JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 68.220.59.241

68.220.59.241 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 71%: ?

71%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 68.220.59.241

Whois 68.220.59.241

IP Abuse Reports for 68.220.59.241:

This IP address has been reported a total of 22 times from 18 distinct sources. 68.220.59.241 was first reported on September 3rd 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-09 21:39:37 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 68.220.59.241 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 68.220.59.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 17:39:31.414393 2026] [security2:error] [pid 9386:tid 9386] [client 68.220.59.241:46157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.19"] [uri "/.git/HEAD"] [unique_id "aiiIE0UJoDRACx17OlDquwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-06-09 19:04:02 (3 days ago)	trying to access non-authorized port	Port Scan
Anonymous	2026-06-09 17:53:20 (3 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 ValtonTahiri	2026-06-09 17:46:31 (3 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=68.220.59.241; proto=TCP; source_port=46474; target_port=2087; flags=SYN show less	Port Scan
🇳🇱 Savvii	2026-06-09 16:38:17 (3 days ago)	15 attempts against mh-modsecurity-ban on comet	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 13:32:02 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 68.220.59.241 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 68.220.59.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 09:31:59.441464 2026] [security2:error] [pid 19138:tid 19138] [client 68.220.59.241:44253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.237"] [uri "/.git/config"] [unique_id "aiVyz4xxZaFmYSSg-VnragAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 11:27:02 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 68.220.59.241 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 68.220.59.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 07:26:54.753178 2026] [security2:error] [pid 14478:tid 14478] [client 68.220.59.241:43286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.51"] [uri "/.git/HEAD"] [unique_id "aiVVfm1WgOA02aHThiv0_gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 Bots.go.to.hell	2026-06-07 11:03:39 (6 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇸 MakoWish	2026-06-07 11:02:44 (6 days ago)	Fuzzing for misconfigured web servers.	Hacking Web App Attack
Anonymous	2026-06-07 10:45:02 (6 days ago)	suspicious request in access.log	Web App Attack
🇧🇷 vfAcceloReporter	2026-06-07 10:41:44 (6 days ago)	68.220.59.241 - - [07/Jun/2026:07:41:43 -0300] "GET /.env HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Macint ... show more 68.220.59.241 - - [07/Jun/2026:07:41:43 -0300] "GET /.env HTTP/1.1" 404 125 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" ... show less	Brute-Force Web App Attack Exploited Host
🇳🇱 Savvii	2026-06-07 10:19:16 (6 days ago)	15 attempts against mh-modsecurity-ban on shelf	Brute-Force Web App Attack
🇩🇪 joharikop	2026-06-07 10:01:29 (6 days ago)	Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-cred ... show more Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-credential-probes jail. show less	Web App Attack
🇩🇪 NewGastroline	2026-06-07 09:54:39 (6 days ago)	Malicious request blocked by CrowdSec on gastro-prod1.boreus.de	Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-06-07 09:36:12 (6 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇿 121.73.169.63

🇺🇸 2602:fb54:1a00::1ab

🇮🇳 182.72.102.106

🇨🇳 120.48.150.146

🇫🇷 91.196.152.99

🇮🇩 43.245.249.251

🇺🇸 40.134.125.146

🇺🇸 16.144.234.65

🇨🇳 1.14.28.29

🇬🇧 193.163.125.159

🇹🇼 114.25.135.192

🇸🇬 107.150.112.233

🇲🇾 103.12.154.244

🇳🇱 89.124.123.74

🇨🇦 67.71.55.209

🇺🇸 49.51.36.179

🇻🇪 38.171.255.232

🇨🇳 171.213.216.168

🇩🇪 167.94.145.28

🇫🇷 141.94.206.6