JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.248.153.102

74.248.153.102 was found in our database!

This IP was reported 85 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.248.153.102

Whois 74.248.153.102

IP Abuse Reports for 74.248.153.102:

This IP address has been reported a total of 85 times from 78 distinct sources. 74.248.153.102 was first reported on February 12th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2026-03-04 20:11:53 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇳🇱 homeshowdomain.nl	2026-02-13 22:59:18 (3 months ago)	Auto-ban: 353 malicious requests on 2026-02-12 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 353 malicious requests on 2026-02-12 (e.g., env/backup probes, brute-force, or error bursts). show less	Hacking Web App Attack SSH
🇹🇷 rtbh.com.tr	2026-02-13 20:11:35 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇬🇧 openstrike.co.uk	2026-02-13 06:15:57 (3 months ago)	342 attacks on PHP URLs: GET /wp-includes/class-mail.php HTTP/1.1	Web App Attack
🇺🇸 octageeks.com	2026-02-13 05:06:35 (3 months ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-12 23:01:28 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-12	Hacking Web App Attack SSH
🇹🇷 rtbh.com.tr	2026-02-12 20:11:31 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 Sebbabas	2026-02-12 11:58:07 (3 months ago)	\[Thu Feb 12 12:58:06.834186 2026\] \[:error\] \[pid 11804\] \[client 74.248.153.102:13352\] script ... show more \[Thu Feb 12 12:58:06.834186 2026\] \[:error\] \[pid 11804\] \[client 74.248.153.102:13352\] script \'/var/www/html/new4.php\' not found or unable to stat ... show less	FTP Brute-Force Port Scan Brute-Force Web App Attack SSH
🇬🇧 no1knows.com	2026-02-12 11:49:20 (3 months ago)	2026/02/12 11:49:18 [error] 3053407#3053407: 56331 FastCGI sent in stderr: "Primary script unknown" ... show more 2026/02/12 11:49:18 [error] 3053407#3053407: 56331 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 74.248.153.102, server: _, request: "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1", upstream: "fastcgi://unix:/run/php-fpm/www.sock:", host: "unifi.no1knows.com" 2026/02/12 11:49:18 [error] 3053407#3053407: 56331 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 74.248.153.102, server: _, request: "GET /new4.php HTTP/1.1", upstream: "fastcgi://unix:/run/php-fpm/www.sock:", host: "unifi.no1knows.com" 2026/02/12 11:49:18 [error] 3053407#3053407: 56331 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 74.248.153.102, server: _, request: "GET /xoot.php HTTP/1.1", upstream: "fastcgi://unix:/run/php-fpm/www.sock:", host: "unifi.no1knows.com" ... show less	Brute-Force Bad Web Bot
🇩🇪 ISPLtd	2026-02-12 11:48:10 (3 months ago)	74.248.153.102 [12/Feb/2026:07:48:10 -0400] patientrm.com:443 URL:/PII/PII.php "GET /PII/PII.php 74. ... show more 74.248.153.102 [12/Feb/2026:07:48:10 -0400] patientrm.com:443 URL:/PII/PII.php "GET /PII/PII.php 74.248.153.102 [12/Feb/2026:07:48:10 -0400] patientrm.com:443 URL:/xmlrpc.php "GET /xmlrpc.php ... show less	Hacking Web App Attack
🇩🇪 R.G.	2026-02-12 11:42:57 (3 months ago)	(ScanningForFiles) Scanning for files triggerd 74.248.153.102 (PL/Poland/-): 10 in the last 600 secs ... show more (ScanningForFiles) Scanning for files triggerd 74.248.153.102 (PL/Poland/-): 10 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-02-12 11:27:48 (3 months ago)	74.248.153.102 - - [12/Feb/2026:13:27:48 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 74.248.153.102 - - [12/Feb/2026:13:27:48 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 2854 "-" "-" ... show less	Web App Attack
🇩🇪 hchristo	2026-02-12 11:22:11 (3 months ago)	[Thu Feb 12 12:22:10.883494 2026] [proxy_fcgi:error] [pid 27423:tid 27509] [client 74.248.153.102:47 ... show more [Thu Feb 12 12:22:10.883494 2026] [proxy_fcgi:error] [pid 27423:tid 27509] [client 74.248.153.102:47978] AH01071: Got error 'Primary script unknown' [Thu Feb 12 12:22:10.934998 2026] [proxy_fcgi:error] [pid 27423:tid 27502] [client 74.248.153.102:47978] AH01071: Got error 'Primary script unknown' [Thu Feb 12 12:22:11.040078 2026] [proxy_fcgi:error] [pid 27423:tid 27477] [client 74.248.153.102:47978] AH01071: Got error 'Primary script unknown' [Thu Feb 12 12:22:11.144813 2026] [proxy_fcgi:error] [pid 27423:tid 27524] [client 74.248.153.102:47978] AH01071: Got error 'Primary script unknown' [Thu Feb 12 12:22:11.340745 2026] [proxy_fcgi:error] [pid 27423:tid 27504] [client 74.248.153.102:47978] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇺🇸 xmission.com	2026-02-12 11:05:06 (3 months ago)	Blocked by UFW (TCP on 80) Source port: 64509 TTL: 105 Packet length: 52 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 64509 TTL: 105 Packet length: 52 TOS: 0x00 This report (for 74.248.153.102) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2026-02-12 10:53:05 (3 months ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-admin/images/commentv.php	Web App Attack

Showing 1 to 15 of 85 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 34.118.131.205

🇩🇪 213.209.159.225

🇲🇽 186.96.145.241

🇦🇷 181.47.9.103

🇮🇳 152.32.158.74

🇮🇷 94.184.21.184

🇭🇰 47.86.35.237

🇺🇸 47.42.131.93

🇺🇸 44.220.185.143

🇸🇬 20.153.140.50

🇺🇸 5.161.101.51

🇧🇷 205.210.31.248

🇻🇳 171.231.196.186

🇺🇸 158.62.210.109

🇨🇳 121.196.55.134

🇺🇸 85.121.215.243

🇮🇩 36.66.16.233

🇹🇭 203.154.158.195

🇧🇪 198.235.24.128

🇧🇷 179.42.56.6