JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 68.220.61.209

68.220.61.209 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 68.220.61.209

Whois 68.220.61.209

IP Abuse Reports for 68.220.61.209:

This IP address has been reported a total of 29 times from 24 distinct sources. 68.220.61.209 was first reported on September 1st 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 JCB	2026-06-03 13:02:00 (3 days ago)	68.220.61.209 - - [02/Jun/2026:20:24:32 +0300] "GET /backup.sql HTTP/1.1" 404 236 68.220.61.209 - - ... show more 68.220.61.209 - - [02/Jun/2026:20:24:32 +0300] "GET /backup.sql HTTP/1.1" 404 236 68.220.61.209 - - [02/Jun/2026:20:24:33 +0300] "GET /dump.sql HTTP/1.1" 404 236 ... show less	Web App Attack Hacking
Anonymous	2026-06-03 03:30:54 (3 days ago)	Unauthorized access (tcp/8080 - Scan for open web proxy)	Port Scan
🇮🇩 hermawan	2026-06-03 03:00:38 (3 days ago)	1780455631.217150 68.220.61.209 103.166.156.58 64240_2-4-8-1-3_1440_10 2026-06-03 10:00:31 WIB ...	Email Spam Hacking
🇷🇸 Scan	2026-06-03 01:52:55 (3 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 zupan	2026-06-03 01:45:27 (3 days ago)	Blocked by UFW on vps [2087/tcp] \| SPT: 49088 \| TTL: 37 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on vps [2087/tcp] \| SPT: 49088 \| TTL: 37 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 anycast_ac	2026-06-03 00:44:58 (3 days ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/8443 (generic).	DDoS Attack IoT Targeted Brute-Force
🇩🇪 anycast_ac	2026-06-03 00:26:24 (3 days ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/8080 (http). Commands captured: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/8080 (http). Commands captured: $ show less	DDoS Attack IoT Targeted Brute-Force
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (3 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 ghostwarriors	2026-06-02 22:20:12 (3 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 helios.live	2026-06-02 22:13:55 (3 days ago)	2026/06/02 22:13:41 [error] 2910629#2910629: 1665551 access forbidden by rule, client: 68.220.61.20 ... show more 2026/06/02 22:13:41 [error] 2910629#2910629: 1665551 access forbidden by rule, client: 68.220.61.209, server: 163.123.204.218, request: "GET /.git/config HTTP/1.1", host: "163.123.204.218" 2026/06/02 22:13:41 [error] 2910629#2910629: 1665552 access forbidden by rule, client: 68.220.61.209, server: 163.123.204.218, request: "GET /.env HTTP/1.1", host: "163.123.204.218" 2026/06/02 22:13:42 [error] 2910629#2910629: 1665554 access forbidden by rule, client: 68.220.61.209, server: 163.123.204.218, request: "GET /.env.local HTTP/1.1", host: "163.123.204.218" 2026/06/02 22:13:47 [error] 2910629#2910629: 1665562 access forbidden by rule, client: 68.220.61.209, server: 163.123.204.218, request: "GET /.aws/credentials HTTP/1.1", host: "163.123.204.218" 2026/06/02 22:13:54 [error] 2910629#2910629: 1665578 access forbidden by rule, client: 68.220.61.209, server: 163.123.204.218, request: "GET /.htpasswd HTTP/1.1", host: "163.123.204.218" ... show less	Web App Attack
🇫🇷 Version Net	2026-06-02 21:57:15 (3 days ago)	IPS Detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇬🇧 PeravixGroup	2026-06-02 21:53:37 (3 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 kosada.com	2026-06-02 21:33:55 (3 days ago)	Web vulnerability probing: /server-status (bogus vhost/SNI)	Web App Attack
🇺🇸 MPL	2026-06-02 21:16:48 (3 days ago)	tcp port scan (14 or more attempts)	Port Scan
🇵🇱 webadmin	2026-06-02 20:29:04 (3 days ago)		Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.36.225.77

🇬🇪 178.236.57.136

🇷🇺 178.185.136.57

🇺🇸 173.174.180.175

🇺🇸 91.230.168.102

🇮🇳 45.127.223.206

🇺🇸 44.254.81.7

🇷🇺 31.173.84.87

🇮🇩 180.244.156.228

🇸🇦 178.73.101.84

🇺🇸 167.160.48.163

🇰🇷 121.66.212.27

🇸🇬 101.47.156.21

🇵🇱 95.214.53.157

🇮🇹 93.92.78.9

🇸🇬 74.91.224.229

🇺🇸 66.132.172.177

🇫🇷 51.159.104.219

🇺🇸 40.112.183.29

🇬🇧 35.203.210.247