JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.49.115.64

130.49.115.64 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 29%: ?

29%

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.49.115.64

Whois 130.49.115.64

IP Abuse Reports for 130.49.115.64:

This IP address has been reported a total of 12 times from 7 distinct sources. 130.49.115.64 was first reported on December 3rd 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 ptlab	2026-06-25 10:45:31 (1 day ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇺🇸 kosada.com	2026-06-24 21:11:47 (1 day ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 10:13:58 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 130.49.115.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.115.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:13:52.227583 2026] [security2:error] [pid 18959:tid 18959] [client 130.49.115.64:17355] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|martinka.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "martinka.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajkK4JRUIXwtrJZ2Yvs2iwAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 f3sc	2026-06-22 05:23:44 (4 days ago)	[Mon Jun 22 07:23:42.944298 2026] [authz_core:error] [pid 40046:tid 140463818405632] [client 130.49. ... show more [Mon Jun 22 07:23:42.944298 2026] [authz_core:error] [pid 40046:tid 140463818405632] [client 130.49.115.64:38697] AH01630: client denied by server configuration: /var/www/html/fail2ban/xmlrpc.php [Mon Jun 22 07:23:43.278063 2026] [authz_core:error] [pid 40045:tid 140463810012928] [client 130.49.115.64:26531] AH01630: client denied by server configuration: /var/www/html/fail2ban/wp-login.php, referer: https://www.google.com [Mon Jun 22 07:23:43.602146 2026] [authz_core:error] [pid 40046:tid 140463776442112] [client 130.49.115.64:42151] AH01630: client denied by server configuration: /var/www/html/fail2ban/wp-login.php, referer: https://www.google.com show less	Brute-Force
🇺🇸 nationaleventpros.com	2026-03-26 01:56:40 (3 months ago)	WordPress login attempt	Brute-Force
🇺🇸 kosada.com	2026-03-22 13:44:46 (3 months ago)	Web password guessing	Brute-Force
🇺🇸 nationaleventpros.com	2026-03-21 22:28:07 (3 months ago)	WordPress login attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-03-21 13:38:54 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.115.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.115.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 09:38:47.923212 2026] [security2:error] [pid 21315:tid 21315] [client 130.49.115.64:56115] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|massingale.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "massingale.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab6fZ-JPk1fN4MqYKFYz-gAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-20 00:53:26 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.115.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.115.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 20:53:19.554607 2026] [security2:error] [pid 18129:tid 18129] [client 130.49.115.64:40993] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aim-controls.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aim-controls.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abyaf9nVTDVAJdUWKKyRxQAAAAI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇪🇸 10dencehispahard SL	2025-12-03 07:42:18 (6 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 181.174.230.11

🇿🇦 102.249.36.30

🇳🇬 102.91.104.182

🇺🇸 40.124.174.149

🇯🇵 8.216.46.30

🇧🇷 209.14.148.182

🇸🇬 202.76.172.210

🇮🇳 182.95.48.154

🇺🇸 166.169.210.84

🇨🇱 45.225.204.163

🇺🇸 172.86.114.38

🇺🇸 147.185.132.98

🇨🇳 123.9.18.244

🇧🇩 103.158.132.146

🇯🇴 94.142.43.7

🇹🇷 88.248.2.236

🇺🇸 47.254.86.57

🇨🇦 20.43.5.233

🇬🇧 5.226.140.52

🇸🇬 4.194.31.84