JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.132.99.130

145.132.99.130 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 89%: ?

89%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Boydton, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.132.99.130

Whois 145.132.99.130

IP Abuse Reports for 145.132.99.130:

This IP address has been reported a total of 41 times from 28 distinct sources. 145.132.99.130 was first reported on October 15th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-06-14 04:31:10 (1 week ago)	firewall-block, port(s): 80/tcp, 443/tcp, 2082/tcp, 2083/tcp, 2086/tcp, 2087/tcp, 3000/tcp, 8080/tcp ... show more firewall-block, port(s): 80/tcp, 443/tcp, 2082/tcp, 2083/tcp, 2086/tcp, 2087/tcp, 3000/tcp, 8080/tcp, 8443/tcp show less	Port Scan
🇦🇹 begou.dev	2026-06-14 03:38:02 (1 week ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/8080	Port Scan
🇺🇸 MPL	2026-06-14 02:58:19 (1 week ago)	tcp port scan (9 or more attempts)	Port Scan
🇺🇸 ISPLtd	2026-06-14 02:15:31 (1 week ago)	Jun 13 23:15:29 145.132.99.130 TCP SPT=35029 DPT=8443 SYN Jun 13 23:15:29 145.132.99.130 TCP SPT=350 ... show more Jun 13 23:15:29 145.132.99.130 TCP SPT=35029 DPT=8443 SYN Jun 13 23:15:29 145.132.99.130 TCP SPT=35030 DPT=2086 SYN Jun 13 23:15:29 145.132.99.130 TCP SPT=35030 DPT=2082 SYN ... show less	Port Scan
🇩🇪 edena	2026-06-14 00:29:19 (1 week ago)	145.132.99.130 - - [14/Jun/2026:02:29:17 +0200] "GET /.env.local HTTP/1.1" 403 322 "-" "Mozilla/5.0 ... show more 145.132.99.130 - - [14/Jun/2026:02:29:17 +0200] "GET /.env.local HTTP/1.1" 403 322 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" 145.132.99.130 - - [14/Jun/2026:02:29:18 +0200] "GET /.env.backup HTTP/1.1" 403 322 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" 145.132.99.130 - - [14/Jun/2026:02:29:18 +0200] "GET /.env.save HTTP/1.1" 403 322 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Web App Attack Bad Web Bot
🇷🇸 Scan	2026-06-13 23:59:31 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇷 SOC PR	2026-06-13 23:33:26 (1 week ago)	IPS: WordPress Enforcement Protection.	Web App Attack
🇺🇸 Axel	2026-06-13 23:26:51 (1 week ago)	Blocked by UFW on MVI [8080/tcp] \| SPT: 33856 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [8080/tcp] \| SPT: 33856 \| TTL: 49 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 Peregrine	2026-06-11 03:09:19 (2 weeks ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 145.132.99.130 - - [07/Jun/2026:10:48:17 -0300] "GET /. ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 145.132.99.130 - - [07/Jun/2026:10:48:17 -0300] "GET /.git/HEAD HTTP/1.1" 404 414 - 145.132.99.130 - - [07/Jun/2026:10:48:21 -0300] "GET /.env HTTP/1.1" 404 414 - 145.132.99.130 - - [07/Jun/2026:10:48:22 -0300] "GET /.env.local HTTP/1.1" 404 414 - 145.132.99.130 - - [07/Jun/2026:10:48:24 -0300] "GET /.env.production HTTP/1.1" 404 414 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-09 15:35:16 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.99.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.132.99.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:35:08.406648 2026] [security2:error] [pid 12752:tid 12752] [client 145.132.99.130:8072] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.206"] [uri "/.git/HEAD"] [unique_id "aigyrIhyWoNKRXHuVNqBdgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 sumnone	2026-06-09 14:41:03 (2 weeks ago)	Port probing on unauthorized port 2087	Port Scan Hacking Exploited Host
🇩🇪 wupinyin	2026-06-09 14:18:30 (2 weeks ago)	CrowdSec ban: ET WEB_SERVER WEB-PHP phpinfo access	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-09 13:40:59 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.99.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.132.99.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:40:55.723644 2026] [security2:error] [pid 25487:tid 25577] [client 145.132.99.130:8063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.44"] [uri "/.git/HEAD"] [unique_id "aigX5xC5pz9K-E7jWdlvNwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:08:55 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 145.132.99.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 145.132.99.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:08:47.455824 2026] [security2:error] [pid 27781:tid 27781] [client 145.132.99.130:7967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.184"] [uri "/.env"] [unique_id "aigCTw6N3YqhIv0DckZ63QAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 masterguru	2026-06-09 11:59:12 (2 weeks ago)	. Matched phrase "/.git/" at REQUEST_URI. (210492-128)	Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.196.152.242

🇺🇸 86.111.187.169

🇺🇸 57.141.20.67

🇺🇸 57.141.20.29

🇹🇼 198.235.24.91

🇮🇳 182.64.3.134

🇰🇭 160.202.35.176

🇷🇴 141.98.83.111

🇯🇵 103.163.220.174

🇷🇺 95.25.181.64

🇺🇸 57.141.20.59

🇺🇸 57.141.20.13

🇺🇸 57.141.20.0

🇯🇵 52.199.160.243

🇨🇦 52.138.3.29

🇨🇳 49.83.26.189

🇺🇸 216.25.89.91

🇰🇷 183.96.114.217

🇷🇺 89.253.35.53

🇫🇮 85.192.31.14