JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.49.115.70

130.49.115.70 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 32%: ?

32%

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.49.115.70

Whois 130.49.115.70

IP Abuse Reports for 130.49.115.70:

This IP address has been reported a total of 10 times from 8 distinct sources. 130.49.115.70 was first reported on February 26th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-28 08:25:23 (1 hour ago)	Fail2Ban banned 130.49.115.70 for security violations in jail wp-armour. Log: 2026/06/28 08:25:23 [e ... show more Fail2Ban banned 130.49.115.70 for security violations in jail wp-armour. Log: 2026/06/28 08:25:23 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 130.49.115.70 \| Target: wplogin" , client: 130.49.115.70, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-06-25 18:42:15 (2 days ago)	Fail2Ban banned 130.49.115.70 for security violations in jail wp-armour. Log: 2026/06/25 18:42:15 [e ... show more Fail2Ban banned 130.49.115.70 for security violations in jail wp-armour. Log: 2026/06/25 18:42:15 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 130.49.115.70 \| Target: wplogin" , client: 130.49.115.70, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇿 ptlab	2026-06-25 10:51:09 (2 days ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 01:11:12 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 130.49.115.70 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.115.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:11:05.671145 2026] [security2:error] [pid 15258:tid 15258] [client 130.49.115.70:9991] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|calvarycavaliers.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "calvarycavaliers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajc6KWWZLtilw-ZkPsWTBQAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 07:19:53 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 130.49.115.70 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.115.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 03:19:45.509645 2026] [security2:error] [pid 8926:tid 8926] [client 130.49.115.70:59577] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|texaslawman.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "texaslawman.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajY_EZfHbDD-YAR1DvFlbwAAAB0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-06-17 03:58:33 (1 week ago)	Brute force	Brute-Force
🇨🇭 backslash	2026-05-17 15:21:00 (1 month ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇩🇪 kjaerulff	2026-05-17 11:37:27 (1 month ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇧🇪 taivas.nl	2026-02-27 14:02:15 (4 months ago)	Wordpress_xmlrpc_attack	Bad Web Bot
🇺🇸 OceanTreasure	2026-02-26 22:45:09 (4 months ago)	tcp/443; WordPress login page access attempt: "GET /wp-login.php" @ 2026-02-26T22:44:37Z [proxy]	Brute-Force

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.233

🇸🇬 168.144.97.174

🇩🇪 165.245.250.37

🇸🇪 158.174.211.17

🇫🇷 155.133.142.67

🇵🇰 103.74.21.107

🇱🇹 77.90.185.78

🇻🇳 14.181.245.37

🇺🇸 207.90.244.10

🇺🇸 172.104.11.51

🇩🇪 165.154.164.79

🇻🇳 160.30.169.94

🇩🇰 158.173.74.67

🇩🇪 158.101.161.27

🇨🇳 150.138.182.190

🇺🇸 137.184.82.21

🇺🇸 135.237.127.188

🇨🇳 111.26.115.124

🇩🇪 43.228.157.10

🇺🇸 20.65.194.29