JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 67.230.43.150

67.230.43.150 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 30%: ?

30%

ISP	Columbus Communications Jamaica Limited
Usage Type	Fixed Line ISP
ASN	AS30689
Domain Name	j2limited.com
Country	🇯🇲 Jamaica
City	Spanish Town, Saint Catherine Parish

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 67.230.43.150

Whois 67.230.43.150

IP Abuse Reports for 67.230.43.150:

This IP address has been reported a total of 28 times from 20 distinct sources. 67.230.43.150 was first reported on April 10th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-14 20:29:36 (4 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
Anonymous	2026-06-09 06:15:03 (1 week ago)	Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signatur ... show more Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signature Blocked: /wishlist/index/add/product/11289/form_key/yWy9WELsT8fd0w8v/ \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like G... show less	Hacking Bad Web Bot Web App Attack
Anonymous	2026-05-10 18:58:33 (1 month ago)	Unauthorized connection to Telnet port 23	Port Scan
🇺🇸 TPI-Abuse	2026-05-08 00:55:21 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 67.230.43.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 67.230.43.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 20:55:15.088160 2026] [security2:error] [pid 29100:tid 29196] [client 67.230.43.150:61180] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 67.230.43.150 (+1 hits since last alert)\|fastesttrademark.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "fastesttrademark.com"] [uri "/xmlrpc.php"] [unique_id "af00c5V2PIrYklWa0BX8PQAAAks"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-05 04:07:35 (1 month ago)	Web attack	Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-05-04 02:27:28 (1 month ago)	67.230.43.150 - - [04/May/2026:04:27:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "WordPress.c ... show more 67.230.43.150 - - [04/May/2026:04:27:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "WordPress.com; https://wordpress.com" 67.230.43.150 - - [04/May/2026:04:27:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "Jetpack by WordPress.com" 67.230.43.150 - - [04/May/2026:04:27:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "Jetpack/12.5; WordPress/6.2; http://site35756506.com" show less	Hacking Web App Attack
🇩🇪 rh24	2026-05-04 02:12:33 (1 month ago)	(wordpress) Failed wordpress login from 67.230.43.150 (JM/Jamaica/-): (CF_ENABLE)	Brute-Force
🇫🇷 SpaceHost-Server	2026-05-04 02:11:57 (1 month ago)	67.230.43.150 - - [04/May/2026:04:11:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "Jetpack by ... show more 67.230.43.150 - - [04/May/2026:04:11:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" 67.230.43.150 - - [04/May/2026:04:11:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "Jetpack/13.0; WordPress/6.1; http://site25753283.com" 67.230.43.150 - - [04/May/2026:04:11:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4894 "-" "WordPress.com; https://wordpress.com" show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-03 21:46:27 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 67.230.43.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 67.230.43.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 17:46:19.488990 2026] [security2:error] [pid 16841:tid 16841] [client 67.230.43.150:59946] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 67.230.43.150 (+1 hits since last alert)\|ssion.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ssion.com"] [uri "/xmlrpc.php"] [unique_id "affCKw5nQiScaxApAKazZwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-05-03 16:16:57 (1 month ago)	(wordpress) Failed wordpress login from 67.230.43.150 (JM/Jamaica/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-05-03 15:47:40 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 67.230.43.150 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 67.230.43.150 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 11:47:35.979828 2026] [security2:error] [pid 22294:tid 22294] [client 67.230.43.150:60552] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 67.230.43.150 (+1 hits since last alert)\|lawrencehale.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lawrencehale.net"] [uri "/xmlrpc.php"] [unique_id "afduF2HMeAYsPI7PImrSJwAAADg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 stechusa	2026-03-24 08:33:10 (2 months ago)	[Askari] ELEVATED_THREAT \| country=JM \| ASN=FLOW \| 11 IPs targeting /brand/satco-products-inc/satco- ... show more [Askari] ELEVATED_THREAT \| country=JM \| ASN=FLOW \| 11 IPs targeting /brand/satco-products-inc/satco-light-bulbs.html \| Facet request during elevated threat (facet_ratio=0.81, unique_ips=155) \| HTTP/1.1 over TLS (elevated=True) \| Signals: path_concentration, non_target_geo, concurrent_facet_load, outdated_user_agent, http1_on_tls show less	Web App Attack Hacking Web Spam
🇺🇸 stechusa	2026-03-24 08:33:10 (2 months ago)	ELEVATED_THREAT \| country=JM \| ASN=FLOW \| 11 IPs targeting /brand/satco-products-inc/satco-light-bul ... show more ELEVATED_THREAT \| country=JM \| ASN=FLOW \| 11 IPs targeting /brand/satco-products-inc/satco-light-bulbs.html \| Facet request during elevated threat (facet_ratio=0.81, unique_ips=155) \| HTTP/1.1 over TLS (elevated=True) show less	Web App Attack Hacking Web Spam
🇺🇸 ipblock.com	2026-03-23 08:14:00 (2 months ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-03-16 00:20:25 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.106.133.202

🇺🇸 151.245.231.21

🇷🇴 80.94.95.230

🇳🇱 2a06:a880:5:20e::1

🇨🇳 222.186.140.103

🇬🇧 213.166.84.55

🇺🇸 195.184.76.51

🇸🇪 171.25.158.68

🇺🇸 162.216.150.199

🇳🇱 81.19.216.84

🇫🇷 51.178.114.78

🇧🇪 34.77.34.194

🇺🇸 162.216.150.107

🇺🇸 162.216.149.77

🇨🇦 108.162.241.112

🇷🇺 81.23.173.32

🇺🇸 64.23.172.55

🇳🇱 45.156.128.127

🇳🇱 45.156.128.41

🇬🇧 35.203.211.157