JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.49.79.45

130.49.79.45 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 19%: ?

19%

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.49.79.45

Whois 130.49.79.45

IP Abuse Reports for 130.49.79.45:

This IP address has been reported a total of 13 times from 9 distinct sources. 130.49.79.45 was first reported on February 20th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-27 09:08:18 (1 day ago)	Fail2Ban banned 130.49.79.45 for security violations in jail wp-armour. Log: 2026/06/27 09:08:17 [er ... show more Fail2Ban banned 130.49.79.45 for security violations in jail wp-armour. Log: 2026/06/27 09:08:17 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 130.49.79.45 \| Target: wplogin" , client: 130.49.79.45, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇱🇻 garmtech.com	2026-06-25 22:37:36 (2 days ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
🇺🇸 interbiznw.com	2026-05-16 02:39:29 (1 month ago)	wordpress-bruteforce	Hacking Brute-Force Exploited Host Web App Attack
🇱🇻 garmtech.com	2026-05-09 14:21:46 (1 month ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
🇺🇸 TPI-Abuse	2026-04-01 00:51:28 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 20:51:24.235979 2026] [security2:error] [pid 26739:tid 26739] [client 130.49.79.45:62387] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|harintonmechanical.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "harintonmechanical.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acxsDDtlOJxcpfj1a32HowAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-30 16:40:00 (2 months ago)	Hammering WP websites looking for exploits.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-25 08:47:39 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 25 04:47:34.745349 2026] [security2:error] [pid 23647:tid 23647] [client 130.49.79.45:47141] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|asduk.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "asduk.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acOhJmCPqcE9LU5W3E3dhAAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-22 00:49:42 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 130.49.79.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 130.49.79.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 20:49:34.334553 2026] [security2:error] [pid 17095:tid 17178] [client 130.49.79.45:28131] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rainbowbb.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rainbowbb.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab88nl6wBJ2cnuT6q6oOQgAAAY0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-03-06 23:28:40 (3 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2026-03-06 20:11:55 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 SpaceHost-Server	2026-03-05 23:27:55 (3 months ago)		Brute-Force Web App Attack
🇮🇩 Burayot	2026-02-26 16:09:09 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 130.49.79.45 (NL/Netherlands/-): 1 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 130.49.79.45 (NL/Netherlands/-): 1 in the last 3600 secs show less	Web App Attack
🇨🇭 backslash	2026-02-20 20:57:02 (4 months ago)	block ruleset AA06B7315BA6AEB6421B52F0B32E14B509FD5FF0	SQL Injection

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.199.94.189

🇧🇩 103.103.126.54

🇬🇧 35.203.210.136

🇮🇳 20.244.95.134

🇻🇳 14.248.83.33

🇭🇰 118.26.37.105

🇰🇿 92.47.46.174

🇹🇷 91.93.2.128

🇺🇸 54.87.30.8

🇱🇺 46.151.182.161

🇯🇵 43.207.199.236

🇨🇳 36.106.166.188

🇵🇭 8.212.177.113

🇨🇳 223.108.185.250

🇺🇸 209.38.73.178

🇬🇧 193.163.125.230

🇵🇰 182.185.35.208

🇧🇷 170.239.17.219

🇫🇮 147.185.133.84

🇨🇳 124.31.104.78