JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 150.129.203.20

150.129.203.20 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 92%: ?

92%

ISP	Gtpl Broadband Pvt. Ltd.
Usage Type	Fixed Line ISP
ASN	AS45916
Domain Name	gtpl.net
Country	🇮🇳 India
City	Ahmedabad, Gujarat

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 150.129.203.20

Whois 150.129.203.20

IP Abuse Reports for 150.129.203.20:

This IP address has been reported a total of 27 times from 22 distinct sources. 150.129.203.20 was first reported on May 5th 2026, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-03 14:27:04 (14 hours ago)	(mod_security) mod_security (id:240335) triggered by 150.129.203.20 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 150.129.203.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:26:56.589351 2026] [security2:error] [pid 17315:tid 17315] [client 150.129.203.20:51181] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 150.129.203.20 (+1 hits since last alert)\|whodatnation.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whodatnation.com"] [uri "/xmlrpc.php"] [unique_id "aiA5sHn9sBh40WaIsI9mywAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 13:57:26 (15 hours ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=tmg.gr; logs=/var/log/httpd/domains/tmg.gr.log; samples=/xm ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=tmg.gr; logs=/var/log/httpd/domains/tmg.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇳🇿 Tripwire	2026-06-03 08:16:41 (20 hours ago)	Probing for Wordpress - /xmlrpc.php	Brute-Force Web App Attack
🇩🇪 abdubhai	2026-06-03 07:14:40 (21 hours ago)	150.129.203.20 - - [03/Jun/2026: ...	Brute-Force
🇺🇸 graphics-muse.org	2026-06-02 14:12:37 (1 day ago)	Tue Jun 02 08:12:16.455801 2026150.129.203.20 - - [02/Jun/2026:08:12:15 -0600] "POST /xmlrpc.php HTT ... show more Tue Jun 02 08:12:16.455801 2026150.129.203.20 - - [02/Jun/2026:08:12:15 -0600] "POST /xmlrpc.php HTTP/1.1" 200 448 Tue Jun 02 08:12:16.455801 2026150.129.203.20 - - [02/Jun/2026:08:12:15 -0600] "POST /xmlrpc.php HTTP/1.1" 200 3379 "-" "Jetpack by WordPress.com" Tue Jun 02 08:12:26.152240 2026150.129.203.20 - - [02/Jun/2026:08:12:25 -0600] "POST /xmlrpc.php HTTP/1.1" 200 448 Tue Jun 02 08:12:26.152240 2026150.129.203.20 - - [02/Jun/2026:08:12:25 -0600] "POST /xmlrpc.php HTTP/1.1" 200 3379 "-" "WordPress.com; https://wordpress.com" Tue Jun 02 08:12:36.569740 2026150.129.203.20 - - [02/Jun/2026:08:12:36 -0600] "POST /xmlrpc.php HTTP/1.1" 200 448 Tue Jun 02 08:12:36.569740 2026150.129.203.20 - - [02/Jun/2026:08:12:36 -0600] "POST /xmlrpc.php HTTP/1.1" 200 3379 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-01 13:37:52 (2 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-05-30 12:11:50 (4 days ago)	150.129.203.20 - - [30/May/2026:14:11:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.c ... show more 150.129.203.20 - - [30/May/2026:14:11:29 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 150.129.203.20 - - [30/May/2026:14:11:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 150.129.203.20 - - [30/May/2026:14:11:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 150.129.203.20 - - [30/May/2026:14:11:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 150.129.203.20 - - [30/May/2026:14:11:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" ... show less	Brute-Force Web App Attack
🇩🇪 rh24	2026-05-29 06:48:10 (5 days ago)	(xmlrpc_405) XMLRPC-Bot 405 150.129.203.20 (IN/India/-)	Hacking
🇨🇦 electronico	2026-05-29 06:47:54 (5 days ago)	150.129.203.20 - - [29/May/2026:17:47:53 +1100] "POST /xmlrpc.php HTTP/1.1" 503 22977 "-" "Jetpack b ... show more 150.129.203.20 - - [29/May/2026:17:47:53 +1100] "POST /xmlrpc.php HTTP/1.1" 503 22977 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" ... show less	Brute-Force Web App Attack
Anonymous	2026-05-27 14:40:02 (1 week ago)	Web App Attack, Hacking	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 09:13:08 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 150.129.203.20 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 150.129.203.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 05:13:04.064913 2026] [security2:error] [pid 11447:tid 11447] [client 150.129.203.20:59138] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 150.129.203.20 (+1 hits since last alert)\|desarrollosdecolima.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "desarrollosdecolima.com"] [uri "/xmlrpc.php"] [unique_id "aha1oOy0Ul4j3Dal9eJBkQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 abdubhai	2026-05-26 13:38:15 (1 week ago)	150.129.203.20 - - [26/May/2026: ...	Brute-Force
🇺🇸 WeekendWeb	2026-05-26 10:53:32 (1 week ago)	Wordpress Vunerability attack	Web App Attack
Anonymous	2026-05-25 09:55:12 (1 week ago)	[redacted] 150.129.203.20 - - [25/May/2026:11:54:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" " ... show more [redacted] 150.129.203.20 - - [25/May/2026:11:54:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" [redacted] 150.129.203.20 - - [25/May/2026:11:54:35 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" [redacted] 150.129.203.20 - - [25/May/2026:11:54:47 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack/12.0; WordPress/6.1; http://site37552872.com" [redacted] 150.129.203.20 - - [25/May/2026:11:55:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" [redacted] 150.129.203.20 - - [25/May/2026:11:55:11 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "WordPress.com; https://wordpress.com" ... show less	Hacking Web App Attack
🇫🇷 Kenshin869	2026-05-25 08:54:32 (1 week ago)	Wordpress unauthorized access attempt	Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a0e:97c0:3e3:2b3::1

🇭🇰 165.154.43.179

🇦🇹 152.53.0.56

🇭🇰 152.32.171.73

🇸🇬 143.198.217.151

🇩🇪 91.217.249.31

🇭🇰 20.187.65.213

🇺🇸 20.168.6.210

🇺🇸 2a13:9500:16b:be61::1

🇺🇸 216.218.206.89

🇺🇸 205.210.31.101

🇮🇳 203.145.143.163

🇹🇼 198.235.24.118

🇦🇷 186.56.11.2

🇸🇬 129.226.213.238

🇺🇸 66.175.213.4

🇮🇳 64.227.131.240

🇹🇭 45.194.70.250

🇧🇪 35.195.242.12

🇧🇪 34.53.245.36