JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.30.37.40

212.30.37.40 was found in our database!

This IP was reported 245 times. Confidence of Abuse is 86%: ?

86%

ISP	M Nets SAL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	mnets.net
Country	🇳🇱 Netherlands
City	Rotterdam, South Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.30.37.40

Whois 212.30.37.40

IP Abuse Reports for 212.30.37.40:

This IP address has been reported a total of 245 times from 92 distinct sources. 212.30.37.40 was first reported on May 10th 2022, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-11 22:00:34 (3 hours ago)	Auto-ban: >3000 req/min op 2026-06-11	Web App Attack SSH Hacking
🇳🇱 Site.eu	2026-06-11 20:12:48 (5 hours ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 big-cloud.nl	2026-06-11 18:52:13 (6 hours ago)	Try to access /de-ideale-stookmix//wp-includes/js/tinymce/themes/about.php	Web App Attack
🇧🇪 cmbplf	2026-06-11 18:41:54 (7 hours ago)	1.108 requests with url.path *config.php	Brute-Force Bad Web Bot
🇳🇱 Site.eu	2026-06-11 11:58:08 (13 hours ago)	Excessive 404/403 errors	Brute-Force
🇬🇧 consul.to	2026-06-11 11:12:46 (14 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 11:10:53 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 07:10:46.645014 2026] [security2:error] [pid 3578:tid 3578] [client 212.30.37.40:32599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "semisysteme.com"] [uri "/.git/HEAD"] [unique_id "aiFdNgvYN6kmmL_XWh6HiwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 10:49:50 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 06:49:45.243209 2026] [security2:error] [pid 22186:tid 22186] [client 212.30.37.40:50151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jondamico.com"] [uri "/.git/"] [unique_id "aiFYSeyYha5LsrMT93MwCQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 WellSpring	2026-06-04 10:38:41 (1 week ago)	git exposure on 712.today/.git/HEAD — WellSpr.ing/NetSentinel civic-AI security layer	Web App Attack
🇫🇷 Baking333	2026-06-04 10:32:02 (1 week ago)	[redacted] 212.30.37.40 - - [04/Jun/2026:11:32:00 +0100] "GET /.git-audit-probe-91d76d01d77ee270/HEA ... show more [redacted] 212.30.37.40 - - [04/Jun/2026:11:32:00 +0100] "GET /.git-audit-probe-91d76d01d77ee270/HEAD HTTP/1.1" 302 5268 0/85669 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0" [redacted] 212.30.37.40 - - [04/Jun/2026:11:32:01 +0100] "GET /.git/HEAD HTTP/1.1" 302 5268 0/121183 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 09:23:47 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 05:23:42.328158 2026] [security2:error] [pid 9202:tid 9202] [client 212.30.37.40:22029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tourissue.com"] [uri "/.git/HEAD"] [unique_id "aiFEHtBgCFWbW1FGF9IaGAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 08:34:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:34:24.787963 2026] [security2:error] [pid 16866:tid 16893] [client 212.30.37.40:40335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "exedesalesteam.com"] [uri "/.git/config"] [unique_id "aiE4kB5pvNPppI9GXmi9WQAAARQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-04 07:42:22 (1 week ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 40.37.30.212.rbl.malwar ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 40.37.30.212.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-3) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-04 07:30:13 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 03:30:05.766096 2026] [security2:error] [pid 7127:tid 7127] [client 212.30.37.40:25757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lysedzija.com"] [uri "/.git/HEAD"] [unique_id "aiEpfYUdF4bz9PQdDU6WIgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 05:53:51 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.30.37.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 01:53:46.891110 2026] [security2:error] [pid 12060:tid 12060] [client 212.30.37.40:22917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cook-islands-boat-registration.com"] [uri "/.git/HEAD"] [unique_id "aiES6r93aRJHOC3VoXLGwAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 245 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 191.180.20.215

🇬🇧 178.62.1.244

🇧🇭 172.71.228.135

🇺🇸 165.154.163.173

🇫🇮 147.185.133.136

🇮🇩 103.193.145.239

🇧🇩 103.65.240.34

🇪🇬 45.244.11.228

🇳🇱 185.226.197.27

🇵🇰 172.69.230.131

🇪🇨 149.50.204.206

🇨🇱 136.248.242.166

🇨🇳 111.113.88.196

🇺🇸 108.181.23.83

🇴🇲 104.23.193.132

🇺🇸 45.156.129.60

🇳🇱 45.148.10.151

🇺🇸 209.90.232.71

🇲🇽 201.148.8.221

🇭🇰 185.239.85.154