JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.123.130.74

161.123.130.74 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	Wirels Connect (PTY) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	telafrica.net
Country	🇺🇸 United States of America
City	Romulus, Michigan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.123.130.74

Whois 161.123.130.74

IP Abuse Reports for 161.123.130.74:

This IP address has been reported a total of 22 times from 17 distinct sources. 161.123.130.74 was first reported on May 3rd 2024, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SCHAPPY	2025-07-25 14:30:08 (10 months ago)	IP was involved in L7 DDoS attack.	DDoS Attack
🇩🇪 ger-stg-sifi1	2024-08-22 08:42:29 (1 year ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇦🇺 MAGIC	2024-08-09 17:04:49 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2024-08-06 06:41:07 (1 year ago)		Bad Web Bot Web App Attack
Anonymous	2024-08-05 05:56:55 (1 year ago)	(wordpress) Failed wordpress login from 161.123.130.74 (US/United States/-)	Brute-Force
🇸🇪 maxxsense	2024-07-23 16:10:58 (1 year ago)	(wordpress) Failed wordpress login from 161.123.130.74 (US/United States/-)	Brute-Force
🇺🇸 TPI-Abuse	2024-07-22 20:49:38 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 22 16:49:31.827164 2024] [security2:error] [pid 10966:tid 10966] [client 161.123.130.74:46379] [client 161.123.130.74] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 161.123.130.74 (+1 hits since last alert)\|www.lightbender.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.lightbender.net"] [uri "/xmlrpc.php"] [unique_id "Zp7F27Xc0BtAM0SbId5smgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 eminovic.ba	2024-06-29 18:21:42 (1 year ago)	Wordpress attack ...	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-06-28 09:44:04 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 28 05:43:58.939514 2024] [security2:error] [pid 23862] [client 161.123.130.74:41179] [client 161.123.130.74] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 161.123.130.74 (+1 hits since last alert)\|www.ornbaum.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.ornbaum.com"] [uri "/xmlrpc.php"] [unique_id "Zn6F3jgXln3AXyOhoDWgaQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Kenshin869	2024-06-26 20:10:28 (1 year ago)	Wordpress unauthorized access attempt	Brute-Force
🇩🇪 Petros Stefanakis	2024-06-25 10:35:44 (1 year ago)	(wordpress) Failed wordpress login from 161.123.130.74 (US/United States/-)	Brute-Force
🇳🇿 billyborsht	2024-06-24 05:19:26 (1 year ago)	wordpress authentication brute force	Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-06-23 05:47:43 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 23 01:47:36.760819 2024] [security2:error] [pid 24777] [client 161.123.130.74:42197] [client 161.123.130.74] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 161.123.130.74 (+1 hits since last alert)\|olaingram.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "olaingram.com"] [uri "/xmlrpc.php"] [unique_id "Zne2-M_cUhl4maNfyKLwawAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 weblite	2024-06-13 14:38:57 (1 year ago)	WP_XMLRPC_ABUSE	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-06-13 10:59:04 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 161.123.130.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 13 06:58:57.579581 2024] [security2:error] [pid 15391:tid 47413242484480] [client 161.123.130.74:44001] [client 161.123.130.74] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 161.123.130.74 (+1 hits since last alert)\|kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kettlehill.com"] [uri "/xmlrpc.php"] [unique_id "ZmrQ8ZBnEePRVkpeJASeVwAAAQA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 81.19.216.82

🇧🇷 189.51.43.54

🇸🇪 185.246.128.192

🇺🇸 165.154.134.217

🇩🇪 103.241.51.126

🇳🇱 81.19.216.125

🇨🇳 60.16.209.33

🇸🇬 43.156.244.252

🇳🇱 37.139.8.32

🇮🇳 34.47.138.180

🇧🇪 23.251.143.49

🇷🇺 213.183.57.51

🇺🇸 162.216.150.198

🇮🇩 103.248.248.2

🇮🇳 103.181.153.69

🇺🇸 65.17.183.186

🇮🇳 40.81.224.202

🇬🇧 5.226.140.25

🇧🇪 198.235.24.234

🇧🇪 198.235.24.206