JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.7.227.42

74.7.227.42 was found in our database!

This IP was reported 289 times. Confidence of Abuse is 77%: ?

77%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.7.227.42

Whois 74.7.227.42

IP Abuse Reports for 74.7.227.42:

This IP address has been reported a total of 289 times from 90 distinct sources. 74.7.227.42 was first reported on October 28th 2025, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-19 00:35:07 (22 minutes ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.42 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 20:35:01.370243 2026] [security2:error] [pid 19744:tid 19744] [client 74.7.227.42:39480] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.415test.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.415test.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "ajSOtUyifayxmQisCT-KAAAAAAM"], referer: http://www.415test.com/author/jessica/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 08:36:54 (16 hours ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.42 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 04:36:45.771352 2026] [security2:error] [pid 31036:tid 31036] [client 74.7.227.42:42834] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.itibitico.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.itibitico.com"] [uri "/Intro/wp-json/wp/v2/users/1"] [unique_id "ajOuHbBAOZI4kkoLnMLWkAAAAAU"], referer: http://www.itibitico.com/Intro/author/admin/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-18 06:56:17 (18 hours ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.42 (US/United States/-): 1 i ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.42 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 MPL	2026-06-18 04:25:36 (20 hours ago)	tcp/443 (4 or more attempts)	Port Scan
🇳🇱 Site.eu	2026-06-17 07:35:48 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇪🇸 pipeline.es	2026-06-16 07:39:01 (2 days ago)	Web scanning / probing for vulnerable paths \| URL: /404.shtm \| Evidence: www.fetave.es 74.7.227.42 - ... show more Web scanning / probing for vulnerable paths \| URL: /404.shtm \| Evidence: www.fetave.es 74.7.227.42 - - [16/Jun/2026:09:38:23 +0200] \"GET /404.shtm HTTP/1.1\" 404 13298 \"http://www.fetave.es\" \"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)\" GEOIP_COUNTRY_CODE=US \| ASN: MICROSOFT-CORP-MSN-AS-BLOCK \| Country: US show less	Port Scan Web App Attack
🇳🇱 Site.eu	2026-06-16 02:44:19 (2 days ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 Site.eu	2026-06-14 20:26:03 (4 days ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 Site.eu	2026-06-13 13:46:51 (5 days ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 conseilgouz	2026-06-12 19:10:07 (6 days ago)	sce-88 : Bloc AI bots=>/(ai.)	Hacking
🇺🇸 TPI-Abuse	2026-06-12 14:42:17 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 74.7.227.42 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 74.7.227.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 10:42:13.552908 2026] [security2:error] [pid 8622:tid 8622] [client 74.7.227.42:55186] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.firstunitedreserve.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.firstunitedreserve.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aiwaxdLn41ZibLAVti9NPQAAAAM"], referer: https://www.firstunitedreserve.com/author/james/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-12 12:49:06 (6 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.42 (US/United States/-): 1 i ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.227.42 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇬🇧 Interceptor_HQ	2026-06-12 11:07:35 (6 days ago)	request_uri: / -- automatic report --	Brute-Force Hacking
🇳🇱 Site.eu	2026-06-12 07:56:40 (6 days ago)	Excessive multi-domain requests	Brute-Force
🇪🇸 pipeline.es	2026-06-11 11:19:22 (1 week ago)	Web scanning / probing for vulnerable paths \| URL: /css/fonts/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 \| Evi ... show more Web scanning / probing for vulnerable paths \| URL: /css/fonts/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 \| Evidence: www.fetave.es 74.7.227.42 - - [11/Jun/2026:13:17:51 +0200] \"GET /css/fonts/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1\" 404 13332 \"http://www.fetave.es\" \"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)\" GEOIP_COUNTRY_CODE=US \| ASN: MICROSOFT-CORP-MSN-AS-BLOCK \| Country: US show less	Port Scan Web App Attack

Showing 1 to 15 of 289 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 201.149.53.243

🇺🇸 172.58.255.74

🇺🇸 91.230.168.253

🇩🇪 82.115.20.179

🇺🇸 64.62.197.18

🇬🇧 217.146.80.114

🇺🇸 216.180.246.58

🇦🇺 209.38.20.236

🇧🇷 205.210.31.232

🇺🇸 195.184.76.126

🇨🇷 186.15.168.225

🇲🇽 177.236.130.56

🇩🇪 172.71.144.51

🇺🇸 162.216.149.156

🇭🇰 152.32.169.155

🇺🇸 147.185.132.144

🇦🇪 91.73.84.71

🇧🇬 79.124.49.226

🇧🇷 45.236.51.73

🇧🇷 45.176.211.2