JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 160.119.62.132

160.119.62.132 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 56%: ?

56%

ISP	Municipal Network Services
Usage Type	Fixed Line ISP
ASN	AS327804
Hostname(s)	100_120-126_62_132.mylan.co.za
Domain Name	trusc.net
Country	🇿🇦 South Africa
City	Vredendal, Western Cape

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 160.119.62.132

Whois 160.119.62.132

IP Abuse Reports for 160.119.62.132:

This IP address has been reported a total of 41 times from 23 distinct sources. 160.119.62.132 was first reported on March 11th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 18:25:26 (4 hours ago)	(mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za) ... show more (mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 14:25:21.984167 2026] [security2:error] [pid 6944:tid 6944] [client 160.119.62.132:62414] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.119.62.132 (+1 hits since last alert)\|anamericanabroad.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "anamericanabroad.com"] [uri "/xmlrpc.php"] [unique_id "aj7EEeY-jlwG7NRbfuQrBAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-26 17:50:29 (5 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-26 17:19:17 (5 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇪🇸 masterguru	2026-06-25 19:30:18 (1 day ago)	(xmlrpc) Failed xmlrpc access from 160.119.62.132 (ZA/South Africa/100_120-126_62_132.mylan.co.za): ... show more (xmlrpc) Failed xmlrpc access from 160.119.62.132 (ZA/South Africa/100_120-126_62_132.mylan.co.za): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-25 19:29:32 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za) ... show more (mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:29:24.432559 2026] [security2:error] [pid 15220:tid 15220] [client 160.119.62.132:62865] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.119.62.132 (+1 hits since last alert)\|kmelson.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kmelson.com"] [uri "/xmlrpc.php"] [unique_id "aj2BlN9Yitk_eFiuO7u1ZAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-24 11:57:07 (2 days ago)	(wordpress) Failed wordpress login from 160.119.62.132 (100_120-126_62_132.mylan.co.za)	Brute-Force
🇲🇾 Rizzy	2026-06-23 05:47:49 (3 days ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-06-22 20:49:07 (4 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 20:38:43 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za) ... show more (mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 16:38:38.996681 2026] [security2:error] [pid 2018:tid 2038] [client 160.119.62.132:65165] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.119.62.132 (+1 hits since last alert)\|darkestmoonart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "darkestmoonart.com"] [uri "/xmlrpc.php"] [unique_id "ajmdTvwk8JEFD6JeeO6q-QAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-21 11:15:54 (5 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-19 18:40:33 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za) ... show more (mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 14:40:26.235591 2026] [security2:error] [pid 20416:tid 20511] [client 160.119.62.132:63441] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.119.62.132 (+1 hits since last alert)\|visionforandfromchildren.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "visionforandfromchildren.org"] [uri "/xmlrpc.php"] [unique_id "ajWNGrWZWomp4emYQJCyIwAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 16:06:12 (1 week ago)	[redacted] 160.119.62.132 - - [18/Jun/2026:18:05:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ... show more [redacted] 160.119.62.132 - - [18/Jun/2026:18:05:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" [redacted] 160.119.62.132 - - [18/Jun/2026:18:05:39 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" [redacted] 160.119.62.132 - - [18/Jun/2026:18:05:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" [redacted] 160.119.62.132 - - [18/Jun/2026:18:06:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 160.119.62.132 - - [18/Jun/2026:18:06:11 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 15:16:08 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za) ... show more (mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 11:16:02.574875 2026] [security2:error] [pid 17467:tid 17467] [client 160.119.62.132:63858] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.119.62.132 (+1 hits since last alert)\|josephshv.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "josephshv.com"] [uri "/xmlrpc.php"] [unique_id "ajQLshVeYeNjhYehK126ZwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 06:35:37 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za) ... show more (mod_security) mod_security (id:240335) triggered by 160.119.62.132 (100_120-126_62_132.mylan.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 02:35:28.321090 2026] [security2:error] [pid 29420:tid 29420] [client 160.119.62.132:63161] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.119.62.132 (+1 hits since last alert)\|bitcoinsubscribers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bitcoinsubscribers.com"] [uri "/xmlrpc.php"] [unique_id "ajORsDinr0VAMu3Q7KNwQwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-01 20:24:16 (3 weeks ago)	Attac	Brute-Force

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.104

🇨🇳 112.86.225.123

🇹🇳 196.176.211.219

🇨🇳 171.217.73.141

🇻🇳 123.31.20.162

🇰🇷 118.37.214.187

🇺🇸 44.228.73.77

🇺🇸 44.191.143.146

🇩🇪 43.228.157.9

🇺🇸 23.95.217.16

🇨🇳 223.109.252.232

🇰🇷 211.251.245.88

🇧🇴 190.129.122.185

🇮🇳 182.95.223.50

🇲🇴 182.93.7.194

🇩🇪 154.14.23.208

🇧🇩 103.126.219.79

🇺🇸 34.227.108.136

🇧🇷 143.137.127.205

🇳🇱 45.148.10.239