IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
Important Note: 172.68.192.133 is an IP address from within
our whitelist belonging to the subnet
172.64.0.0/13,
which we identify as: "Cloudflare Reverse Proxy".
Whitelisted netblocks are typically owned by trusted entities, such as Google
or Microsoft who may use them for search engine spiders. However, these same entities
sometimes also provide cloud servers and mail services which are easily abused. Pay special
attention when trusting or distrusting these IPs.
This IP address has been reported a total of
109
times from
30 distinct
sources.
172.68.192.133 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
[ThuMay2809:32:58.5291652026][security2:error][pid280306:tid280391][client172.68.192.133:0]ModSecuri ...
show more[ThuMay2809:32:58.5291652026][security2:error][pid280306:tid280391][client172.68.192.133:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"nuovosito.gruppobalu.com\"][uri\"/.git/config\"][unique_id\"ahfvqujTQhKtd7XaMtQv2wAAAIk\"]
show less
Malicious activity in apache-honeypot. Evidence: [REDACTED_DOMAIN]:443 172.68.192.133 - - [13/May/20 ...
show moreMalicious activity in apache-honeypot. Evidence: [REDACTED_DOMAIN]:443 172.68.192.133 - - [13/May/2026:07:07:18 +0100] GET /backup.sql HTTP/2.0 403 96 https://[REDACTED_DOMAIN]/search?q=[REDACTED_DOMAIN] Mozilla/5.0 (Macintosh; Intel Mac OS X 14_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Safari/605.1.15
show less