanel-demo-pages.powerappsportals.com lavitrine-dev.groupe-quintesens.fr lavitrine-rec.groupe-quintesens.fr cheques.bakertilly.fr site-kl5fq.powerappsportals.com manager-preview.agorameet.in souscription.domuneo-energie.com viamedis-ps-rec.powerappsportals.com app-staging.askforthemoon.com app.askforthemoon.com womenseuro.com emsst-linkcm.moovapps.com preprod.si.paymentservice.prestiprev.fr stage-api.govrn.com portal.simplygest.cloud ecpasswordreminder.azurewebsites.net hosts.ecpasswordreminder.azurewebsites.net staging.promodag.com www.bankingsdk.com syzgroup.agoraevent.fr waws-prod-par-007.francecentral.cloudapp.azure.com oiplatform.openimpact.it aurera.fr maxeda-poster-dev.piivo.com pierreraffalli.com ueeapplicationportal.powerappsportals.com isfr-poster-qualif.piivo.com eos.opensky.es candidats.ipag.fr concours.ipag.fr yamafournisseur.com management.merox.io rcd365franov.powerappsportals.com isfr-poster-dev.piivo.com zodio-poster-dev.piivo.com gedimat-poster-dev.piivo.com laredoute-poster-dev.piivo.com srm-portal.powerappsportals.com analytix.powerappsportals.com crm-functionapp.promodag.com sawebservice.promodag.com id.api.isogeo.com services.api.isogeo.com v1.api.isogeo.com open.isogeo.com dcat.isogeo.com app.isogeo.com idftds.powerappsportals.com www.exthand.com bdo.linksoft.fr webjobs-dev-100913.campusnexus.cloud sisclientweb-dev-100913.campusnexus.cloud fbdesigner-dev-100913.campusnexus.cloud staffsts-dev-100913.campusnexus.cloud studentsts-dev-100913.campusnexus.cloud crmclientweb-dev-100913.campusnexus.cloud sisportal-dev-100913.campusnexus.cloud fbrenderer-dev-100913.campusnexus.cloud campuslinkapi-dev-100913.campusnexus.cloud re7.oudonner.api.efs.sante.fr test-demonext.bazimo.fr preprod.si.bpijservice.prestiprev.fr www.adilva-mycc.com support-cashcollection.astonitf.com www.beyond.atosinnolab.com test-demo.bazimo.fr addin-sp.difenso.com www.cataleeze.com sharepoint.difenso.com cataleeze.com web-muse-obs-prod-fr.freestyleserver.com sovote.fpluriel.org instances.coeuressonne.fr relance.fft.fr help.promodag.com www.promodag.com portal.promodag.com onelink.econocom.com sovote.btpcfa-aura.fr www.sobre-energie.com sobre-energie.com tygabio.com www.tygabio.com mobileauditing.ingkacentres.com preprod.si.externalproxy.prestiprev.fr www.oecd-local-sdgs.org sovote.yegounet.com admin.okedoc.fr instances2.coeuressonne.fr test.bazimo.fr bi.ltm-services.com hv-alpha-hv-fc-tm.trafficmanager.net freecertfrancenconsumption.current.int-azure-api.net enoik.io satisfaction-backend.electroplanet.ma www.olegstock.com olegstock.com m3allem-khadamat.electroplanet.ma euro2020.com re7.connect.efs.sante.fr paas.schm.fr instalift-dev.sinclair.ditnyewebsite.dk www.euro2024.com www.hoopicoach.com worldbuilding.io www.worldbuilding.io preprod.si.coredataservice.prestiprev.fr bdo-prod-admin.linksoft.fr www.gouvernancedesentreprises.com apps-prod.linksoft.fr tokandle.com www.tokandle.com recette.etlservice.prestiprev.fr www.engie-vertuoz.fr www.vertuoz-energy.com portaildeservices.europorte.com uefa.com linkcm.linksoft.fr weplaystrong.org api.dev.trashroulette.com planning.demo.sodeasoft.net engie-vertuoz.fr www.nickbitounis.com coffre-fort.decisiel-expertise.fr bdo-prod-clients.linksoft.fr bdo-prod-atmp.linksoft.fr bdo-prod-atex.linksoft.fr linksoft-prod-portail.linksoft.fr em-rp-test.linksoft.fr get-app-slink.idelink.fr word.difenso.com www.tattoox.me tattoox.me www.mordorbihan.fr mordorbihan.fr preprod.si.complementaryplanservice.prestiprev.fr ca.100pour100tounsi.com api.isogeo.com www.synerlink.com synerlink.com cataracte.okedoc.fr app.filrouge.com pitchinttest-esb.rima1.fr betanext.bazimo.fr 3dfactory.synerlink.com www.adilva-mycc.fr www.loucadet.com quickcareer.eu online-back-it-api.drveto.com pre-myaccountch.samtest.fr pre-myaccountes.samtest.fr pre-myaccountde.samtest.fr pre-myaccountit.samtest.fr pre-myaccountfr.samtest.fr pre-de.samtest.fr pre-ch.samtest.fr pre-fr.samtest.fr pre-es.samtest.fr pre-it.samtest.fr outlook.difenso.com sep.okedoc.fr secheresse-oculaire.okedoc.fr myoffice.grant-thornton.fr elearning-securite.floa.com blog.engie-vertuoz.fr www.layastone.com preprod.si.calculationservice.prestiprev.fr www.simplygest.cloud simplygest.cloud www-naturgy.ptm-datasync.omicronenergy.com naturgy.ptm-datasync.omicronenergy.com fr.azureday.community request2pay.io www.eventlar.com app.origin-lead.com services.api.dev.isogeo.com itxperts.fr esnation.fr test-cert-abe-01.dispatch-test.com www.cmonmec.fr www.alexandrerenaud.com preprod.si.calculationbasisservice.prestiprev.fr admin.clarice.cloud euro2020.dk app.clarice.cloud www.kdolist.com www.kuuli.tech tools.bitagora.it next.eurovia.com filemanager-preprod.digitregroup.io espace-client.greensdumonde.com api.espace-client.greensdumonde.com backoffice.espace-client.greensdumonde.com www.e-rep-plus-que-pro.fr arckange.biz www.eydinov.ru eydinov.ru service.france.mylife-software.net preprod.sgsante.si.prestiprev.fr preprod.si.proxy.prestiprev.fr ayanapps.com preprod.si.subscriberservice.prestiprev.fr blog.romain-foubert.com paas.retorik.fr total-ppr.usercube.com front-blazor.my-data-safe.com ci.100pour100tounsi.com rec1.semitag.qommute.com sn.100pour100tounsi.com preprod.facturation.digitregroup.io em-rh.demo.moovapps.com console.ticktime.fr evelynmkt.com euro2020.de rose-esthetique.com dittoservices.app 30yearsmanandboy.com prod.semitag.qommute.com econventionfb.fr portal.2pmgroup.com gymraya.com www.promodag.fr www.cmabellemere.fr santorini-riding-center.com promodag.fr www.subcrid.com www.itmonkeys.fr nickbitounis.com myadequat.fr pitchtest-esb.rima1.fr testnext.bazimo.fr beta.bazimo.fr pitch-esb.rima1.fr pitchint-esb.rima1.fr www.office365logs.com itmonkeys.fr santorini-ridingcenter.com inter.100pour100tounsi.com front-r1.my-data-safe.com euro2020.hu changeofparadigm.com scan.command-flash.com cyrusconseil.fr recette.edi.prestiprev.fr habitat-api-supervision.engie-vertuoz.fr researchdisclosure.com promodag.com ai3.fr sgs.okedoc.fr preprod.si.riskbearerservice.prestiprev.fr imas.isuelo.com api-staging.decisiel-crmclient.fr staging.decisiel-crmclient.fr www.tickvo.se savapp.electroplanet.ma www.quintaveras.com www.adilva-qualite.com www.adilva-qualite.fr web.logicielgaddiel.com www.cmongosse.fr www.nolimit.live api.exadoc-test.gonexa.fr total.usercube.com www.shaps.it shaps.it www.todoeat.com lequaidespossibles.org www.blazorday.net recette.notificationservice.prestiprev.fr comin-widget.com preprod.si.insuranceintermediaryservice.prestiprev.fr www.comin-widget.com www.missionwraps.es www.missionwraps.eu gestiondestiers.grant-thornton.fr www.digitrap.fr www.alleveilingen.net sinclairrussia-dev.sinclair.ditnyewebsite.dk aestheticssingapore-dev.sinclair.ditnyewebsite.dk todoeat.com www.vel-in.fr perfectha-dev.sinclair.ditnyewebsite.dk www.liveplanner.fairson.fr www.greeni-shop.eu total-offline-pprd.usercube.com www.mex.co.it total-offline.usercube.com www.miaocloud.io miaocloud.io frs.marjane.ma www.mozzaik365.com r6.notrelab.fr api.ticktime.fr slink.idelink.net slink.idelink.fr boogle-api.idelink.fr boogle.idelink.fr alleveilingen.nl portail-frs.marjane.ma savapp.marjane.ma front.command-flash.com aston-support.itclients.fr www.santorini-horseback-riding.com santorini-horseback-riding.com www.santorini-horse-riding.com santorini-horse-riding.com hoopicoach.com histoiredefemmes.com risof.live uefa.tv preprod.capi-iboost.fr preprod.e-theone.net api.dbms.operations.fr.dynamics.com configurateur.ykk.fr so-youz.fr findzihao.com omeuteste.pt 1.worldtoday.news alleveilingen.be azurearcdata-tmprofile-southcentralus-test.trafficmanager.net kuuli.tech office365logs.com khlaiwi.com conciliacionlaboral.com hub.seiso.io sovote.sosp365demo.com layastone.com codetofit.com www.codetofit.com www.inkblot.art id.api.dev.isogeo.com ellanse-dev.sinclair.ditnyewebsite.dk api.dev.isogeo.com v1.api.dev.isogeo.com paas.davi.fr www.mycheckinonline.com www.registregeneral.com octave.ensam.eu kyc.infogreffe.fr www.kyc.infogreffe.fr v1.api.qa.isogeo.com id.api.qa.isogeo.com services.api.qa.isogeo.com api.qa.isogeo.com api-coffre-fort.decisiel-expertise.fr www.trdacademy.com companycommunicator.mibrest.fr vendor.100pour100tounsi.com www.clicdroit.sncf.fr clicdroit.sncf.fr wopi.exadoc-test.gonexa.fr aesthetics-dev.sinclair.ditnyewebsite.dk wopi.exadoc-dev.gonexa.fr api.clarice.cloud citizencall.retorik.fr www.cexcellent.fr auth.brain.camera uefa.ch staging.alleveilingen.nl www.pub-diffusion.com bienvenue.ipaf-plateforme.fr fami.scp-vote.com butiprotect-qa.bayer.fr www.cmonprof.fr www.beerstream.online beerstream.online www.myprezzies.com exadoc.gonexa.fr www.alleveilingen.be staging.alleveilingen.be www.alleveilingen.nl staging.alleveilingen.net siga.mastervantagem.es www.moustache-corp.com plateforme.greenbig.com tech.muvhit.com api.brain.camera www.greensdumonde.com www.scp-vote.com recette.ediservice.prestiprev.fr fopkasa.com trigger.wellpack.fr preprod.si.businessdataservice.prestiprev.fr www.command-flash.com pprd2.ideal.total www.kundeva.com get-app-boogle.idelink.fr slink-api.idelink.fr admin.blazorday.net www.so-youz.fr app.tactileo.sn www.so-youz.com liveplanner.fairson-inventaire.com liveplanner.fairson.fr www.honestfoods.sn proexstyle.net conventionme2020.com gouvernancedesentreprises.com abogadosmarco.es mastervantagem.pt crm-welco.me scp-vote.com loucadet.com openimpact.it trdacademy.com phbc.business mastervantagem.com toxikos.org avimtoo.com tabiro.net rondili.com vektorize.app conetist.com greensdumonde.com rapida.bg tomzfpv.com nolimit.live kdolist.com myprezzies.com soupprice.com agorameet.in cmongosse.fr cmonmec.fr clubafricain.com savant-fou.tech e-rep-plus-que-pro.fr oidocolina.org atosplayoutweb.com olya.ovh cmonprof.fr seqens-accession.fr partenaires-isic.fr partenaires-isic.com partenaires-isic.org www.logistajoinus.com beryl-map.com www.3bstudio.fr euro2020.ru alexandrerenaud.com codeplace-botlist.net talent.logista.com hosts.apollo-francecentrale99f3a86.azurewebsites.net subcrid.com shik-shashlik.com.ua izycontract.com www.izycontract.com airprox.aero ristomate.com connecting-food.com missionwraps.es missionwraps.eu eventlar.com www.brain.camera cmabellemere.fr commonzones.es slapro.com commonzones.com techofthedaybynk.com shield-bot.com lezzetmedia.com monmenuonline.com lesmariesde2020.com loiccimon.com globalazure.be ausy-talents.com blazorday.net foodstations.net oecd-local-sdgs.org wasfi.codes hexiron.ro icyngo.com www.ipaf-plateforme.fr ipaf-plateforme.fr kharrab.com commerceduquartier.com

Malware Detected on Host

Count: 19 fe596c043a43f6c0442a8a0c08f681f808666ec611d0572835f80982dfe1f998 2154a3fe0159b3ffc3f0510f4eec911aa15828d53a0e9325899b12e5bd90cb4f b2da38cbc7f736426cbef8dfbc5334351c35ed58e5154e66e0c7ede0e80a7a48 b5f8300e310d2a6e0ed27d0cbdaeb6267fda442b3bcf5ed40952b54a5d135131 ff4a124587860d778ab53a95c97e009fcf312135b5c0db60f3e916e0a681c43a 5bc5a31c46539819508e8ad651e33246e657b90a9e7a93e868cdfd9c0b36b0ba 0907c3b17c1bd62558e78d33639d978dbf6d46ccee86215f32173226cb546ea9 88139904b9f0d1ad0e62931398fb2d78747f8bb6e3254d52ea484ab7ef693d47 568af95b9be3dec3295c58c3b9198eb904406aa991b7621dd9a65081c167b284 be741e94afb7e3ded9775c721e6b1d32ce6c1f0e7b48c68aa9ca74a277b9db3a

Open Ports Detected

443 80

Map

Whois Information

NetRange: 40.74.0.0 - 40.125.127.255
CIDR: 40.124.0.0/16, 40.112.0.0/13, 40.80.0.0/12, 40.125.0.0/17, 40.74.0.0/15, 40.96.0.0/12, 40.76.0.0/14, 40.120.0.0/14
NetName: MSFT
NetHandle: NET-40-74-0-0-1
Parent: NET40 (NET-40-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2015-02-23
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/40.74.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN

Share on: