JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.49.10.145

130.49.10.145 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 10%: ?

10%

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.49.10.145

Whois 130.49.10.145

IP Abuse Reports for 130.49.10.145:

This IP address has been reported a total of 9 times from 5 distinct sources. 130.49.10.145 was first reported on October 17th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Jason Howell	2026-06-16 19:10:03 (4 days ago)	130.49.10.145 - - [16/Jun/2026:14:09:51 -0500] "GET /wp-login.php HTTP/1.1" 301 570 "-" "Mozilla/5.0 ... show more 130.49.10.145 - - [16/Jun/2026:14:09:51 -0500] "GET /wp-login.php HTTP/1.1" 301 570 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10" 130.49.10.145 - - [16/Jun/2026:14:09:58 -0500] "GET /wp-login.php HTTP/1.1" 200 6346 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10" 130.49.10.145 - - [16/Jun/2026:14:10:00 -0500] "POST /wp-login.php HTTP/1.1" 200 2979 "https://lhrareenacting.com/wp-login.php" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10" 130.49.10.145 - - [16/Jun/2026:14:10:01 -0500] "GET /wp-login.php HTTP/1.1" 301 570 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10" 130.49.10.145 - - [16/Jun/2026:14:10:02 -0500] "GET /wp-login.php HTTP/1.1" 200 2619 "-" "Mozilla/5.0 (Windows; U; Wind ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-04 00:24:31 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 130.49.10.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 130.49.10.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 20:24:28.198835 2026] [security2:error] [pid 27920:tid 27920] [client 130.49.10.145:13605] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|internetnameregistration.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "internetnameregistration.com"] [uri "/"] [unique_id "affnPDmvPsJWybHfqx64FgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-07 07:48:41 (2 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇺 screwlooseit.com.au	2026-03-28 07:53:32 (2 months ago)	Blocked by CSF 13 firewall - Rule: XMLRPC US/United States/-	Web App Attack
🇺🇸 TPI-Abuse	2026-03-26 17:13:40 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.10.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.10.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 13:13:34.172477 2026] [security2:error] [pid 3205:tid 3205] [client 130.49.10.145:19451] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|monopolimusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "monopolimusic.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acVpPizv0emnz-cxvVrQQQAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2026-01-26 12:26:26 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-15 17:19:10 (7 months ago)	(mod_security) mod_security (id:210350) triggered by 130.49.10.145 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 130.49.10.145 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 12:18:58.292980 2025] [security2:error] [pid 25717:tid 25717] [client 130.49.10.145:40747] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|imaginationbyme.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "imaginationbyme.com"] [uri "/"] [unique_id "aRi2AvjWjaMyyvYxFTYPFwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-21 06:17:23 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-10-17 15:10:27 (8 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.123

🇺🇸 103.234.62.50

🇦🇹 95.101.75.41

🇩🇪 92.205.199.94

🇺🇸 44.209.125.154

🇺🇸 44.101.161.250

🇬🇧 35.203.210.211

🇬🇧 35.203.210.191

🇬🇧 35.203.210.51

🇺🇸 20.102.100.198

🇺🇸 195.184.76.111

🇺🇸 195.184.76.24

🇬🇧 188.240.59.41

🇨🇳 182.123.128.59

🇬🇧 178.62.17.212

🇺🇸 162.216.149.5

🇺🇸 147.185.132.8

🇨🇳 125.69.76.148

🇭🇰 114.111.54.189

🇮🇳 103.120.189.68