JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 72.146.39.127

72.146.39.127 was found in our database!

This IP was reported 197 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 72.146.39.127

Whois 72.146.39.127

IP Abuse Reports for 72.146.39.127:

This IP address has been reported a total of 197 times from 171 distinct sources. 72.146.39.127 was first reported on June 11th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-06-16 10:51:53 (1 week ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Holger	2026-06-13 12:35:19 (2 weeks ago)	WordPress WebAttack	Brute-Force Web App Attack
Anonymous	2026-06-13 08:06:35 (2 weeks ago)	Trying to access config files	Web App Attack
🇪🇸 Gem	2026-06-13 05:59:38 (2 weeks ago)	Unauthorized web scan.	Web App Attack
🇳🇱 Site.eu	2026-06-12 23:45:40 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-12 18:09:36 (2 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent show less	Bad Web Bot Web App Attack
Anonymous	2026-06-12 08:34:56 (2 weeks ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
🇭🇺 DumaNet	2026-06-12 06:50:00 (2 weeks ago)	Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 11. 22:14:55 Source IP: 72.146 ... show more Web app attack attempts, scanning for vulnerability. Date: 2026 Jun 11. 22:14:55 Source IP: 72.146.39.127 Portion of the log(s): 72.146.39.127 - [11/Jun/2026:22:14:55 +0200] "GET /wp-links-opml.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:55 +0200] "GET /900.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:55 +0200] "GET /press.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:55 +0200] "GET /ms-edit.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:55 +0200] "GET /wp-class-atom.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:54 +0200] "GET /wp-access.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:54 +0200] "GET /ms.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:54 +0200] "GET /wp5.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:54 +0200] "GET /wp-links-opml.php HTTP/1.1" 404 153 "-" "-" 72.146.39.127 - [11/Jun/2026:22:14:54 +0200] "GET /tymn.php HTTP/1.1" 404 show less	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-12 05:14:32 (2 weeks ago)	127 attacks on PHP URLs: GET /first.php HTTP/1.1	Web App Attack
🇬🇧 andypiper	2026-06-12 01:02:11 (2 weeks ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-12 00:55:37 (2 weeks ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (4002-135)	Hacking Web App Attack
🇩🇪 tg_de	2026-06-12 00:54:47 (2 weeks ago)	127 attempts since 12.06.2026 02:54:41 CEST - last search for: /first.php	Web App Attack
Anonymous	2026-06-12 00:46:36 (2 weeks ago)	(PERMBLOCK) 72.146.39.127 (IT/Italy/-) has had more than 4 temp blocks in the last 86400 secs; Ports ... show more (PERMBLOCK) 72.146.39.127 (IT/Italy/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇺🇸 abenage	2026-06-12 00:40:17 (2 weeks ago)	72.146.39.127 - - [11/Jun/2026:18:40:16 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 72.146.39.127 - - [11/Jun/2026:18:40:16 -0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 162 "-" "-" show less	Bad Web Bot Web App Attack
🇱🇹 NotACaptcha	2026-06-12 00:37:00 (2 weeks ago)	webserver:80 [12/Jun/2026] "GET /wp-admin/network/edit.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2 ... show more webserver:80 [12/Jun/2026] "GET /wp-admin/network/edit.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /new.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /shell.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /hplfuns.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /wp-kikikoko.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /ioxi001.PhP7 HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /plugin-install.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /wen.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /wp-png.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /wp-content/radio.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /byypas.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /bmi.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /wp-blog-header.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /jga.php HTTP/1.1" 404 341 webserver:80 [12/Jun/2026] "GET /wp-the.php HTTP/1.1" 404 341 webserver:80 [12/Ju... show less	Hacking Web App Attack

Showing 1 to 15 of 197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.116.11.230

🇺🇸 195.184.76.179

🇮🇷 185.204.197.17

🇯🇵 164.52.24.189

🇺🇸 162.216.149.60

🇬🇧 157.245.46.52

🇬🇧 157.245.46.45

🇺🇸 147.185.132.31

🇭🇰 118.193.47.50

🇳🇱 45.198.224.127

🇺🇸 45.79.109.236

🇮🇳 35.200.191.248

🇨🇳 14.116.219.149

🇳🇱 185.224.128.16

🇬🇧 157.245.42.149

🇬🇧 157.245.40.100

🇬🇧 157.245.39.56

🇭🇰 118.193.43.244

🇺🇸 107.172.88.206

🇱🇻 91.108.189.138