JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 27.34.68.50

27.34.68.50 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 65%: ?

65%

ISP	WorldLink Communications
Usage Type	Fixed Line ISP
ASN	AS17501
Hostname(s)	50.68.34.27.dynamic.wlink.com.np
Domain Name	worldlink.com.np
Country	🇳🇵 Nepal
City	Bharatpur, Bagmati Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 27.34.68.50

Whois 27.34.68.50

IP Abuse Reports for 27.34.68.50:

This IP address has been reported a total of 30 times from 21 distinct sources. 27.34.68.50 was first reported on October 5th 2021, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇰🇷 zlhIcd	2026-06-15 08:50:16 (13 hours ago)	27.34.68.50 - - [15/Jun/2026:17:09:14 +0900] "GET /pcwiki/index.php?days=14&from=20251121033336&hide ... show more 27.34.68.50 - - [15/Jun/2026:17:09:14 +0900] "GET /pcwiki/index.php?days=14&from=20251121033336&hideliu=1&hideminor=1&hidemyself=1&target=%EC%9E%84%EC%8B%9C%ED%8E%98%EC%9D%B4%EC%A7%80&title=%ED%8A%B9%EC%88%98%EA%B8%B0%EB%8A%A5:%EB%A7%81%ED%81%AC%EC%B5%9C%EA%B7%BC%EB%B0%94%EB%80%9C HTTP/1.1" 404 460 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X; it-it) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.8" ... show less	Web Spam SQL Injection Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-15 06:55:30 (15 hours ago)	Blocked by CSF 13 firewall - Rule: XMLRPC NP/Nepal/50.68.34.27.dynamic.wlink.com.np	Web App Attack
Anonymous	2026-06-14 08:55:49 (1 day ago)	[redacted] 27.34.68.50 - - [14/Jun/2026:10:55:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jet ... show more [redacted] 27.34.68.50 - - [14/Jun/2026:10:55:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 27.34.68.50 - - [14/Jun/2026:10:55:15 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 27.34.68.50 - - [14/Jun/2026:10:55:27 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.3; http://site75349791.com" [redacted] 27.34.68.50 - - [14/Jun/2026:10:55:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.2)" [redacted] 27.34.68.50 - - [14/Jun/2026:10:55:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇫🇷 masterguru	2026-06-14 04:52:43 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇩🇪 Marc	2026-06-09 07:53:14 (6 days ago)	27.34.68.50 - - [09/Jun/2026:09:52:53 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3466 "-" "Jetpack/12.1; ... show more 27.34.68.50 - - [09/Jun/2026:09:52:53 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3466 "-" "Jetpack/12.1; WordPress/6.4; http://site50073689.com" 27.34.68.50 - - [09/Jun/2026:09:53:02 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3466 "-" "Jetpack/12.1; WordPress/6.4; http://site21683326.com" 27.34.68.50 - - [09/Jun/2026:09:53:13 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3465 "-" "Jetpack/13.0; WordPress/6.2; http://site40303807.com" show less	Brute-Force Web App Attack
🇫🇷 stefaniak41500	2026-06-08 11:57:40 (1 week ago)	Shield Guard: Scanner: wordpress.com (+55) \| Chemin suspect: /xmlrpc.php \| xmlrpc.php bloqué	Web App Attack Port Scan
🇺🇸 cwytech	2026-06-07 11:42:19 (1 week ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-05 10:39:59 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-04 12:06:07 (1 week ago)	(xmlrpc) Apache: Failed xmlrpc access from 27.34.68.50 (NP/Nepal/50.68.34.27.dynamic.wlink.com.np): ... show more (xmlrpc) Apache: Failed xmlrpc access from 27.34.68.50 (NP/Nepal/50.68.34.27.dynamic.wlink.com.np): 10 in the last 3600 secs (0-201) show less	Hacking
🇫🇷 dynamix	2026-06-04 04:36:53 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇩🇪 bsoft.de	2026-06-03 11:19:25 (1 week ago)	27.34.68.50 - - [03/Jun/2026:13:19:03 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; ... show more 27.34.68.50 - - [03/Jun/2026:13:19:03 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" 27.34.68.50 - - [03/Jun/2026:13:19:13 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" 27.34.68.50 - - [03/Jun/2026:13:19:24 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" show less	Web App Attack
Anonymous	2026-06-02 10:14:50 (1 week ago)	[ns31.kdns.gr] httpd-xmlrpc-post: sites=galani.com.gr; logs=/var/log/httpd/domains/galani.com.gr.log ... show more [ns31.kdns.gr] httpd-xmlrpc-post: sites=galani.com.gr; logs=/var/log/httpd/domains/galani.com.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 08:11:28 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 27.34.68.50 (50.68.34.27.dynamic.wlink.com.np): ... show more (mod_security) mod_security (id:240335) triggered by 27.34.68.50 (50.68.34.27.dynamic.wlink.com.np): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 04:11:20.863342 2026] [security2:error] [pid 23705:tid 23705] [client 27.34.68.50:15361] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 27.34.68.50 (+1 hits since last alert)\|greenmountainfeeds.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "greenmountainfeeds.com"] [uri "/xmlrpc.php"] [unique_id "ah0-qCFsqlM26ahLS_fbiwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-01 04:22:04 (2 weeks ago)	27.34.68.50 - - [01/Jun/2026:06:21:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by Wor ... show more 27.34.68.50 - - [01/Jun/2026:06:21:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" 27.34.68.50 - - [01/Jun/2026:06:21:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" 27.34.68.50 - - [01/Jun/2026:06:21:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 27.34.68.50 - - [01/Jun/2026:06:21:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 27.34.68.50 - - [01/Jun/2026:06:22:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-30 06:58:16 (2 weeks ago)	Blocked by CSF 13 firewall - Rule: XMLRPC NP/Nepal/50.68.34.27.dynamic.wlink.com.np	Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.38.251.46

🇬🇧 193.163.125.87

🇺🇸 136.109.232.107

🇺🇸 35.185.69.23

🇺🇸 34.162.48.34

🇺🇸 34.162.41.198

🇷🇴 2.57.122.177

🇹🇭 203.172.89.21

🇨🇦 184.107.244.93

🇺🇸 173.239.254.80

🇸🇬 159.223.33.252

🇬🇧 141.101.99.87

🇺🇸 104.22.24.230

🇻🇳 103.200.25.198

🇧🇬 93.94.141.115

🇩🇪 69.5.169.32

🇮🇳 68.183.89.16

🇺🇸 66.132.195.18

🇺🇸 35.236.193.185

🇺🇸 34.182.55.215