JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.49.112.117

130.49.112.117 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 9%: ?

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.49.112.117

Whois 130.49.112.117

IP Abuse Reports for 130.49.112.117:

This IP address has been reported a total of 5 times from 4 distinct sources. 130.49.112.117 was first reported on November 27th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-18 22:51:34 (4 weeks ago)	(mod_security) mod_security (id:225170) triggered by 130.49.112.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 130.49.112.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 18:51:31.072726 2026] [security2:error] [pid 17407:tid 17407] [client 130.49.112.117:35821] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|specialtycomputer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "specialtycomputer.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aguX80yYZfRNYi5mRo10CAAAAAY"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-13 12:53:38 (1 month ago)	[redacted] 130.49.112.117 - - [13/May/2026:14:53:23 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" " ... show more [redacted] 130.49.112.117 - - [13/May/2026:14:53:23 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)" [redacted] 130.49.112.117 - - [13/May/2026:14:53:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)" [redacted] 130.49.112.117 - - [13/May/2026:14:53:34 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)" [redacted] 130.49.112.117 - - [13/May/2026:14:53:36 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)" [redacted] 130.49.112.117 - - [13/May/2026:14:53:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Apache-HttpClient/4.5.13 (Java/11.0.30)" ... show less	Hacking Web App Attack
🇨🇭 backslash	2026-02-08 12:20:04 (4 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2025-12-15 11:53:04 (6 months ago)	Forum/form spam	Web Spam
Anonymous	2025-11-27 19:48:39 (6 months ago)	Forum/form spam	Web Spam

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.61

🇺🇸 154.16.119.22

🇨🇳 115.190.243.99

🇺🇸 104.233.26.141

🇹🇷 89.252.157.42

🇱🇹 81.30.98.158

🇧🇷 45.205.1.242

🇭🇰 103.103.245.61

🇬🇧 92.207.4.157

🇫🇷 92.205.61.48

🇺🇸 91.230.168.169

🇫🇷 91.196.152.124

🇧🇷 45.205.1.76

🇺🇸 45.61.186.169

🇩🇪 43.228.157.10

🇸🇦 37.56.28.254

🇷🇺 5.167.64.226

🇧🇩 165.101.52.30

🇺🇸 147.182.182.147

🇨🇳 146.56.197.150