JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 68.220.58.3

68.220.58.3 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 68.220.58.3

Whois 68.220.58.3

IP Abuse Reports for 68.220.58.3:

This IP address has been reported a total of 51 times from 33 distinct sources. 68.220.58.3 was first reported on April 10th 2026, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 2048	2026-05-13 03:51:20 (3 weeks ago)	2026-05-13T05:51:10.985394+02:00 machodeer kernel: [1352187.502831] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-13T05:51:10.985394+02:00 machodeer kernel: [1352187.502831] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=68.220.58.3 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=19266 DF PROTO=TCP SPT=41043 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-13T05:51:12.048145+02:00 machodeer kernel: [1352188.565586] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=68.220.58.3 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=19267 DF PROTO=TCP SPT=41043 DPT=443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-13T05:51:19.134174+02:00 machodeer kernel: [1352195.651490] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=68.220.58.3 DST=REDACTED LEN=40 TOS=0x00 PREC=0x00 TTL=105 ID=1 DF PROTO=TCP SPT=41043 DPT=443 WINDOW=0 RES=0x00 ACK RST URGP=0 show less	Port Scan
🇬🇧 openstrike.co.uk	2026-04-11 05:16:47 (1 month ago)	3 attacks on VC URLs: GET /.git/config HTTP/1.1	Hacking
🇳🇱 jjnxpct	2026-04-11 03:47:58 (1 month ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /@fs/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Web App Attack Hacking
🇳🇱 homeshowdomain.nl	2026-04-10 22:02:51 (1 month ago)	Auto-ban: >3000 req/min op 2026-04-10	Web App Attack SSH Hacking
🇳🇱 Mangelot Hosting	2026-04-10 14:37:38 (1 month ago)	(modsecurity) srv201 ModSecurity 68.220.58.3 (US/United States/-): 10 in the last 3600 secs; Ports: ... show more (modsecurity) srv201 ModSecurity 68.220.58.3 (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 14:15:27 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 10:15:20.777696 2026] [security2:error] [pid 2253278:tid 2253278] [client 68.220.58.3:51089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "skinnywheels.skinnywheels.com"] [uri "/.git/config"] [unique_id "adkF-EhXQo6C-hZVTvrzsgAAACA"], referer: https://twitter.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 13:23:49 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 09:23:42.545248 2026] [security2:error] [pid 1666176:tid 1666176] [client 68.220.58.3:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ac.cloudex.click"] [uri "/.git/config"] [unique_id "adj53tMtLd2UIV4yS8CwbwAAAAA"], referer: https://news.ycombinator.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 interbiznw.com	2026-04-10 13:08:48 (1 month ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇧🇪 cmbplf	2026-04-10 12:39:12 (1 month ago)	2.216 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-10 12:28:18 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 08:28:11.460578 2026] [security2:error] [pid 1291382:tid 1291435] [client 68.220.58.3:51334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "soluciona.biz"] [uri "/.git/config"] [unique_id "adjs2w4dF830IDHqOpSHhQAAAQU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-10 12:18:17 (1 month ago)	Multiple WAF Violations	Web App Attack
🇪🇸 masterguru	2026-04-10 12:00:29 (1 month ago)	Restricted File Access Attempt. Matched phrase "/.git/" at REQUEST_FILENAME. (930130-122)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 11:39:54 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 07:39:49.902390 2026] [security2:error] [pid 3890097:tid 3890097] [client 68.220.58.3:50722] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microscopedia.com"] [uri "/.git/config"] [unique_id "adjhhaCZrBDZHoMqOVTYnAAAAAo"], referer: https://stackoverflow.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-10 11:20:06 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 68.220.58.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 07:19:57.565418 2026] [security2:error] [pid 2715454:tid 2715475] [client 68.220.58.3:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mindgardens.com"] [uri "/.git/config"] [unique_id "adjc3dhmhXZEm67zbYKPcgAAAJM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-04-10 11:06:45 (1 month ago)	Too many Status 40X (11) Scanning/Probing (11)	Brute-Force Web App Attack

Showing 31 to 45 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.226

🇳🇱 176.65.148.44

🇩🇪 162.19.243.145

🇦🇷 152.169.154.26

🇹🇭 147.50.227.79

🇺🇸 20.65.195.33

🇩🇪 4.182.219.135

🇺🇸 216.128.154.127

🇹🇼 198.235.24.30

🇮🇳 182.78.240.94

🇨🇳 182.34.207.97

🇫🇮 147.185.133.134

🇺🇸 109.105.210.57

🇸🇬 103.134.154.36

🇳🇱 91.92.243.20

🇺🇸 45.156.129.157

🇳🇱 45.148.10.147

🇺🇸 44.219.215.209

🇺🇸 205.210.31.54

🇹🇼 198.235.24.32