JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 150.95.80.21

150.95.80.21 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 96%: ?

96%

ISP	ZCOM
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135161
Hostname(s)	v150-95-80-21.a011.g.bkk1.static.cnode.io
Domain Name	gmo.jp
Country	🇹🇭 Thailand
City	Bangkok, Bangkok

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 150.95.80.21

Whois 150.95.80.21

IP Abuse Reports for 150.95.80.21:

This IP address has been reported a total of 74 times from 23 distinct sources. 150.95.80.21 was first reported on May 11th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 lostswordfish.com	2026-06-13 20:30:07 (2 hours ago)	Wordfence waf block on secure2024 libjusco	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 20:10:55 (2 hours ago)	(mod_security) mod_security (id:225170) triggered by 150.95.80.21 (v150-95-80-21.a011.g.bkk1.static. ... show more (mod_security) mod_security (id:225170) triggered by 150.95.80.21 (v150-95-80-21.a011.g.bkk1.static.cnode.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 16:10:49.537588 2026] [security2:error] [pid 20602:tid 20602] [client 150.95.80.21:59006] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.xhumanlikerobots.com.bamedica.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.xhumanlikerobots.com.bamedica.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai25SdGh6JibaV7OUG0UqAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 19:35:23 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 150.95.80.21 (v150-95-80-21.a011.g.bkk1.static. ... show more (mod_security) mod_security (id:225170) triggered by 150.95.80.21 (v150-95-80-21.a011.g.bkk1.static.cnode.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 15:35:17.489020 2026] [security2:error] [pid 2088:tid 2088] [client 150.95.80.21:42936] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|tcomputerguy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tcomputerguy.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai2w9VPS4bpJUPlpNw8i1QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 18:04:55 (5 hours ago)	Fail2Ban WordPress login brute-force detected	Brute-Force Web App Attack
🇪🇸 ofm-abuse	2026-06-13 17:53:57 (5 hours ago)	Brute-force ...	Brute-Force Web App Attack Bad Web Bot
Anonymous	2026-06-13 07:56:20 (15 hours ago)	(WPLOGIN) WP Login Attack 150.95.80.21 (JP/Japan/v150-95-80-21.a011.g.bkk1.static.cnode.io): 10 in t ... show more (WPLOGIN) WP Login Attack 150.95.80.21 (JP/Japan/v150-95-80-21.a011.g.bkk1.static.cnode.io): 10 in the last 3600 secs; Ports: *; Direction: 1 show less	Brute-Force SSH
🇫🇷 ELYAZ	2026-06-12 23:56:23 (23 hours ago)	(y4) Failed scan -byebye- from 150.95.80.21 (JP/Japan/v150-95-80-21.a011.g.bkk1.static.cnode.io): ( ... show more (y4) Failed scan -byebye- from 150.95.80.21 (JP/Japan/v150-95-80-21.a011.g.bkk1.static.cnode.io): (CF_ENABLE) show less	Hacking
Anonymous	2026-06-12 12:49:28 (1 day ago)	CMS (WordPress or Joomla) brute force attempt.	Brute-Force
🇩🇪 abdubhai	2026-06-11 09:26:50 (2 days ago)	150.95.80.21 - - [11/Jun/2026:14 ...	Brute-Force
🇮🇹 🐷🐷🐷	2026-06-11 07:18:48 (2 days ago)	Multiple WordPress unauthorized access attempts ...	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-11 06:18:47 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 150.95.80.21 (v150-95-80-21.a011.g.bkk1.static. ... show more (mod_security) mod_security (id:225170) triggered by 150.95.80.21 (v150-95-80-21.a011.g.bkk1.static.cnode.io): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 02:18:41.938303 2026] [security2:error] [pid 19942:tid 19942] [client 150.95.80.21:57768] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.airdriedrivingschool.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.airdriedrivingschool.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aipTQew_fzp488oogi5fqAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-06-11 03:52:31 (2 days ago)	150.95.80.21 - - [11/Jun/2026:06:52:30 +0300] "GET /wp-login.php HTTP/1.1" 404 4664 "-" "Mozilla/5.0 ... show more 150.95.80.21 - - [11/Jun/2026:06:52:30 +0300] "GET /wp-login.php HTTP/1.1" 404 4664 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-11 02:40:45 (2 days ago)	150.95.80.21 - - [11/Jun/2026:05:40:45 +0300] "GET /wp-login.php HTTP/1.1" 404 4654 "-" "Mozilla/5.0 ... show more 150.95.80.21 - - [11/Jun/2026:05:40:45 +0300] "GET /wp-login.php HTTP/1.1" 404 4654 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 150.95.80.21 - - [11/Jun/2026:05:40:45 +0300] "GET /wp-admin/ HTTP/1.1" 404 4654 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-10 23:22:54 (2 days ago)	150.95.80.21 - - [11/Jun/2026:01:22:51 +0200] "POST /wp-login.php HTTP/1.1" 200 2831 "https://natc.g ... show more 150.95.80.21 - - [11/Jun/2026:01:22:51 +0200] "POST /wp-login.php HTTP/1.1" 200 2831 "https://natc.gov.zm/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 150.95.80.21 - - [11/Jun/2026:01:22:52 +0200] "POST /wp-login.php HTTP/1.1" 200 2831 "https://natc.gov.zm/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" 150.95.80.21 - - [11/Jun/2026:01:22:53 +0200] "POST /wp-login.php HTTP/1.1" 200 2831 "https://natc.gov.zm/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" 150.95.80.21 - - [11/Jun/2026:01:22:53 +0200] "POST /wp-login.php HTTP/1.1" 200 2831 "https://natc.gov.zm/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 150.95.80.21 - - [11/Jun/2026:01:22:54 +0200] "POST /wp-login.php HTTP/1.1" 200 2831 "https:/ ... show less	Brute-Force Web App Attack
🇲🇹 Malta	2026-06-02 21:34:20 (1 week ago)	150.95.80.21 - - [02/Jun/2026:23:34:20 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 150.95.80.21 - - [02/Jun/2026:23:34:20 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Hacking Web App Attack

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2603:3:610a:de00::

🇰🇷 222.108.100.117

🇦🇺 103.192.80.254

🇫🇷 45.157.112.249

🇷🇺 31.173.67.141

🇨🇳 14.103.9.211

🇺🇸 8.229.168.110

🇲🇰 188.44.20.30

🇭🇰 69.165.75.162

🇨🇱 64.233.190.108

🇳🇱 45.148.10.151

🇸🇬 43.156.111.141

🇧🇪 35.210.61.208

🇬🇧 35.203.210.157

🇺🇸 34.168.150.58

🇳🇱 34.12.174.211

🇺🇸 23.146.243.219

🇹🇭 1.1.191.119

🇨🇳 223.88.58.21

🇧🇷 177.130.169.235