JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.7.227.128

74.7.227.128 was found in our database!

This IP was reported 308 times. Confidence of Abuse is 77%: ?

77%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.7.227.128

Whois 74.7.227.128

IP Abuse Reports for 74.7.227.128:

This IP address has been reported a total of 308 times from 95 distinct sources. 74.7.227.128 was first reported on October 29th 2025, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-26 07:12:58 (14 hours ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 Site.eu	2026-06-25 03:55:49 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 Viveronese	2026-06-24 19:37:02 (2 days ago)	HTTP vulnerability scanning	Web App Attack
🇪🇸 masterguru	2026-06-24 07:19:09 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "GPTBot" at REQUEST_HEADERS:user-agent. (1100000-122 ... show more BAD BOT - Detected and Blocked.. Matched phrase "GPTBot" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇪🇸 librebit	2026-06-23 14:27:23 (3 days ago)	Brute force	Brute-Force
🇳🇱 Site.eu	2026-06-23 11:16:41 (3 days ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 masterguru	2026-06-21 16:40:09 (5 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.128 (US/United States/-): 1 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.128 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 Charlesiv	2026-06-21 14:02:46 (5 days ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corpora ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corporation) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2026-06-21T12:44:21Z Ray ID: a0f31aa8b9fd1c72 UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot) show less	Bad Web Bot
🇪🇸 librebit	2026-06-21 08:18:22 (5 days ago)	Brute force	Brute-Force
🇳🇱 Site.eu	2026-06-20 23:53:39 (5 days ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 Site.eu	2026-06-19 13:38:57 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 masterguru	2026-06-18 05:27:22 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.128 (US/United States/-): 1 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.128 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 Charlesiv	2026-06-18 04:02:17 (1 week ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corpora ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corporation) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2026-06-18T03:15:12Z Ray ID: a0d720d3ea9abccc UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-17 15:31:07 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.128 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 11:31:03.338413 2026] [security2:error] [pid 28748:tid 28748] [client 74.7.227.128:36164] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.eta-mct.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.eta-mct.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ajK9tzjczbcCHP65CXSjswAAAAM"], referer: https://www.eta-mct.com/author/admin/ show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-14 21:00:56 (1 week ago)	7.502 requests from abuseipdb.com blacklisted IP (11mos2w2d)	Brute-Force Bad Web Bot

Showing 1 to 15 of 308 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.133

🇳🇱 195.178.110.228

🇩🇪 195.63.25.46

🇸🇬 194.5.82.94

🇸🇬 194.5.82.68

192.168.13.254

🇦🇷 170.233.29.157

🇫🇮 157.22.102.31

🇺🇸 152.32.207.124

🇷🇺 147.45.48.17

🇳🇱 145.90.8.9

🇨🇦 138.197.129.229

🇮🇳 116.193.128.26

🇨🇳 114.220.245.36

🇵🇭 114.198.138.124

🇩🇪 109.91.4.177

🇨🇳 106.12.221.161

🇻🇳 103.172.236.15

🇵🇰 103.93.13.157

🇮🇩 103.78.105.39