JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 150.230.171.79

150.230.171.79 was found in our database!

This IP was reported 53 times. Confidence of Abuse is 0%: ?

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 150.230.171.79

Whois 150.230.171.79

IP Abuse Reports for 150.230.171.79:

This IP address has been reported a total of 53 times from 20 distinct sources. 150.230.171.79 was first reported on June 28th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 penjaga BRIN	2023-07-24 18:01:38 (2 years ago)	apache-wp-login-111	Web App Attack
🇮🇩 hermawan	2023-07-24 07:53:04 (2 years ago)	[Mon Jul 24 14:53:02.922638 2023] [security2:error] [pid 233958:tid 140184284808768] [client 150.230 ... show more [Mon Jul 24 14:53:02.922638 2023] [security2:error] [pid 233958:tid 140184284808768] [client 150.230.171.79:54361] [client 150.230.171.79] ModSecurity: Access denied with code 403 (phase 1). String match "/wp-admin/" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-3.3.4/rules/testing-BEFORE-CRS.conf"] [line "259"] [id "966117"] [msg "phase 1 REQUEST_FILENAME @contains /wp-admin/"] [data "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [unique_id "ZL4t3gGSflEXMCcHry4J0AAAAR8"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[234161] [AcJu5959fHw] [ZL4t3gGSflEXMCcHry4J0AAAAR8] keep_alive=[0] [2023-07-24 14:53:02.922643] [R:ZL4t3gGSflEXMCcHry4J0AAAAR8] UA:'Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)' Host:'staklim-jatim.bmkg.go.id' COOKIE:'PHPSESSID=demo;' ACCEPT:'text/html,application/xhtml+xml,a ... show less	Hacking Web App Attack
🇮🇩 hermawan	2023-07-23 19:32:21 (2 years ago)	[Mon Jul 24 02:32:19.958154 2023] [security2:error] [pid 27388:tid 139982941431360] [client 150.230. ... show more [Mon Jul 24 02:32:19.958154 2023] [security2:error] [pid 27388:tid 139982941431360] [client 150.230.171.79:55243] [client 150.230.171.79] ModSecurity: Access denied with code 403 (phase 1). String match "/wp-admin/" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-3.3.4/rules/testing-BEFORE-CRS.conf"] [line "259"] [id "966117"] [msg "phase 1 REQUEST_FILENAME @contains /wp-admin/"] [data "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [unique_id "ZL2AQ3_CyEhC6daNGPlTLQAAAJM"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[27537] [5vFsjsT9c8U] [ZL2AQ3_CyEhC6daNGPlTLQAAAJM] keep_alive=[0] [2023-07-24 02:32:19.958157] [R:ZL2AQ3_CyEhC6daNGPlTLQAAAJM] UA:'Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)' Host:'karangploso.jatim.bmkg.go.id' COOKIE:'PHPSESSID=demo;' ACCEPT:'text/html,applicati ... show less	Hacking Web App Attack
🇺🇸 mawan	2023-07-23 05:42:52 (2 years ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇮🇩 penjaga BRIN	2023-07-22 12:02:23 (2 years ago)	apache-wp-login-111	Brute-Force
🇮🇩 ryanhf	2023-07-21 18:52:25 (2 years ago)	Hacking	Hacking Exploited Host Web App Attack
🇮🇩 NOC Monitoring KAI	2023-07-21 17:08:37 (2 years ago)	attack ke pt kai	Port Scan
🇮🇩 penjaga BRIN	2023-07-21 08:03:13 (2 years ago)	nginx-4xx-112	Web App Attack
🇮🇩 penjaga BRIN	2023-07-20 20:18:16 (2 years ago)	apache-badbots-158	Bad Web Bot
🇮🇩 penjaga BRIN	2023-07-19 05:01:06 (2 years ago)	apache-wp-login-111	Web App Attack
🇮🇩 hermawan	2023-07-18 18:51:04 (2 years ago)	[Wed Jul 19 01:51:01.989808 2023] [security2:error] [pid 176152:tid 140322100835904] [client 150.230 ... show more [Wed Jul 19 01:51:01.989808 2023] [security2:error] [pid 176152:tid 140322100835904] [client 150.230.171.79:53483] [client 150.230.171.79] ModSecurity: Access denied with code 403 (phase 1). String match "/wp-admin/" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-3.3.4/rules/testing-BEFORE-CRS.conf"] [line "259"] [id "966117"] [msg "phase 1 REQUEST_FILENAME @contains /wp-admin/"] [data "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [unique_id "ZLbfFcPOSTPixF3jw7Rt1AAAAS8"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[176257] [TkaFZe9nlfk] [ZLbfFcPOSTPixF3jw7Rt1AAAAS8] keep_alive=[0] [2023-07-19 01:51:01.989811] [R:ZLbfFcPOSTPixF3jw7Rt1AAAAS8] UA:'Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)' Host:'karangploso.jatim.bmkg.go.id' COOKIE:'PHPSESSID=demo;' ACCEPT:'text/html,applica ... show less	Hacking Web App Attack
🇸🇬 pusathosting.com	2023-07-18 02:50:53 (2 years ago)	2ds22 bruteforce	Brute-Force Web App Attack
🇮🇩 Burayot	2023-07-17 16:25:19 (2 years ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 150.230.171.79 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 150.230.171.79 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
🇮🇩 hermawan	2023-07-17 12:43:11 (2 years ago)	[Mon Jul 17 19:43:10.140558 2023] [security2:error] [pid 119571:tid 140079989241408] [client 150.230 ... show more [Mon Jul 17 19:43:10.140558 2023] [security2:error] [pid 119571:tid 140079989241408] [client 150.230.171.79:50500] [client 150.230.171.79] ModSecurity: Access denied with code 403 (phase 1). String match "/wp-admin/" at REQUEST_FILENAME. [file "/etc/modsecurity/coreruleset-3.3.4/rules/testing-BEFORE-CRS.conf"] [line "259"] [id "966117"] [msg "phase 1 REQUEST_FILENAME @contains /wp-admin/"] [data "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php"] [unique_id "ZLU3XnY00uDCO5vzLOYqwAAAAdM"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[119740] [HzUYJEb2y7g] [ZLU3XnY00uDCO5vzLOYqwAAAAdM] keep_alive=[0] [2023-07-17 19:43:10.140561] [R:ZLU3XnY00uDCO5vzLOYqwAAAAdM] UA:'Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)' Host:'staklim-jatim.bmkg.go.id' COOKIE:'PHPSESSID=demo;' ACCEPT:'text/html,application/xhtml+xml,a ... show less	Hacking Web App Attack
🇮🇩 ryanhf	2023-07-17 00:41:10 (2 years ago)	DDoS	DDoS Attack Web Spam Hacking Exploited Host Web App Attack

Showing 1 to 15 of 53 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇪 149.34.48.186

🇱🇰 111.223.182.252

🇺🇸 104.152.52.117

🇳🇱 45.148.10.51

🇦🇿 37.114.151.144

🇮🇳 203.115.91.96

🇭🇰 199.45.155.79

🇨🇦 142.183.237.7

🇨🇳 123.165.86.36

🇰🇷 58.229.253.119

🇮🇪 51.186.141.240

🇳🇱 45.148.10.147

🇺🇸 40.90.235.65

🇺🇸 20.171.8.87

🇻🇳 14.163.63.37

🇩🇪 213.209.159.227

🇺🇸 147.185.132.22

🇨🇳 116.179.32.229

🇧🇩 115.127.161.106

🇦🇴 102.130.71.199