JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 184.168.106.74

184.168.106.74 was found in our database!

This IP was reported 399 times. Confidence of Abuse is 0%: ?

ISP	GoDaddy.com, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26496
Hostname(s)	74.106.168.184.host.secureserver.net
Domain Name	godaddy.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 184.168.106.74

Whois 184.168.106.74

IP Abuse Reports for 184.168.106.74:

This IP address has been reported a total of 399 times from 109 distinct sources. 184.168.106.74 was first reported on April 30th 2022, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 BlueWire Hosting	2025-09-06 14:10:14 (9 months ago)	Probing for application vulnerabilities	Brute-Force Web App Attack
🇩🇪 stinpriza	2025-08-27 14:13:33 (9 months ago)	Web App Attack	Web App Attack
Anonymous	2025-08-24 05:36:10 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇲🇹 Malta	2025-08-22 02:17:20 (10 months ago)	184.168.106.74 - - [22/Aug/2025:04:17:19 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 184.168.106.74 - - [22/Aug/2025:04:17:19 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-08-20 04:42:21 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserve ... show more (mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 20 00:42:17.420662 2025] [security2:error] [pid 24790:tid 24790] [client 184.168.106.74:48700] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lightningbug.farm\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lightningbug.farm"] [uri "/wp-json/wp/v2/users/2"] [unique_id "aKVSKVPxqh4SAAeD-ehJnwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2025-08-17 19:05:27 (10 months ago)	Xmlrpc Caught (6)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-08-15 12:44:56 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserve ... show more (mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 15 08:44:50.009503 2025] [security2:error] [pid 13323:tid 13323] [client 184.168.106.74:30810] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gerrytolentino.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gerrytolentino.net"] [uri "/wp-json/wp/v2/users/5"] [unique_id "aJ8rwnvyBkPalBp2ntsdIgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-15 11:57:41 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserve ... show more (mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 15 07:57:36.090396 2025] [security2:error] [pid 13628:tid 13628] [client 184.168.106.74:46030] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|michaelkivisto.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "michaelkivisto.com"] [uri "/wp-json/wp/v2/users/11"] [unique_id "aJ8gsF6C7gOB5-vps2CTogAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-15 10:29:52 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserve ... show more (mod_security) mod_security (id:225170) triggered by 184.168.106.74 (74.106.168.184.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 15 06:29:44.418029 2025] [security2:error] [pid 10455:tid 10455] [client 184.168.106.74:19194] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kenometer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kenometer.com"] [uri "/wp-json/wp/v2/users/9"] [unique_id "aJ8MGA2408SukekPl2S5OQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-08-15 04:08:13 (10 months ago)	Wordpress malicious attack:[octaxmlrpc]	Web App Attack
🇫🇮 stinpriza	2025-08-14 23:48:48 (10 months ago)	Web App Attack	Web App Attack
🇭🇺 HoneyPotEu	2025-08-11 16:12:51 (10 months ago)	184.168.106.74 [redacted] (26496-AS-26496-GO-DADDY-COM-LLC Singapore Singapore) - - [11/Aug/2025:18: ... show more 184.168.106.74 [redacted] (26496-AS-26496-GO-DADDY-COM-LLC Singapore Singapore) - - [11/Aug/2025:18:12:40 +0200] "POST /xmlrpc.php HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Appl ... show less	Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2025-08-11 07:15:28 (10 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 karger	2025-08-07 17:47:14 (10 months ago)	Wordpress attack - soft filter	Brute-Force Web App Attack
🇺🇸 Jason Howell	2025-08-04 07:47:20 (10 months ago)	184.168.106.74 - - [04/Aug/2025:01:21:46 -0500] "POST /wp-login.php HTTP/1.1" 200 2290 "https://www. ... show more 184.168.106.74 - - [04/Aug/2025:01:21:46 -0500] "POST /wp-login.php HTTP/1.1" 200 2290 "https://www.barbsgardenandpantry.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 184.168.106.74 - - [04/Aug/2025:01:49:42 -0500] "GET /wp-login.php HTTP/1.1" 200 4507 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 184.168.106.74 - - [04/Aug/2025:01:49:43 -0500] "POST /wp-login.php HTTP/1.1" 200 2263 "https://www.barbsgardenandpantry.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 184.168.106.74 - - [04/Aug/2025:02:47:18 -0500] "GET /wp-login.php HTTP/1.1" 200 4505 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 184.168.106.74 - - [04/Aug/2025:02:47:19 -0500] "POST /wp-login.php HTTP/1.1" 200 2290 ... show less	Web App Attack

Showing 1 to 15 of 399 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.36

🇬🇧 198.244.168.208

🇺🇸 193.36.231.127

🇲🇽 187.174.207.66

🇨🇳 117.21.93.91

🇵🇭 112.208.177.241

🇧🇩 103.178.30.251

🇺🇸 91.230.168.239

🇫🇷 91.196.152.210

🇳🇱 45.142.193.161

🇦🇪 5.32.61.6

🇺🇸 3.131.24.55

🇬🇧 212.227.125.15

🇳🇱 193.176.31.240

🇧🇷 179.184.85.167

🇺🇸 172.253.8.146

🇳🇱 164.92.215.178

🇭🇰 152.32.226.203

🇦🇫 149.54.15.126

🇺🇸 104.152.52.214