JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.49.79.175

130.49.79.175 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 13%: ?

13%

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.49.79.175

Whois 130.49.79.175

IP Abuse Reports for 130.49.79.175:

This IP address has been reported a total of 7 times from 3 distinct sources. 130.49.79.175 was first reported on February 1st 2026, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 stinpriza	2026-06-15 19:46:16 (21 hours ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 15:47:38 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 11:47:33.147395 2026] [security2:error] [pid 10548:tid 10548] [client 130.49.79.175:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aslanhan.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aslanhan.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahm1FdUJdMjR6AHBKNMvYAAAABI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-10 08:45:25 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 04:45:21.407460 2026] [security2:error] [pid 23946:tid 23946] [client 130.49.79.175:46035] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gonzalez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gonzalez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agBFofQyv-guEhP6KLr6eAAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 05:25:42 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 01:25:38.158491 2026] [security2:error] [pid 30986:tid 30986] [client 130.49.79.175:29305] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|limobusrichmond.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "limobusrichmond.com"] [uri "/"] [unique_id "af1z0ly07wUlogTVwZahBAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-12 08:54:38 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 04:54:30.399121 2026] [security2:error] [pid 2146776:tid 2146866] [client 130.49.79.175:41517] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pryclogistica.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pryclogistica.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adtdxhKRJ9toSwo-q2QITAAAAgQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-09 21:18:13 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 17:18:04.613310 2026] [security2:error] [pid 925076:tid 925076] [client 130.49.79.175:37449] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|coloradohifi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coloradohifi.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adgXjIVROo4_8nq_gTciBwAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-01 00:48:53 (4 months ago)	WEB SPAM: Informationbreach – Your Email May Already Be Exposed Your inbox isn't safe anymore. ... show more WEB SPAM: Informationbreach – Your Email May Already Be Exposed Your inbox isn't safe anymore. Hackers mail, stolen logins, and email vulnerability are spreading fast — and your email address on the dark web could be the next target. Informationbreach scans 33B+ breached passwords and 50M new records daily to reveal if your account has been compromised. Instantly check email in dark web, detect hack email account attempts, and verify credentials security before damage happens. Run a real-time exposure check, see if someone has hacked into your email, and secure your identity with accurate results — not guesses. Full access is just $2 — unlock everything, stay protected, and take control before hackers do. Scan Email Now: <a href=https://informationbreach.net> Website password checker</a> \| show less	Web Spam Blog Spam

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.92.251.198

🇩🇪 194.187.176.239

🇳🇱 176.65.139.94

🇺🇸 172.93.106.153

🇺🇸 154.17.23.140

🇧🇷 45.164.251.106

🇨🇦 4.239.240.98

🇨🇦 216.26.233.21

🇩🇪 209.38.255.6

🇺🇸 172.202.117.213

🇩🇪 164.92.161.148

🇺🇸 143.198.151.73

🇺🇸 129.146.247.247

🇮🇳 122.165.235.131

🇬🇧 89.34.96.151

🇳🇱 45.148.10.151

🇧🇷 187.180.167.23

🇳🇱 185.99.99.95

🇧🇬 151.237.79.243

🇳🇱 45.148.10.152