JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 68.220.60.144

68.220.60.144 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 68.220.60.144

Whois 68.220.60.144

IP Abuse Reports for 68.220.60.144:

This IP address has been reported a total of 41 times from 38 distinct sources. 68.220.60.144 was first reported on September 3rd 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 securejdprop	2026-06-04 13:28:03 (1 hour ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇹🇼 tye	2026-06-04 13:25:49 (1 hour ago)	Wazuh Alert Evidence: 68.220.60.144 (68.220.60.144) - - [04/Jun/2026:21:25:47 +0800] "POST /wp/xmlrp ... show more Wazuh Alert Evidence: 68.220.60.144 (68.220.60.144) - - [04/Jun/2026:21:25:47 +0800] "POST /wp/xmlrpc.php HTTP/1.1" 404 3522 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" show less	Web App Attack
🇩🇰 ScamAware	2026-06-04 13:25:05 (1 hour ago)	Detected by Cloudflare Security Events via WordPress automation. Detection: bad_bot_scanner (Bad bot ... show more Detected by Cloudflare Security Events via WordPress automation. Detection: bad_bot_scanner (Bad bot / scanner behavior). Hits from same IP in last 60 minutes: 1. Unique request paths counted internally: 1. Cloudflare action: managed_challenge. Cloudflare source: botFight. show less	Bad Web Bot
🇩🇪 Vegascosmetics	2026-06-04 13:21:52 (1 hour ago)	Kingcopy(AI-IDS) Report: IP automatically blocked after PHP/webshell probe. Vegas Security System	DDoS Attack Hacking Bad Web Bot
🇨🇭 4server	2026-06-04 13:08:34 (1 hour ago)	[ThuJun0415:08:28.8882492026][security2:error][pid95690:tid96267][client68.220.60.144:0]ModSecurity: ... show more [ThuJun0415:08:28.8882492026][security2:error][pid95690:tid96267][client68.220.60.144:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"xn--walter-wrndli-pmb.ch\"][uri\"/wp/xmlrpc.php\"][unique_id\"aiF4zA0SXZUfVwTgiV-CYgAAAI8\"] show less	Hacking Web App Attack
🇫🇷 IRISIO	2026-06-04 12:48:47 (1 hour ago)	scans/SQL injection/spam posts : 4 queries	Web App Attack SQL Injection
🇺🇸 directorioeducativo.com	2026-06-04 12:31:28 (2 hours ago)	POST URL: "/wp/xmlrpc.php"Agent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTM ... show more POST URL: "/wp/xmlrpc.php"Agent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" show less	Web App Attack
🇳🇿 Tripwire	2026-06-04 12:28:39 (2 hours ago)	Probing for Wordpress - /wp/xmlrpc.php	Brute-Force Web App Attack
Anonymous	2026-06-04 12:20:04 (2 hours ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-06-04 12:05:56 (2 hours ago)	Xmlrpc Caught (9)	Brute-Force Web App Attack
🇺🇸 WellSpring	2026-06-04 11:33:51 (3 hours ago)	xmlrpc exploit on 217.today/wp/xmlrpc.php — WellSpr.ing/NetSentinel civic-AI security layer	Brute-Force Web App Attack
🇩🇪 4server	2026-06-04 11:33:39 (3 hours ago)	[ThuJun0413:33:34.7749592026][security2:error][pid3284306:tid3284437][client68.220.60.144:0]ModSecur ... show more [ThuJun0413:33:34.7749592026][security2:error][pid3284306:tid3284437][client68.220.60.144:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"formet.ch\"][uri\"/wp/xmlrpc.php\"][unique_id\"aiFijk57kIf18j_I5q8-9gAAAQo\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 interbiznw.com	2026-06-04 11:23:18 (3 hours ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇨🇦 electronico	2026-06-04 11:12:34 (3 hours ago)	68.220.60.144 - - [04/Jun/2026:22:12:34 +1100] "POST /wp/xmlrpc.php HTTP/1.1" 404 5858 "-" "Mozilla/ ... show more 68.220.60.144 - - [04/Jun/2026:22:12:34 +1100] "POST /wp/xmlrpc.php HTTP/1.1" 404 5858 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇭🇳 soporte	2026-06-04 10:54:30 (3 hours ago)	Probe for vulnerabilities. Path attempted: /wp/xmlrpc.php	Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.39.18.175

🇰🇷 183.108.192.120

🇨🇳 180.124.230.90

🇧🇷 179.87.159.193

🇲🇾 145.79.30.56

🇮🇩 103.165.206.238

🇳🇱 45.148.10.240

🇨🇳 220.197.78.89

🇧🇷 201.17.146.173

🇬🇧 193.163.125.2

🇳🇱 176.65.139.238

🇷🇺 81.23.173.32

🇷🇴 80.94.92.177

🇺🇸 66.132.195.73

🇺🇸 34.122.147.229

🇮🇳 139.59.21.124

🇺🇸 65.49.1.172

🇱🇺 46.151.182.161

🇺🇸 34.72.176.129

🇮🇳 2401:4900:b408:f8f5:34bb:b773:747d:ac61