JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.34.210.141

149.34.210.141 was found in our database!

This IP was reported 492 times. Confidence of Abuse is 100%: ?

100%

ISP	GIBIRNET ILETISIM HIZMETLERI SANAYI VE TICARET LIMITED SIRKETI
Usage Type	Fixed Line ISP
ASN	AS208972
Hostname(s)	undefined.hostname.localhost
Domain Name	gibir.net.tr
Country	🇹🇷 Turkey
City	Istanbul, Istanbul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.34.210.141

Whois 149.34.210.141

IP Abuse Reports for 149.34.210.141:

This IP address has been reported a total of 492 times from 146 distinct sources. 149.34.210.141 was first reported on June 27th 2025, and the most recent report was 55 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TAY	2026-06-04 22:57:40 (55 minutes ago)	149.34.210.141 - - [05/Jun/2026:06:57:13 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4491 "-" "Jetpack by ... show more 149.34.210.141 - - [05/Jun/2026:06:57:13 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4491 "-" "Jetpack by WordPress.com" 149.34.210.141 - - [05/Jun/2026:06:57:26 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4491 "-" "WordPress.com; https://wordpress.com" 149.34.210.141 - - [05/Jun/2026:06:57:38 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4491 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force
🇫🇷 SpaceHost-Server	2026-06-04 22:26:59 (1 hour ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 20:03:24 (3 hours ago)	(mod_security) mod_security (id:240335) triggered by 149.34.210.141 (undefined.hostname.localhost): ... show more (mod_security) mod_security (id:240335) triggered by 149.34.210.141 (undefined.hostname.localhost): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 16:03:20.111586 2026] [security2:error] [pid 6267:tid 6267] [client 149.34.210.141:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 149.34.210.141 (+1 hits since last alert)\|pixacast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pixacast.com"] [uri "/xmlrpc.php"] [unique_id "aiHaCGas0bsW2TtoIawnsQAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-04 19:47:48 (4 hours ago)	[ThuJun0421:47:41.5717712026][security2:error][pid1518537:tid1518724][client149.34.210.141:0]ModSecu ... show more [ThuJun0421:47:41.5717712026][security2:error][pid1518537:tid1518724][client149.34.210.141:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"labaita-lanzo.it\"][uri\"/xmlrpc.php\"][unique_id\"aiHWXfWnYygtVhE49npboQAAAAc\"] show less	Hacking Web App Attack
🇩🇪 lenz	2026-06-04 18:11:49 (5 hours ago)	Jun 4 20:11:07 hosting wordpress(grupa-ddd.pl)[6431]: XML-RPC authentication failure for admin from ... show more Jun 4 20:11:07 hosting wordpress(grupa-ddd.pl)[6431]: XML-RPC authentication failure for admin from 149.34.210.141 Jun 4 20:11:17 hosting wordpress(grupa-ddd.pl)[1201]: XML-RPC authentication failure for admin from 149.34.210.141 Jun 4 20:11:29 hosting wordpress(grupa-ddd.pl)[1202]: XML-RPC authentication failure for admin from 149.34.210.141 Jun 4 20:11:38 hosting wordpress(grupa-ddd.pl)[11820]: XML-RPC authentication failure for admin from 149.34.210.141 Jun 4 20:11:48 hosting wordpress(grupa-ddd.pl)[1204]: XML-RPC authentication failure for admin from 149.34.210.141 ... show less	Brute-Force Web App Attack
Anonymous	2026-06-04 18:08:13 (5 hours ago)	Attac	Brute-Force
Anonymous	2026-06-04 13:14:43 (10 hours ago)		Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-04 13:01:13 (10 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2026-06-04 10:58:42 (12 hours ago)	149.34.210.141 - - [04/Jun/2026:12:58:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack/12. ... show more 149.34.210.141 - - [04/Jun/2026:12:58:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack/12.1; WordPress/6.2; http://site72046673.com" 149.34.210.141 - - [04/Jun/2026:12:58:21 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.1; WordPress/6.2; http://site72046673.com" 149.34.210.141 - - [04/Jun/2026:12:58:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" 149.34.210.141 - - [04/Jun/2026:12:58:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" 149.34.210.141 - - [04/Jun/2026:12:58:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-04 09:58:25 (13 hours ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 149.34.210.141 (TR/Türkiye/undefine ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 149.34.210.141 (TR/Türkiye/undefined.hostname.localhost): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 WeekendWeb	2026-06-04 02:58:21 (20 hours ago)	Wordpress Vunerability attack	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-03 22:26:41 (1 day ago)		Brute-Force Web App Attack
🇫🇷 Lunix	2026-06-03 20:06:27 (1 day ago)		Brute-Force Web App Attack
🇺🇸 oralunal	2026-06-03 17:19:07 (1 day ago)	IP banned by Fail2Ban in jail its-suss access.log mvfnds ...	Bad Web Bot Web App Attack
Anonymous	2026-06-03 11:58:58 (1 day ago)		Bad Web Bot Web App Attack

Showing 1 to 15 of 492 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:fb54:1400::1f5

🇺🇸 2602:80d:1008::3b

🇻🇪 190.97.230.198

🇸🇪 171.25.193.235

🇨🇳 111.225.149.242

🇷🇴 80.94.92.184

🇫🇷 62.138.3.40

🇺🇸 147.185.132.16

🇮🇩 103.15.226.202

🇺🇸 66.132.172.127

🇳🇱 45.148.10.206

🇳🇱 20.23.229.100

🇺🇸 205.210.31.104

🇺🇸 143.42.1.44

🇺🇸 142.248.80.72

🇩🇪 195.248.243.197

🇩🇪 178.105.163.37

🇺🇸 108.46.150.21

🇩🇪 217.234.92.249

🇱🇾 164.160.145.129