JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 190.119.160.30

190.119.160.30 was found in our database!

This IP was reported 123 times. Confidence of Abuse is 0%: ?

ISP	America Movil Peru S.A.C.
Usage Type	Fixed Line ISP
ASN	AS12252
Domain Name	claro.com.pe
Country	🇵🇪 Peru
City	Cajamarca, Cajamarca Department

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 190.119.160.30

Whois 190.119.160.30

IP Abuse Reports for 190.119.160.30:

This IP address has been reported a total of 123 times from 61 distinct sources. 190.119.160.30 was first reported on January 31st 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-20 07:33:37 (5 months ago)	2026-01-18 20:19:56.123 [92888] dovecot_plain authenticator failed for (9mewpsmbfg72swppy062sfhp8izx ... show more 2026-01-18 20:19:56.123 [92888] dovecot_plain authenticator failed for (9mewpsmbfg72swppy062sfhp8izxw6i) [190.119.160.30]:34204 I=[192.168.1.220]:587 Ci=92888: 535 Incorrect authentication data ([email protected]) ... show less	Brute-Force Exploited Host
🇨🇿 lp	2026-01-20 01:23:55 (5 months ago)	Email account brute force: 1 attempts were recorded from 190.119.160.30 2026-01-20T01:23:37+01:00 wa ... show more Email account brute force: 1 attempts were recorded from 190.119.160.30 2026-01-20T01:23:37+01:00 warning: unknown[190.119.160.30]: SASL PLAIN authentication failed: authentication failure, [email protected] show less	Brute-Force
🇪🇸 cuscusero (FlexBacks, FlexChar, FlexAve, FlexCDNM, FlexTudy, ColdHosting SL)	2026-01-16 01:06:18 (5 months ago)	[CPD ESP-BCN02-FW11-394] Suspicious connection detected on port 8080. DDoS detected	DDoS Attack Port Scan Brute-Force
🇪🇸 cuscusero (FlexBacks, FlexChar, FlexAve, FlexCDNM, FlexTudy, ColdHosting SL)	2026-01-15 14:35:26 (5 months ago)	[CPD ESP-BCN02-FW11-394] Suspicious connection detected on port 22. DDoS detected	DDoS Attack Brute-Force SSH
🇮🇳 Bharat Datacenter	2026-01-11 14:29:16 (5 months ago)	1: date=2026-01-11 time=19:58:10 eventtime=1768141690942385650 tz="+0530" logid="0720018432" type="u ... show more 1: date=2026-01-11 time=19:58:10 eventtime=1768141690942385650 tz="+0530" logid="0720018432" type="utm" subtype="anomaly" eventtype="anomaly" level="alert" vd="root" severity="critical" srcip=190.119.160.30 srccountry="Peru" dstip=157.10.99.34 dstcountry="India" srcintf="x2" srcintfrole="wan" sessionid=0 action="clear_session" proto=6 service="HTTPS" count=126045 attack="tcp_syn_flood" srcport=35234 dstport=443 attackid=100663396 policyid=1 policytype="DoS-policy" ref="http://www.fortinet.com/ids/VID100663396" msg="anomaly: tcp_syn_flood, 3649 > threshold 2000, repeats 126045 times since last log, pps 3685 of prior second" crscore=50 craction=4096 crlevel="critical" show less	Brute-Force
🇷🇺 DZBOT	2026-01-05 02:46:34 (5 months ago)	SMTP. NO LOGIN / auth failed	Port Scan Brute-Force
🇨🇭 Origon	2026-01-02 12:16:30 (5 months ago)	postfix-non-smtp-command - IP: 190.119.160.30 - time="2026-01-02T13:16:29+01:00" level=info msg="(5 ... show more postfix-non-smtp-command - IP: 190.119.160.30 - time="2026-01-02T13:16:29+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/postfix-non-smtp-command by ip 190.119.160.30 (PE/12252) : 4h ban on Ip 190.119.160.30" module=db show less	Email Spam
Anonymous	2025-12-26 06:40:13 (5 months ago)	Ports: 25,2525,110,143,993,995; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇮🇹 VHosting	2025-12-25 14:33:52 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇨🇭 Modules	2025-12-17 19:12:10 (6 months ago)	Open proxy socks5://190.119.160.30:56160 (RT:1912ms,Loc:Peru,ASN:AS12252)	Open Proxy
🇺🇸 COMPLEX	2025-12-17 01:31:48 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from PE. Action taken: BLOCK ASN: 12252 (America Movil Peru S.A.C. ... show more Triggered Cloudflare WAF (l7ddos) from PE. Action taken: BLOCK ASN: 12252 (America Movil Peru S.A.C.) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇸🇬 Fn4ticHz	2025-12-15 18:08:01 (6 months ago)	repeated ddos targeted load.rapidreset.net -- ZeroGuard	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-14 16:19:25 (6 months ago)	(mod_security) mod_security (id:210831) triggered by 190.119.160.30 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 190.119.160.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 14 11:19:21.556916 2025] [security2:error] [pid 1190:tid 1190] [client 190.119.160.30:53077] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/webalizer/"] [unique_id "aT7jidKC_XeD7Z4Dca2d2wAAABU"], referer: http://backstore.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-04 07:19:59 (6 months ago)	botnet	DDoS Attack
🇺🇸 1gz	2025-12-01 22:16:51 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from PE. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoin ... show more Triggered Cloudflare WAF (l7ddos) from PE. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.464.0 Safari/534.3 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot

Showing 1 to 15 of 123 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 210.71.213.8

🇧🇷 191.35.128.147

🇷🇴 80.94.92.178

🇺🇿 194.107.115.199

🇩🇪 167.233.22.224

🇳🇱 160.119.76.57

🇺🇸 136.111.69.131

🇨🇳 111.53.144.4

🇵🇰 110.38.240.6

🇩🇪 69.5.169.229

🇩🇪 69.5.169.6

🇳🇱 45.148.10.151

🇮🇩 2404:c0:a302:b8ac:fc89:5ac4:2fc4:5e97

🇷🇺 212.14.196.34

🇬🇧 195.206.182.209

🇳🇱 91.92.40.124

🇫🇷 85.217.140.10

🇺🇸 47.251.98.151

🇧🇩 202.84.34.85

🇨🇱 200.89.69.247