JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 160.242.24.130

160.242.24.130 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 40%: ?

40%

ISP	Paratus Telecommunications Limited
Usage Type	Fixed Line ISP
ASN	AS33763
Domain Name	paratus.ao
Country	🇦🇴 Angola
City	Cabinda, Cabinda

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 160.242.24.130

Whois 160.242.24.130

IP Abuse Reports for 160.242.24.130:

This IP address has been reported a total of 10 times from 7 distinct sources. 160.242.24.130 was first reported on April 7th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 bittiguru.fi	2026-06-23 22:43:09 (5 days ago)	160.242.24.130 - [24/Jun/2026:01:42:58 +0300] "POST /xmlrpc.php HTTP/1.1" 404 37675 "-" "WordPress.c ... show more 160.242.24.130 - [24/Jun/2026:01:42:58 +0300] "POST /xmlrpc.php HTTP/1.1" 404 37675 "-" "WordPress.com; https://wordpress.com" "-" 160.242.24.130 - [24/Jun/2026:01:43:09 +0300] "POST /xmlrpc.php HTTP/1.1" 404 37675 "-" "WordPress.com; https://wordpress.com" "-" ... show less	Hacking Brute-Force Web App Attack
🇩🇪 Tha_14	2026-06-23 22:29:31 (5 days ago)	Limit on login attempts is reached	Brute-Force
🇫🇮 bittiguru.fi	2026-06-23 22:27:50 (5 days ago)	160.242.24.130 - [24/Jun/2026:01:27:40 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack/13.0; ... show more 160.242.24.130 - [24/Jun/2026:01:27:40 +0300] "POST /xmlrpc.php HTTP/1.1" 403 428 "-" "Jetpack/13.0; WordPress/6.3; http://site87675508.com" "-" 160.242.24.130 - [24/Jun/2026:01:27:50 +0300] "POST /xmlrpc.php HTTP/1.1" 404 37675 "-" "Jetpack by WordPress.com" "-" ... show less	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 18:51:35 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 160.242.24.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 160.242.24.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 14:51:29.123962 2026] [security2:error] [pid 24835:tid 24839] [client 160.242.24.130:35022] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.242.24.130 (+1 hits since last alert)\|strengthsmatter.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "strengthsmatter.com"] [uri "/xmlrpc.php"] [unique_id "ajrVsRWDe5ZMDlLXyF4SAgAAAUI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 14:07:49 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 160.242.24.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 160.242.24.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 10:07:41.961992 2026] [security2:error] [pid 25648:tid 25648] [client 160.242.24.130:48218] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 160.242.24.130 (+1 hits since last alert)\|phoboschildren.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "phoboschildren.com"] [uri "/xmlrpc.php"] [unique_id "ajqTLSZjxdu2vMX1qLmhNgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-23 13:31:58 (6 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-23 12:58:08 (6 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC -	Web App Attack
🇪🇸 masterguru	2026-06-23 12:31:45 (6 days ago)	(xmlrpc) Failed xmlrpc access from 160.242.24.130 (AO/Angola/-): 5 in the last 3600 secs (0-122)	Hacking
🇫🇷 masterguru	2026-06-23 07:43:51 (6 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇫🇷 SpaceHost-Server	2026-04-07 22:28:30 (2 months ago)		Brute-Force Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.42

🇹🇭 203.170.192.251

🇮🇩 182.253.156.184

🇳🇱 176.65.139.251

🇻🇳 171.243.150.146

🇺🇸 161.35.5.150

🇸🇬 157.230.249.241

🇺🇸 147.185.132.10

🇮🇳 124.253.203.68

🇫🇷 109.123.241.185

🇰🇷 106.246.224.218

🇧🇩 103.157.237.139

🇵🇱 95.214.53.157

🇷🇺 92.53.115.23

🇳🇱 91.92.42.195

🇳🇱 91.92.40.200

🇺🇸 54.175.41.109

🇫🇷 51.15.149.97

🇮🇷 2.183.203.148

🇷🇸 213.196.96.150