JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 68.154.116.114

68.154.116.114 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 74%: ?

74%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 68.154.116.114

Whois 68.154.116.114

IP Abuse Reports for 68.154.116.114:

This IP address has been reported a total of 29 times from 21 distinct sources. 68.154.116.114 was first reported on August 27th 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-08 01:47:49 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 21:47:43.693711 2026] [security2:error] [pid 2257:tid 2277] [client 68.154.116.114:28556] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.178"] [uri "/.git/HEAD"] [unique_id "aiYfP1oeZZk4-Hnp5gww1wAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 01:13:07 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 21:13:02.174912 2026] [security2:error] [pid 30465:tid 30500] [client 68.154.116.114:28621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.127"] [uri "/.git/HEAD"] [unique_id "aiYXHsK-yd21RsvflGk5xAAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 D3monite	2026-06-08 01:03:10 (6 days ago)	Attempted Brute Force (whostmgrd)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-08 00:38:06 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 20:38:00.779484 2026] [security2:error] [pid 27380:tid 27380] [client 68.154.116.114:28082] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.99"] [uri "/.git/HEAD"] [unique_id "aiYO6IGj0RvNJS4qz1AkIgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-08 00:37:34 (6 days ago)	Multiple WAF Violations	Web App Attack
🇮🇳 Mr.Singh	2026-06-08 00:30:53 (6 days ago)	NFT blocked 68.154.116.114 after 4 rejections on 08-Jun-2026.	Port Scan Brute-Force
🇮🇹 festigf	2026-06-08 00:14:49 (6 days ago)	Attacco rilevato da Fail2Ban su Nginx	Brute-Force Web App Attack
🇷🇸 Scan	2026-06-08 00:01:51 (6 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇾 lns.bz	2026-06-08 00:01:27 (6 days ago)	.env scanning [BY]	Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-07 23:53:15 (6 days ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-1)	Hacking Bad Web Bot
🇺🇸 MPL	2026-06-07 23:41:20 (6 days ago)	tcp port scan (16 or more attempts)	Port Scan
🇩🇪 kivitendo.de	2026-06-07 23:38:20 (6 days ago)	[Mon Jun 08 01:38:24.249719 2026] [access_compat:error] [pid 133147:tid 133170] [client 68.154.116.1 ... show more [Mon Jun 08 01:38:24.249719 2026] [access_compat:error] [pid 133147:tid 133170] [client 68.154.116.114:28831] AH01797: client denied by server configuration: /var/www/kivitendo-erp/.git/HEAD [Mon Jun 08 01:38:25.441048 2026] [access_compat:error] [pid 133147:tid 133172] [client 68.154.116.114:28921] AH01797: client denied by server configuration: /var/www/kivitendo-erp/.git/config ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 23:10:47 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 68.154.116.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 19:10:41.801726 2026] [security2:error] [pid 31523:tid 31523] [client 68.154.116.114:27919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.88"] [uri "/.git/HEAD"] [unique_id "aiX6cWtCnhhnZLfGHD11ZwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 masterguru	2026-06-07 22:47:51 (6 days ago)	Host header is a numeric IP address. Pattern match "^ (920350-164)	Hacking Bad Web Bot
🇦🇺 LiftUp Hosting	2026-06-07 22:39:57 (6 days ago)	Honeypot hit: Empty payload (likely service probe); 2087 [4], 2083 [1], 2082 [1], 2086 [1] TCP	Port Scan

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.90.212.247

🇮🇶 169.224.32.143

🇨🇳 115.190.44.249

🇮🇳 49.36.83.94

🇩🇪 213.209.159.158

🇫🇷 173.212.204.196

🇰🇷 129.154.62.115

🇮🇩 103.164.57.37

🇸🇬 101.32.242.137

🇰🇼 94.129.167.13

🇫🇷 88.189.212.163

🇷🇺 82.202.247.130

🇨🇳 59.45.229.41

🇸🇬 43.160.233.2

🇮🇩 36.78.110.142

🇰🇷 211.180.105.241

🇺🇸 186.241.75.118

🇸🇬 165.154.205.128

🇩🇿 105.111.114.8

🇮🇹 93.92.76.17