AbuseIPDB » 111.90.150.28

111.90.150.28 was found in our database!

This IP was reported 3,624 times. Confidence of Abuse is 100%: ?

100%

ISP	Shinjiru Technology Sdn Bhd
Usage Type	Data Center/Web Hosting/Transit
Hostname(s)	adidas-2.com
Domain Name	shinjiru.com.my
Country	Malaysia
City	Kuala Lumpur, Wilayah Persekutuan Kuala Lumpur

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 111.90.150.28

Whois 111.90.150.28

IP Abuse Reports for 111.90.150.28:

This IP address has been reported a total of 3,624 times from 306 distinct sources. 111.90.150.28 was first reported on May 13th 2022, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
bogdanv	2023-12-10 10:45:58 (20 hours ago)	$f2bV_matches	DDoS Attack Web Spam SQL Injection Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-11-29 17:35:01 (1 week ago)	Attempted WordPress login: 111.90.150.28 - - [29/Nov/2023:17:27:53 +0000] "GET /wp-login.php ... show moreAttempted WordPress login: 111.90.150.28 - - [29/Nov/2023:17:27:53 +0000] "GET /wp-login.php HTTP/1.1" 404 250 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" show less	Hacking Web App Attack
MPL	2023-11-29 15:59:16 (1 week ago)	tcp/80 (5 or more attempts)	Port Scan
MPL	2023-11-29 15:59:16 (1 week ago)	tcp/80 (10 or more attempts)	Port Scan
findlab	2023-11-29 14:20:02 (1 week ago)	Backdrop CMS module - scanning for vulnerable files	Bad Web Bot Web App Attack
Anonymous	2023-11-29 08:00:34 (1 week ago)	111.90.150.28 - - [29/Nov/2023:08:53:38 +0100] "GET /wp-login.php HTTP/1.1" 200 8664 "-" "Mozilla/5. ... show more111.90.150.28 - - [29/Nov/2023:08:53:38 +0100] "GET /wp-login.php HTTP/1.1" 200 8664 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 111.90.150.28 - - [29/Nov/2023:08:53:39 +0100] "POST /wp-login.php HTTP/1.1" 200 8808 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 111.90.150.28 - - [29/Nov/2023:09:00:33 +0100] "GET /wp-login.php HTTP/1.1" 200 8664 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" show less	Web App Attack
Lemmy	2023-11-29 07:03:00 (1 week ago)	WP site brute force login attempts	Hacking Web App Attack
Tha_14	2023-11-29 06:31:31 (1 week ago)	Attempt to log in with non-existing username: admin	Bad Web Bot
mr-money.de	2023-11-28 18:53:28 (1 week ago)	111.90.150.28 - - [28/Nov/2023:19:53:26 +0100] "GET /wp-login.php HTTP/1.1" 404 4358 "http://www.adv ... show more111.90.150.28 - - [28/Nov/2023:19:53:26 +0100] "GET /wp-login.php HTTP/1.1" 404 4358 "http://www.adv-box.de/wp-login.php" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
Hirte	2023-11-28 18:00:24 (1 week ago)	DIS: Web Attack GET /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack
theEngineer	2023-11-28 17:23:16 (1 week ago)	[17:23:16] 11: Scanning for Exploits - /wp-login.php (Repeat abuser, 14 other attacks previously rec ... show more[17:23:16] 11: Scanning for Exploits - /wp-login.php (Repeat abuser, 14 other attacks previously recorded.) show less	Hacking Web App Attack
Birdflew	2023-11-28 12:39:13 (1 week ago)	Port scanning	Hacking
mawan	2023-11-28 12:02:38 (1 week ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
Birdflew	2023-11-28 11:08:48 (1 week ago)	Wordpress attack	Web App Attack
Anonymous	2023-11-28 10:28:53 (1 week ago)	(mod_security) mod_security (id:972687) triggered by 111.90.150.28 (MY/Malaysia/adidas-2.com): 2 in ... show more(mod_security) mod_security (id:972687) triggered by 111.90.150.28 (MY/Malaysia/adidas-2.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Tue Nov 28 06:59:32.021664 2023] [security2:error] [pid 1794] [client 111.90.150.28:50068] [client 111.90.150.28] ModSecurity: Access denied with code 401 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "7"] [id "972687"] [msg "xmlrpc request blocked, no referrer"] [hostname "ggr3.com.br"] [uri "/xmlrpc.php"] [unique_id "ZWW6BGfG3vdpZBXJjjdgRgAAABI"] [Tue Nov 28 07:28:52.504896 2023] [security2:error] [pid 24320] [client 111.90.150.28:37224] [client 111.90.150.28] ModSecurity: Access denied with code 401 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "7"] [id "972687"] [msg "xmlrpc request blocked, no referrer"] [hostname "ggr3.com.br"] [uri "/xmlrpc.php"] [unique_id "ZWXA5NWeJ8pq7ty7gTv_HQAAABQ"] show less	Port Scan

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩