JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.7.241.2

74.7.241.2 was found in our database!

This IP was reported 217 times. Confidence of Abuse is 73%: ?

73%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.7.241.2

Whois 74.7.241.2

IP Abuse Reports for 74.7.241.2:

This IP address has been reported a total of 217 times from 77 distinct sources. 74.7.241.2 was first reported on November 19th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tecnicorioja	2026-06-05 22:01:17 (1 day ago)	wp-login attack [05/Jun/2026:09:32:10	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 14:20:47 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 74.7.241.2 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 74.7.241.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 10:20:39.337518 2026] [security2:error] [pid 22734:tid 22734] [client 74.7.241.2:36716] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|cynosurephotography.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cynosurephotography.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aiLbN5DuDpbDdze8Tf2W3QAAAAc"], referer: http://cynosurephotography.com/author/admin/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Rocky Mountain Bioengineering Symposium	2026-06-03 20:06:45 (3 days ago)	[Tue Jun 02 14:05:37.430913 2026] [authz_core:error] [pid 438569:tid 140229437138496] [client 74.7.2 ... show more [Tue Jun 02 14:05:37.430913 2026] [authz_core:error] [pid 438569:tid 140229437138496] [client 74.7.241.2:35154] AH01630: client denied by server configuration: /var/www/public_html/history/sitemap.xml [Tue Jun 02 14:05:37.434923 2026] [authz_core:error] [pid 438569:tid 140229437138496] [client 74.7.241.2:35154] AH01630: client denied by server configuration: /var/www/public_rsrc/assets/RMBS-Server-Error.html [Wed Jun 03 14:06:45.249591 2026] [authz_core:error] [pid 471936:tid 140229546243648] [client 74.7.241.2:53430] AH01630: client denied by server configuration: /var/www/public_html/history/sitemap.xml ... show less	Bad Web Bot
🇺🇸 Charlesiv	2026-06-03 20:01:16 (3 days ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corpora ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK ASN: 8075 (Microsoft Corporation) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2026-06-03T19:50:25Z Ray ID: a0613a0b3efe8931 UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-02 02:03:18 (5 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.241.2 (US/United States/-): 1 in ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.241.2 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-05-29 00:44:29 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.241.2 (US/United States/-): 1 in ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.241.2 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇹🇭 MWA SOC	2026-05-27 13:54:21 (1 week ago)		Hacking
🇮🇹 eliosbrocchi	2026-05-26 10:48:50 (1 week ago)	74.7.241.2 - - [26/May/2026:12:48:47 +0200] "GET / HTTP/2.0" 200 2116 "-" "Mozilla/5.0 AppleWebKit/5 ... show more 74.7.241.2 - - [26/May/2026:12:48:47 +0200] "GET / HTTP/2.0" 200 2116 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" ... show less	VPN IP
🇺🇸 Victor López	2026-05-26 08:21:50 (1 week ago)	ulibertadores.unyrealsoftapp.com 74.7.241.2 - - [26/May/2026:03:21:17 -0500] "GET /wp-login.php HTTP ... show more ulibertadores.unyrealsoftapp.com 74.7.241.2 - - [26/May/2026:03:21:17 -0500] "GET /wp-login.php HTTP/2.0" 200 2913 "https://www.abuseipdb.com" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" valquintero.com.co 74.7.241.2 - - [26/May/2026:03:21:27 -0500] "GET /wp-login.php HTTP/1.1" 200 3009 "https://www.abuseipdb.com" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" ulibertadores.unyrealsoftapp.com 74.7.241.2 - - [26/May/2026:03:21:49 -0500] "GET /wp-login.php?action=lostpassword HTTP/2.0" 200 1367 "https://ulibertadores.unyrealsoftapp.com/wp-login.php" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" ... show less	Hacking Web App Attack
🇫🇷 masterguru	2026-05-26 06:22:05 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.241.2 (US/United States/-): 1 in ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 74.7.241.2 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇩🇪 maxpower	2026-05-26 06:11:02 (1 week ago)	(junkbot) REGOLA 8 - Junk Bot Blocked 74.7.241.2 (US/United States/-): 1 in the last 3600 secs; Port ... show more (junkbot) REGOLA 8 - Junk Bot Blocked 74.7.241.2 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 74.7.241.2 - - [26/May/2026:08:11:00 +0200] "GET / HTTP/2.0" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" "74.7.241.2" host=italpmiabruzzo.conapipescara.it show less	Port Scan
🇹🇭 MWA SOC	2026-05-25 02:29:16 (1 week ago)		Hacking
🇫🇷 Lunix	2026-05-22 20:13:55 (2 weeks ago)		Brute-Force Web App Attack
🇦🇺 aranguren.org	2026-05-22 04:17:52 (2 weeks ago)	74.7.241.2 - - [22/May/2026:14:16:39 +1000] "GET /ipv4 HTTP/1.1" 404 1124 "http://ns1.aranguren.org/ ... show more 74.7.241.2 - - [22/May/2026:14:16:39 +1000] "GET /ipv4 HTTP/1.1" 404 1124 "http://ns1.aranguren.org/" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" 74.7.241.2 - - [22/May/2026:14:16:42 +1000] "GET /rutorrent/ HTTP/1.1" 403 993 "http://ns1.aranguren.org/" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" 74.7.241.2 - - [22/May/2026:14:16:54 +1000] "GET /ipv6 HTTP/1.1" 404 1124 "http://ns1.aranguren.org/" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" 74.7.241.2 - - [22/May/2026:14:17:30 +1000] "GET /phpsysinfo/templates/phpsysinfo.css HTTP/1.1" 404 1144 "http://ns1.aranguren.org/phpsysinfo" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.4; +https://openai.com/gptbot)" 74.7.241.2 - - [22/May/2026:14:17:39 +1000] "GET /cacti/include/themes/modern/jquery.multiselect.filter.css?bdc527651975f5ccfb ... show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-21 17:04:19 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 74.7.241.2 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 74.7.241.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 13:04:12.573804 2026] [security2:error] [pid 17573:tid 17573] [client 74.7.241.2:49324] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|edgecomix.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "edgecomix.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ag87DGcWPF5iikaQFj39HAAAAAM"], referer: https://edgecomix.com/author/admin/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 217 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.66.22.74

🇧🇷 201.17.133.138

🇺🇸 162.216.150.22

🇫🇮 147.185.133.75

🇷🇴 92.118.39.236

🇺🇸 54.234.201.228

🇮🇪 51.37.129.235

🇨🇳 47.95.251.174

🇦🇲 176.32.193.16

🇩🇪 157.230.108.228

🇮🇳 117.242.152.129

🇮🇩 103.191.92.206

🇳🇱 45.156.87.127

🇳🇱 45.148.10.147

🇺🇸 8.229.163.96

🇷🇴 2.57.121.112

🇨🇳 220.205.123.57

🇩🇪 213.209.159.242

🇩🇪 213.209.159.56

🇬🇧 198.244.183.112