JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 130.94.58.90

130.94.58.90 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 100%: ?

100%

ISP	LIGHT NODE LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS154177
Domain Name	lightnode.com
Country	🇸🇦 Saudi Arabia
City	Riyadh, Riyadh Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 130.94.58.90

Whois 130.94.58.90

IP Abuse Reports for 130.94.58.90:

This IP address has been reported a total of 74 times from 53 distinct sources. 130.94.58.90 was first reported on June 13th 2026, and the most recent report was 3 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-15 12:11:00 (3 minutes ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 monn45888	2026-06-15 12:06:16 (8 minutes ago)	$f2bV_matches	Web App Attack
🇪🇸 el-brujo	2026-06-15 11:49:52 (24 minutes ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Action: managed_challenge Source: firewallManaged ASN Description: LIGHT NODE LIMITED Country: SA Method: POST Timestamp: 2026-06-15T11:49:52Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇸🇬 pusathosting.com	2026-06-15 11:00:08 (1 hour ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇪🇸 el-brujo	2026-06-15 08:35:56 (3 hours ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0 Action: managed_challenge Source: firewallManaged ASN Description: LIGHT NODE LIMITED Country: SA Method: POST Timestamp: 2026-06-15T08:35:56Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
Anonymous	2026-06-15 08:18:11 (3 hours ago)	(directadmin) Failed phpMyAdmin2 login from 130.94.58.90 (SA/Saudi Arabia/-): 5 in the last 3600 sec ... show more (directadmin) Failed phpMyAdmin2 login from 130.94.58.90 (SA/Saudi Arabia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DIRECTADMIN show less	Brute-Force
🇧🇪 voormedia	2026-06-15 06:22:35 (5 hours ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
Anonymous	2026-06-15 05:28:43 (6 hours ago)	Attac	Brute-Force
🇪🇸 el-brujo	2026-06-15 05:25:11 (6 hours ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0 Action: managed_challenge Source: firewallManaged ASN Description: LIGHT NODE LIMITED Country: SA Method: POST Timestamp: 2026-06-15T05:25:11Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-06-15 04:52:42 (7 hours ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0 Action: managed_challenge Source: firewallManaged ASN Description: LIGHT NODE LIMITED Country: SA Method: POST Timestamp: 2026-06-15T04:52:42Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇱🇻 garmtech.com	2026-06-15 04:41:27 (7 hours ago)	Attempted access to sensitive endpoint (/phpMyAdmin/) detected. Automated scan or unauthorized probi ... show more Attempted access to sensitive endpoint (/phpMyAdmin/) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 ph	2026-06-15 04:39:57 (7 hours ago)	Bad web bot attempting to run wp-json on non-WP site	Hacking Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-06-15 04:33:06 (7 hours ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15 Action: managed_challenge Source: firewallManaged ASN Description: LIGHT NODE LIMITED Country: SA Method: POST Timestamp: 2026-06-15T04:33:06Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇫🇷 tecnoacquisti.com	2026-06-15 04:19:15 (7 hours ago)	PrestaShop Security Module: Calls WordPress paths probing known vulnerabilities	Web App Attack
🇨🇦 1gz	2026-06-15 04:03:15 (8 hours ago)	Triggered Cloudflare WAF (firewallCustom) from SA. Action taken: CHALLENGE Protocol: HTTP/1.1 (GET m ... show more Triggered Cloudflare WAF (firewallCustom) from SA. Action taken: CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /pma/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 202.215.218.174

🇲🇦 196.92.7.249

🇷🇺 188.32.104.175

🇮🇳 182.95.177.158

🇨🇳 180.76.148.232

🇦🇷 179.40.112.10

🇲🇦 160.178.160.238

🇮🇳 122.170.111.140

🇭🇰 103.243.26.174

🇮🇩 103.167.171.160

🇳🇱 91.92.40.7

🇩🇪 69.5.169.201

🇨🇦 24.231.82.43

🇳🇱 213.177.179.12

🇩🇪 194.36.25.42

🇺🇸 176.100.149.146

🇩🇪 69.5.169.240

🇩🇪 69.5.169.177

🇩🇪 69.5.169.100

🇺🇸 65.49.20.76