JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 80.94.95.211

80.94.95.211 was found in our database!

This IP was reported 2,401 times. Confidence of Abuse is 100%: ?

100%

ISP	UNMANAGED LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS204428
Domain Name	unmanaged.uk
Country	🇷🇴 Romania
City	Timisoara, Timis County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 80.94.95.211

Whois 80.94.95.211

IP Abuse Reports for 80.94.95.211:

This IP address has been reported a total of 2,401 times from 593 distinct sources. 80.94.95.211 was first reported on June 21st 2025, and the most recent report was 24 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-12 18:50:08 (4 months ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Brute-Force Bad Web Bot Web App Attack
🇫🇮 bittiguru.fi	2026-01-12 16:10:19 (4 months ago)	80.94.95.211 - [12/Jan/2026:18:09:41 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkar ... show more 80.94.95.211 - [12/Jan/2026:18:09:41 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" 80.94.95.211 - [12/Jan/2026:18:09:51 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0" "-" 80.94.95.211 - [12/Jan/2026:18:09:59 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" "-" 80.94.95.211 - [12/Jan/2026:18:10:09 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" "-" 80.94.95.211 - [12/Jan/2026:18:10:18 +0200] "POST /wp-login.php HTTP/1 ... show less	Hacking Brute-Force Web App Attack
🇫🇮 bittiguru.fi	2026-01-12 15:54:37 (4 months ago)	80.94.95.211 - [12/Jan/2026:17:53:59 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkar ... show more 80.94.95.211 - [12/Jan/2026:17:53:59 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:121.0) Gecko/20100101 Firefox/121.0" "-" 80.94.95.211 - [12/Jan/2026:17:54:10 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" "-" 80.94.95.211 - [12/Jan/2026:17:54:19 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" "-" 80.94.95.211 - [12/Jan/2026:17:54:27 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" "-" 80.94.95.211 - [12/Jan/2026:17:54:37 +0200] "POST /wp-login.php HTTP/1. ... show less	Hacking Brute-Force Web App Attack
🇺🇸 ph	2026-01-12 15:50:25 (4 months ago)	Bad web bot attempting to run wp-login.php on non-WP site	Hacking Bad Web Bot Web App Attack
🇵🇱 bmino.pl	2026-01-12 15:45:47 (4 months ago)	Autoban IP(2): 80.94.95.211 - Hostname: unknown - City: Timişoara - Region: Timiș County - Country: ... show more Autoban IP(2): 80.94.95.211 - Hostname: unknown - City: Timişoara - Region: Timiș County - Country: RO - Location: 45.7537,21.2257 - Organization: AS204428 SS-Net - failed attempts. show less	Web App Attack
Anonymous	2026-01-12 15:41:56 (4 months ago)	[Drupal AbuseIPDB module] Request path is blacklisted. /wp-login.php	Web App Attack
🇫🇮 bittiguru.fi	2026-01-12 15:38:54 (4 months ago)	80.94.95.211 - [12/Jan/2026:17:38:15 +0200] "POST /wp-login.php HTTP/1.1" 403 3188 "https://visitkar ... show more 80.94.95.211 - [12/Jan/2026:17:38:15 +0200] "POST /wp-login.php HTTP/1.1" 403 3188 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" "3.28" 80.94.95.211 - [12/Jan/2026:17:38:26 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0" "-" 80.94.95.211 - [12/Jan/2026:17:38:35 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" "-" 80.94.95.211 - [12/Jan/2026:17:38:44 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://visitkarelia.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" 80.94.95.211 - [12/Jan/2026:17:38:54 +0200] "POST /wp-login.php HTTP/1.1" 500 2848 "https://vi ... show less	Hacking Brute-Force Web App Attack
🇿🇦 Tokolosh Hunters	2026-01-12 14:39:37 (4 months ago)	AutoBlockWindow-WordPress Bruteforce from NonZA-2026-01-12 14:39:37	Brute-Force
Anonymous	2026-01-12 14:31:02 (4 months ago)	Bot / scanning and/or hacking attempts: GET /wp-login.php HTTP/1.1, GET /wp-admin HTTP/1.1, GET /wp- ... show more Bot / scanning and/or hacking attempts: GET /wp-login.php HTTP/1.1, GET /wp-admin HTTP/1.1, GET /wp-admin/ HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2026-01-12 13:32:40 (4 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 nodepile	2026-01-12 13:29:50 (4 months ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/wp-login.php ua='Mozilla/5. ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/wp-login.php ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36') show less	Exploited Host Web App Attack
🇺🇸 entangled_mongoose	2026-01-12 12:55:25 (4 months ago)	Probed /wp-login.php.	Web App Attack
🇺🇸 Psycho Solutions LLC	2026-01-12 12:50:36 (4 months ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 1/12/2026 12:50 pm (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-01-12 12:39:00 (4 months ago)	IPBlock protected site ID [4055-d][s=02]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇩🇪 ps-center	2026-01-12 12:33:46 (4 months ago)	SS1: Web Attack GET /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack

Showing 2341 to 2355 of 2401 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.3.53.6

🇸🇬 172.70.208.163

🇮🇳 152.58.153.55

🇨🇳 106.75.237.200

🇫🇷 88.180.187.72

🇳🇱 45.153.34.181

🇳🇱 45.153.34.149

🇯🇵 43.165.185.71

🇵🇰 39.50.240.224

🇵🇹 31.129.22.65

🇨🇳 27.21.28.220

🇳🇱 213.177.179.80

🇬🇧 195.96.139.231

🇮🇳 152.58.184.66

🇮🇶 151.244.153.30

🇩🇪 128.1.121.126

🇨🇳 120.48.84.64

🇷🇴 92.118.39.236

🇸🇾 89.43.135.75

🇬🇧 5.226.140.53