IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
Important Note: 74.7.230.28 is an IP address from within
our whitelist belonging to the subnet
74.7.230.0/25,
which we identify as: "OpenAI Crawler".
Whitelisted netblocks are typically owned by trusted entities, such as Google
or Microsoft who may use them for search engine spiders. However, these same entities
sometimes also provide cloud servers and mail services which are easily abused. Pay special
attention when trusting or distrusting these IPs.
This IP address has been reported a total of
112
times from
32 distinct
sources.
74.7.230.28 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Honeypot [fra-de-honeypot]: HTTP/1.1 request on 25565
GET /robots.txt
User-Agent: Mozilla/5.0 (Maci ...
show moreHoneypot [fra-de-honeypot]: HTTP/1.1 request on 25565
GET /robots.txt
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.4; robots.txt; +https://openai.com/searchbot
Accept: */*
Accept-Encoding: gzip, br, deflate; 25565 [1] TCP
Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 in the last 3600 secs (0-195)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 in the last 3600 secs (0-196)
show less
Honeypot [fra-de-honeypot]: HTTP/1.1 request on 25565
GET /robots.txt
User-Agent: Mozilla/5.0 (Maci ...
show moreHoneypot [fra-de-honeypot]: HTTP/1.1 request on 25565
GET /robots.txt
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.4; robots.txt; +https://openai.com/searchbot
Accept: */*
Accept-Encoding: gzip, br, deflate; 25565 [1] TCP
Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 in the last 3600 secs (0-195)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 in the last 3600 secs (0-195)
show less
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 1ร edge-block in 10 ...
show more[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 1ร edge-block in 10m window.
Origin: US / AS8075 Microsoft Corporation
Active: 12:28:39 UTC
Volume: 1 HTTP req
Probed: /robots.txt
Status mix: 444ร1
Vhost fishing: secondopinion.ztx-lab.com
UA: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.4; robots...."
Auto-banned 30d. zorvexus-banner.
show less
Honeypot [fra-de-honeypot]: HTTP/1.1 request on 25565
GET /robots.txt
User-Agent: Mozilla/5.0 (Maci ...
show moreHoneypot [fra-de-honeypot]: HTTP/1.1 request on 25565
GET /robots.txt
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.4; robots.txt; +https://openai.com/searchbot
Accept: */*
Accept-Encoding: gzip, br, deflate; 25565 [1] TCP
Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 in the last 3600 secs (0-196)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 1 in the last 3600 secs (0-195)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 in the last 3600 secs (0-196)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 in the last 3600 secs (0-193)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 i ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.230.28 (US/United States/-): 2 in the last 3600 secs (0-193)
show less
Hacking
Showing 1 to
15
of 112 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ