JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 69.140.220.13

69.140.220.13 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 85%: ?

85%

ISP	Comcast Cable Communications, Inc
Usage Type	Fixed Line ISP
ASN	AS7922
Hostname(s)	c-69-140-220-13.hsd1.md.comcast.net
Domain Name	comcast.net
Country	🇺🇸 United States of America
City	Arlington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 69.140.220.13

Whois 69.140.220.13

IP Abuse Reports for 69.140.220.13:

This IP address has been reported a total of 25 times from 20 distinct sources. 69.140.220.13 was first reported on April 22nd 2025, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-06-17 23:04:32 (20 hours ago)	[ThuJun1801:04:26.2064102026][security2:error][pid3253918:tid3254283][client69.140.220.13:0]ModSecur ... show more [ThuJun1801:04:26.2064102026][security2:error][pid3253918:tid3254283][client69.140.220.13:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"viaggi-marocco-lugano.ch\"][uri\"/xmlrpc.php\"][unique_id\"ajMn-krKbEKwkUd8vtRk2AAAARU\"] show less	Hacking Web App Attack
🇳🇱 wlt-blocker	2026-06-16 05:36:52 (2 days ago)	Unauthorized access to webpage admin	Web App Attack
🇫🇷 dynamix	2026-06-16 02:56:23 (2 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇩🇪 Tha_14	2026-06-14 01:31:23 (4 days ago)	Limit on login attempts is reached	Brute-Force
🇦🇺 afleventoffice.com.au	2026-06-13 16:37:41 (5 days ago)	POST /xmlrpc.php HTTP/1.1	Web App Attack
Anonymous	2026-06-13 04:03:08 (5 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇧🇾 lns.bz	2026-06-13 00:21:03 (5 days ago)	Banned for trying to access xmlrpc [BY]	Web App Attack
Anonymous	2026-06-12 10:20:29 (6 days ago)	ModSecurity rejected a query	Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-11 22:06:19 (6 days ago)	Unauthorized access to webpage admin	Web App Attack
🇮🇹 Inartis	2026-06-11 10:23:05 (1 week ago)	69.140.220.13 - - [11/Jun/2026:12:23:04 +0200] "POST /xmlrpc.php HTTP/1.1" 302 7423 "-" "Mozilla/5.0 ... show more 69.140.220.13 - - [11/Jun/2026:12:23:04 +0200] "POST /xmlrpc.php HTTP/1.1" 302 7423 "-" "Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/12.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 01:07:57 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 69.140.220.13 (c-69-140-220-13.hsd1.md.comcast. ... show more (mod_security) mod_security (id:225170) triggered by 69.140.220.13 (c-69-140-220-13.hsd1.md.comcast.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 21:07:50.644067 2026] [security2:error] [pid 15919:tid 15919] [client 69.140.220.13:52200] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|yanlidesign.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "yanlidesign.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aioKZsPJ9UCL_5Sht5FMjQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Tripwire	2026-06-10 20:08:14 (1 week ago)	Probing for Wordpress - /xmlrpc.php	Brute-Force Web App Attack
🇫🇷 Kenshin869	2026-06-10 19:13:47 (1 week ago)	Wordpress unauthorized access attempt	Brute-Force
🇳🇱 wlt-blocker	2026-06-09 23:50:05 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 konseptit	2026-06-09 18:55:36 (1 week ago)	(wordpress) Failed wordpress login from 69.140.220.13 (US/United States/c-69-140-220-13.hsd1.md.comc ... show more (wordpress) Failed wordpress login from 69.140.220.13 (US/United States/c-69-140-220-13.hsd1.md.comcast.net) show less	Brute-Force

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 219.151.190.165

🇨🇱 181.42.166.229

🇱🇹 81.30.98.158

🇻🇪 45.234.60.37

🇳🇱 45.148.10.151

🇻🇳 36.50.135.229

🇹🇷 31.145.197.217

🇬🇧 13.42.205.55

🇰🇷 222.239.251.12

🇨🇳 219.150.93.157

🇵🇱 172.225.187.75

🇸🇬 165.154.236.104

🇧🇷 138.219.116.251

🇬🇧 86.9.82.71

🇨🇳 60.220.222.78

🇸🇬 47.82.52.79

🇬🇧 35.203.211.96

🇺🇸 9.234.10.188

🇦🇷 190.122.182.55

🇨🇴 186.146.235.58