JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 128.0.36.74

128.0.36.74 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 100%: ?

100%

ISP	NAV COMMUNICATIONS SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS6718
Domain Name	nav.ro
Country	🇷🇴 Romania
City	Voluntari, Ilfov

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 128.0.36.74

Whois 128.0.36.74

IP Abuse Reports for 128.0.36.74:

This IP address has been reported a total of 92 times from 55 distinct sources. 128.0.36.74 was first reported on May 25th 2026, and the most recent report was 35 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Marc	2026-06-20 17:36:33 (35 minutes ago)	128.0.36.74 - - [20/Jun/2026:18:37:36 +0200] "GET /wp-login.php HTTP/2.0" 200 3927 "https://weiss-bl ... show more 128.0.36.74 - - [20/Jun/2026:18:37:36 +0200] "GET /wp-login.php HTTP/2.0" 200 3927 "https://weiss-blau-hemer.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 128.0.36.74 - - [20/Jun/2026:19:27:58 +0200] "GET /wp-login.php HTTP/2.0" 200 4082 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 128.0.36.74 - - [20/Jun/2026:19:27:58 +0200] "POST /wp-login.php HTTP/2.0" 403 11149 "https://www.saatschule.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 128.0.36.74 - - [20/Jun/2026:19:36:30 +0200] "GET /wp-login.php HTTP/2.0" 200 3456 "https://als-arnsberg.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 128.0.36.74 - - [20/Jun/2026:19:36:31 +0200] "GET /wp-login.php HTTP/2.0" 200 3152 "https://als-arnsberg.de show less	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-20 17:28:32 (43 minutes ago)	Jun 20 12:27:02 www4 WPAudit[2600531]: 128.0.36.74 www.vhsport.ca "Mozilla/5.0 (Windows NT 10.0; Win ... show more Jun 20 12:27:02 www4 WPAudit[2600531]: 128.0.36.74 www.vhsport.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" vhsport:vhsport1! FAIL Jun 20 12:33:47 www4 WPAudit[2600949]: 128.0.36.74 www.trilloperelloyates.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" trillo:trillo123456a@ FAIL Jun 20 12:49:45 www4 WPAudit[2602092]: 128.0.36.74 imaginesalmon.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" se7enoaks:se7enoaks88 FAIL Jun 20 13:20:55 www4 WPAudit[2604528]: 128.0.36.74 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:katharinedickerson.com@2025 FAIL Jun 20 13:28:32 www4 WPAudit[2604923]: 128.0.36.74 www.westkootenayrentals.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537 ... show less	Brute-Force Web App Attack
🇩🇪 nyt	2026-06-20 17:25:51 (46 minutes ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
Anonymous	2026-06-20 17:25:24 (46 minutes ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 ger-stg-sifi1	2026-06-20 17:25:24 (46 minutes ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇬🇧 poundawebsiteltd	2026-06-20 17:25:22 (46 minutes ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 128.0.36.74 - - [20/Jun/2026:18:25:18 +0100] POS ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 128.0.36.74 - - [20/Jun/2026:18:25:18 +0100] POST /wp-login.php HTTP/2.0 200 3862 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
🇫🇷 Hippoline	2026-06-20 17:21:12 (50 minutes ago)	Jun 20 19:21:11 local wp(senioren.lu)[31200]: Authentication attempt for unknown user administrator ... show more Jun 20 19:21:11 local wp(senioren.lu)[31200]: Authentication attempt for unknown user administrator from 128.0.36.74 ... show less	Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-20 17:15:32 (56 minutes ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack
🇫🇷 masterguru	2026-06-20 17:14:45 (57 minutes ago)	(wordpress) Apache: Failed WordPress login from 128.0.36.74 (RO/Romania/-): 10 in the last 3600 secs ... show more (wordpress) Apache: Failed WordPress login from 128.0.36.74 (RO/Romania/-): 10 in the last 3600 secs (0-201) show less	Hacking
🇦🇺 AWW-Admin	2026-06-20 17:04:40 (1 hour ago)	(wordpress) Failed wordpress login from 128.0.36.74 (RO/Romania/-)	Brute-Force
🇩🇪 LRob.fr	2026-06-20 17:00:09 (1 hour ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-20 16:53:45 (1 hour ago)	(wordpress) Apache: Failed WordPress login from 128.0.36.74 (RO/Romania/-): 10 in the last 3600 secs ... show more (wordpress) Apache: Failed WordPress login from 128.0.36.74 (RO/Romania/-): 10 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 dynamix	2026-06-20 16:52:26 (1 hour ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇺🇸 Victor López	2026-06-20 16:50:45 (1 hour ago)	ads.buscaempresas.co 128.0.36.74 - - [20/Jun/2026:11:50:42 -0500] "GET /wp-login.php HTTP/2.0" 200 1 ... show more ads.buscaempresas.co 128.0.36.74 - - [20/Jun/2026:11:50:42 -0500] "GET /wp-login.php HTTP/2.0" 200 1863 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" advisainternational.com 128.0.36.74 - - [20/Jun/2026:11:50:43 -0500] "GET /wp-login.php HTTP/2.0" 200 1863 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" advisainternational.com 128.0.36.74 - - [20/Jun/2026:11:50:44 -0500] "POST /wp-login.php HTTP/2.0" 200 1993 "https://advisainternational.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇺🇸 lostswordfish.com	2026-06-20 16:50:07 (1 hour ago)	Wordfence waf block on wp20190711M4	Web App Attack

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 211.149.134.60

🇬🇧 188.240.59.25

🇨🇳 111.31.134.83

🇪🇹 196.190.220.199

🇺🇸 162.216.150.132

🇩🇪 94.154.1.123

🇳🇱 91.92.40.173

🇱🇹 45.227.254.170

🇺🇸 44.215.101.93

🇸🇬 43.134.42.6

🇨🇭 20.250.145.94

🇨🇳 14.29.240.154

🇧🇷 2804:868:d054:6784:fc63:2407:9dad:d68e

🇨🇳 223.242.38.86

🇨🇳 223.100.68.193

🇨🇦 148.116.84.28

🇺🇸 142.129.159.100

🇮🇳 103.91.246.101

🇱🇹 81.30.98.158

🇷🇴 80.94.92.184