JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.12.182.64

130.12.182.64 was found in our database!

This IP was reported 108 times. Confidence of Abuse is 100%: ?

100%

ISP	Netiface LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS197769
Domain Name	abusehandler.net
Country	🇩🇪 Germany
City	Bad Reichenhall, Bavaria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.12.182.64

Whois 130.12.182.64

IP Abuse Reports for 130.12.182.64:

This IP address has been reported a total of 108 times from 46 distinct sources. 130.12.182.64 was first reported on February 3rd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇱 spd.co.il	2026-06-28 09:03:31 (1 day ago)	Web application attack detected	Hacking Web App Attack
🇺🇸 TAY	2026-06-27 16:23:51 (2 days ago)	130.12.182.64 - - [28/Jun/2026:00:23:49 +0800] "GET /wp-content/plugins/hb-audio-gallery-lite/galler ... show more 130.12.182.64 - - [28/Jun/2026:00:23:49 +0800] "GET /wp-content/plugins/hb-audio-gallery-lite/gallery/audio-download.php?file_path=../../../../wp-config.php&file_size=10 HTTP/1.1" 404 36279 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [28/Jun/2026:00:23:50 +0800] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 36301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [28/Jun/2026:00:23:50 +0800] "GET /wp-content/plugins/hb-audio-gallery-lite/gallery/audio-download.php?file_path=../../../../wp-config.php&file_size=10 HTTP/1.1" 301 686 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Brute-Force
🇳🇱 Site.eu	2026-06-27 08:58:44 (2 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 paissangroup	2026-06-27 07:14:48 (2 days ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-06-26 23:21:39 (3 days ago)	130.12.182.64 - - [27/Jun/2026:01:21:38 +0200] "GET /wp-content/themes/mTheme-Unus/css/css.php?files ... show more 130.12.182.64 - - [27/Jun/2026:01:21:38 +0200] "GET /wp-content/themes/mTheme-Unus/css/css.php?files=../../../../wp-config.php HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [27/Jun/2026:01:21:38 +0200] "GET /wp-content/plugins/tera-charts/charts/treemap.php?fn=../../../../wp-config.php HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [27/Jun/2026:01:21:38 +0200] "GET /wp-content/plugins/google-mp3-audio-player/direct_download.php?file=../../../wp-config.php HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [27/Jun/2026:01:21:38 +0200] "GET /wp-content/plugins/wptf-image-gallery/lib-mbox/ajax_load.php?url=../../../../wp-config.php HTTP/1.1" 403 12583 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [27/Jun/2026:01:21:38 +0200] "GET /wp-admin/admin-ajax.php?action=ave_publishPost&title ... show less	Bad Web Bot Web App Attack
🇺🇸 TAY	2026-06-26 18:11:10 (3 days ago)	130.12.182.64 - - [27/Jun/2026:02:11:08 +0800] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isfor ... show more 130.12.182.64 - - [27/Jun/2026:02:11:08 +0800] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 39834 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [27/Jun/2026:02:11:09 +0800] "GET /wp-content/force-download.php?file=../../../../../../../wp-config.php HTTP/1.1" 403 7864 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 130.12.182.64 - - [27/Jun/2026:02:11:10 +0800] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 301 714 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Brute-Force
Anonymous	2026-06-26 18:01:22 (3 days ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇬🇧 consul.to	2026-06-26 16:25:01 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇭 4server	2026-06-25 18:30:08 (4 days ago)	[ThuJun2520:30:02.6570142026][security2:error][pid757461:tid757470][client130.12.182.64:0]ModSecurit ... show more [ThuJun2520:30:02.6570142026][security2:error][pid757461:tid757470][client130.12.182.64:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\"wp-config\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"leonitraslochi.ch\"][uri\"/wp-content/themes/churchope/lib/downloadlink.php\"][unique_id\"aj1zqtLCdXX3PmxQeRelOAAAAQc\"] show less	Hacking Web App Attack
🇳🇱 Site.eu	2026-06-25 18:27:32 (4 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 paissangroup	2026-06-25 17:55:35 (4 days ago)	Multiple WAF Violations	Web App Attack
🇫🇷 dynamix	2026-06-25 11:48:54 (4 days ago)	Multiple WAF Violations	Web App Attack
🇬🇧 Celtic	2026-06-25 02:46:38 (5 days ago)	Blocked by Fail2Ban with Jail (plesk-modsecurity)	Brute-Force SSH
🇺🇸 fazar	2026-06-25 00:06:14 (5 days ago)	crowdsecurity/http-path-traversal-probing on node: us01	Web App Attack Hacking
Anonymous	2026-06-24 18:41:16 (5 days ago)	130.12.182.64 - - [24/Jun/2026:20:41:15 +0200] "GET /wp-content/plugins/site-editor/editor/extension ... show more 130.12.182.64 - - [24/Jun/2026:20:41:15 +0200] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 403 22267 130.12.182.64 - - [24/Jun/2026:20:41:15 +0200] "GET /wp-content/plugins/wordfence/lib/wordfenceClass.php?file=/../../../../../../etc/passwd HTTP/1.1" 403 5357 ... show less	Hacking Web App Attack

Showing 1 to 15 of 108 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 103.207.9.246

🇩🇪 69.5.169.250

🇺🇸 66.132.172.127

🇨🇦 45.194.92.57

🇮🇷 5.235.242.22

🇺🇸 216.180.246.39

🇰🇷 210.90.155.178

🇺🇸 205.210.31.46

🇳🇱 195.178.110.30

🇩🇪 185.30.32.114

🇧🇷 179.179.199.225

🇯🇵 172.253.235.27

🇺🇸 154.217.253.190

🇨🇳 139.212.61.213

🇳🇱 84.82.14.214

🇷🇺 81.22.60.16

🇦🇺 40.82.214.8

🇯🇵 34.146.54.105

🇩🇪 18.197.109.248

🇻🇳 14.225.7.70