JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.168.241.130

170.168.241.130 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	Fine Group Servers Solutions LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇷 France
City	Niedermodern, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.168.241.130

Whois 170.168.241.130

IP Abuse Reports for 170.168.241.130:

This IP address has been reported a total of 9 times from 5 distinct sources. 170.168.241.130 was first reported on October 12th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-03 10:38:54 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 06:38:48.623006 2026] [security2:error] [pid 19091:tid 19091] [client 170.168.241.130:41691] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|deanfountain.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "deanfountain.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ac-YuLC2xUqSeLbM538jOwAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Mainpine	2026-02-21 21:38:11 (3 months ago)	probing for vulnerable web apps	Web App Attack
🇮🇹 VHosting	2026-02-21 12:05:04 (3 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 22:23:50 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 17:23:46.480379 2026] [security2:error] [pid 16507:tid 16507] [client 170.168.241.130:61655] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pharmaceuticalsalescareerhub.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pharmaceuticalsalescareerhub.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXKjcjiHtBuktKxweZuhZAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 17:59:02 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 12:58:57.283758 2026] [security2:error] [pid 27067:tid 27067] [client 170.168.241.130:61945] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|daylightingit.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "daylightingit.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXJlYWinAAB6D8PhYweExgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 15:44:25 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 10:44:21.217718 2026] [security2:error] [pid 23805:tid 23805] [client 170.168.241.130:13875] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|tgdingenieria.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "tgdingenieria.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXJF1f-X-UJWf5dEUUck3QAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 10:19:52 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 170.168.241.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 05:19:46.226224 2026] [security2:error] [pid 2114:tid 2114] [client 170.168.241.130:45975] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|phillipstasklist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "phillipstasklist.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXH5wvYQTZLyJOLE1vaBYAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-10 14:34:38 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇳🇱 exxos	2025-10-12 07:03:01 (7 months ago)	HTTP1.x attacks	DDoS Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.94.115.164

🇺🇸 216.24.210.233

🇳🇱 204.76.203.221

🇳🇱 204.76.203.212

🇧🇪 198.235.24.217

🇧🇪 198.235.24.207

🇧🇪 198.235.24.206

🇬🇧 195.140.214.27

🇬🇧 188.240.59.44

🇮🇶 185.24.60.183

🇮🇳 182.95.87.133

🇩🇪 167.94.145.19

🇸🇬 101.47.155.9

🇹🇿 41.59.16.221

🇬🇧 35.203.211.92

🇮🇪 34.242.200.10

🇳🇱 34.91.255.174

🇬🇧 31.14.254.67

🇺🇸 18.222.230.185

🇧🇪 198.235.24.205