JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.7.227.131

74.7.227.131 was found in our database!

This IP was reported 271 times. Confidence of Abuse is 88%: ?

88%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.7.227.131

Whois 74.7.227.131

IP Abuse Reports for 74.7.227.131:

This IP address has been reported a total of 271 times from 74 distinct sources. 74.7.227.131 was first reported on October 28th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-19 11:51:26 (8 hours ago)	Aggressive Robot or Attack DDOS	DDoS Attack
🇩🇪 maxpower	2026-06-19 10:31:48 (9 hours ago)	(junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Po ... show more (junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 74.7.227.131 - - [19/Jun/2026:12:31:46 +0200] "GET / HTTP/2.0" 200 20382 "https://mail.worldchristmas.eu" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" "-" host=worldchristmas.eu show less	Port Scan
🇩🇪 maxpower	2026-06-19 07:07:29 (13 hours ago)	(junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Po ... show more (junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 74.7.227.131 - - [19/Jun/2026:09:07:26 +0200] "GET / HTTP/2.0" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" "-" host=www.frleone.ovh show less	Port Scan
🇫🇷 masterguru	2026-06-19 05:48:32 (14 hours ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-197)	Hacking
🇩🇪 maxpower	2026-06-19 05:29:49 (14 hours ago)	(junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Po ... show more (junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 74.7.227.131 - - [19/Jun/2026:07:29:43 +0200] "GET /sitemap_index.xml HTTP/2.0" 200 279 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" "-" host=worldchristmas.eu show less	Port Scan
🇺🇸 Charlesiv	2026-06-19 04:02:21 (16 hours ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corpora ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corporation) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2026-06-19T03:06:48Z Ray ID: a0df51e33c0e50f7 UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-19 01:46:39 (18 hours ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.131 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 21:46:32.150300 2026] [security2:error] [pid 21312:tid 21312] [client 74.7.227.131:36802] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|alpha-hk.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "alpha-hk.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ajSfeP4vaFZhys02tucZFAAAACA"], referer: http://alpha-hk.com/author/sg28sjk0nx/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 23:02:27 (21 hours ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.131 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 19:02:21.317314 2026] [security2:error] [pid 3658:tid 3658] [client 74.7.227.131:49190] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.boaredraven.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.boaredraven.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ajR4_XXwOQ63PJvKsnW-pQAAAAc"], referer: http://www.boaredraven.com/author/admin/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-18 20:53:56 (23 hours ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 08:44:01 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.131 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 04:43:53.563916 2026] [security2:error] [pid 32281:tid 32281] [client 74.7.227.131:42192] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.thehealthyplaceclayton.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.thehealthyplaceclayton.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ajOvyY4ljzBEhmXOK7kCQwAAAAk"], referer: https://www.thehealthyplaceclayton.com/author/admin/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 maxpower	2026-06-18 05:29:40 (1 day ago)	(junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Po ... show more (junkbot) REGOLA 8 - Junk Bot Blocked 74.7.227.131 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 74.7.227.131 - - [18/Jun/2026:07:29:33 +0200] "GET /sitemap_index.xml HTTP/2.0" 200 279 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" "-" host=worldchristmas.eu show less	Port Scan
🇫🇷 masterguru	2026-06-18 05:15:33 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.131 (US/United States/-): 1 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.131 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 LotPhantom	2026-06-18 04:27:09 (1 day ago)	74.7.227.131 - - [18/Jun/2026:04:26:20 +0000] "GET / HTTP/2.0" 200 27879 "-" "Mozilla/5.0 AppleWebKi ... show more 74.7.227.131 - - [18/Jun/2026:04:26:20 +0000] "GET / HTTP/2.0" 200 27879 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" "0" ... show less	Web App Attack Bad Web Bot
Anonymous	2026-06-18 03:55:40 (1 day ago)	Aggressive Robot or Attack DDOS	DDoS Attack
🇬🇧 pinguin	2026-06-17 09:53:39 (2 days ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK Protocol: HTTP/2 (GET method ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 271 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.140

🇨🇳 8.134.111.31

🇺🇸 3.131.220.121

🇦🇷 181.116.220.252

🇷🇺 85.113.33.198

🇳🇱 45.148.10.147

🇬🇧 35.203.211.76

🇮🇪 20.13.147.55

🇺🇸 18.97.19.163

🇷🇴 2.57.122.177

🇨🇳 1.194.133.237

🇨🇳 1.27.251.252

🇬🇧 195.96.139.123

🇸🇬 152.32.218.244

🇵🇹 62.28.176.130

🇺🇸 18.97.19.158

🇺🇸 3.237.30.66

🇺🇦 176.103.1.153

🇵🇭 160.250.44.54

🇨🇳 111.60.49.147