JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.202.106

45.130.202.106 was found in our database!

This IP was reported 330 times. Confidence of Abuse is 57%: ?

57%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.202.106

Whois 45.130.202.106

IP Abuse Reports for 45.130.202.106:

This IP address has been reported a total of 330 times from 88 distinct sources. 45.130.202.106 was first reported on October 17th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-09 08:53:25 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 04:53:21.712799 2026] [security2:error] [pid 3204:tid 3262] [client 45.130.202.106:55567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "buyused-jomega.jomega.org"] [uri "/.git/HEAD"] [unique_id "aifUgQ314wjhA3fF1nJTzgAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 00:33:46 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 20:33:41.775634 2026] [security2:error] [pid 23157:tid 23157] [client 45.130.202.106:54755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.oldnvn.tonynvn.me"] [uri "/.git/HEAD"] [unique_id "aidfZYE6ue6pna6WsgQ3uAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-07 21:59:17 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-06. show less	Web App Attack SSH Hacking
🇬🇧 consul.to	2026-06-07 11:33:08 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-06-07 00:58:17 (3 days ago)	Aggressive web search of vulnerable pages: /wp-includes/customize/index.php /wp-admin/shell20211028. ... show more Aggressive web search of vulnerable pages: /wp-includes/customize/index.php /wp-admin/shell20211028.php /natural.php /item.php /function/functi ... show less	Web App Attack
🇷🇺 sms.ru	2026-06-06 19:42:42 (3 days ago)	/vendor/phpunit/phpunit/src/Util/PHP/db.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 11:24:08 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 07:24:03.654907 2026] [security2:error] [pid 17351:tid 17351] [client 45.130.202.106:52963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.whatifandwhynot.xyz"] [uri "/.git/HEAD"] [unique_id "aiQDUzwxtkgMLcDti2O13gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 07:28:04 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 03:27:57.397836 2026] [security2:error] [pid 5525:tid 5525] [client 45.130.202.106:28129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galvanizetm.com.thinkingepic.com"] [uri "/.git/HEAD"] [unique_id "aiPL_YqG_5Ia_mlTIzzoHwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 19:31:03 (4 days ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇫🇷 masterguru	2026-05-11 01:34:52 (4 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-196) show less	Bad Web Bot
🇬🇧 consul.to	2026-05-11 01:27:10 (4 weeks ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-05-10 23:04:04 (4 weeks ago)	45.130.202.106 - - [11/May/2026:01:04:01 +0200] "GET /wp-includes/system_core.php HTTP/1.1" 404 124 ... show more 45.130.202.106 - - [11/May/2026:01:04:01 +0200] "GET /wp-includes/system_core.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1" 45.130.202.106 - - [11/May/2026:01:04:02 +0200] "GET /wp-content/wp-content/wp-config-backup.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1" 45.130.202.106 - - [11/May/2026:01:04:03 +0200] "GET /wp-content/wp-config.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1" 45.130.202.106 - - [11/May/2026:01:04:03 +0200] "GET /wp-content/plugins/js_composer/bak.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1" 45.130.202.106 - - [11/May/2026:01:04:03 +0200] "GET /wp-content/plugins/elementor/assets/css/conditionals/system_core.php HTTP/1.1" 404 124 "-" "Go-http-client/1.1" ... show less	Brute-Force Web App Attack
🇦🇺 oncord	2026-04-30 20:36:56 (1 month ago)	Form spam	Web Spam
🇬🇧 consul.to	2026-04-30 07:46:42 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 paissangroup	2026-04-27 22:00:46 (1 month ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 330 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 212.73.148.21

🇹🇳 197.31.52.168

🇲🇦 196.120.141.121

🇵🇪 190.239.208.81

🇧🇷 177.2.7.116

🇭🇰 144.48.241.162

🇨🇳 124.117.194.79

🇮🇳 123.253.162.254

🇮🇳 103.175.180.57

🇻🇳 103.138.113.149

🇧🇬 79.124.62.134

🇦🇺 51.161.128.68

🇧🇷 45.233.218.160

🇺🇸 18.219.249.5

🇰🇪 197.254.23.42

🇲🇽 189.240.44.9

🇮🇶 185.84.71.107

🇧🇷 181.218.172.74

🇨🇦 173.239.173.174

🇮🇳 168.144.95.137