JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.202.43

45.130.202.43 was found in our database!

This IP was reported 194 times. Confidence of Abuse is 74%: ?

74%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.202.43

Whois 45.130.202.43

IP Abuse Reports for 45.130.202.43:

This IP address has been reported a total of 194 times from 71 distinct sources. 45.130.202.43 was first reported on November 26th 2022, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 10:29:02 (11 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 06:28:51.139051 2026] [security2:error] [pid 24291:tid 24291] [client 45.130.202.43:60325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.basse.lahamradio.com"] [uri "/.git/HEAD"] [unique_id "ai0w46kEhSTI7pdMsmQLnwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 07:55:59 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:55:46.115357 2026] [security2:error] [pid 32766:tid 32766] [client 45.130.202.43:53969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mgmlawnservice.buffaloweddingdeejay.com"] [uri "/.git/HEAD"] [unique_id "ai0NAqE06T6YqW5IcJpoCwAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇴 jad@	2026-06-13 04:38:11 (17 hours ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 1 hits. show less	Web App Attack
Anonymous	2026-06-12 23:30:36 (22 hours ago)	"GET /wp-content/plugins/seoplugins/ HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 18:51:07 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:51:03.609688 2026] [security2:error] [pid 29616:tid 29616] [client 45.130.202.43:56493] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kh6jim.com"] [uri "/.env"] [unique_id "aixVF0o4jknJuak09NOsRQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-06-12 18:20:14 (1 day ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-12 09:45:08 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 08:30:37 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 04:30:32.085019 2026] [security2:error] [pid 10741:tid 10741] [client 45.130.202.43:42965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "societasprivata.sfsdesignsproductions.com"] [uri "/.git/HEAD"] [unique_id "aivDqIliXowOFuk9Lf8IfAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 YF	2026-06-12 05:00:25 (1 day ago)	Git HEAD exposure probe	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 01:08:04 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 21:08:00.132760 2026] [security2:error] [pid 13460:tid 13460] [client 45.130.202.43:28679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kidswow.kidswow.com"] [uri "/.git/HEAD"] [unique_id "aitb8H7GTB5ROdZGTRcwXQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 14:19:21 (2 days ago)	2026/06/11 14:19:10 [error] 4391#4391: 76008 [client 45.130.202.43] ModSecurity: Access denied with ... show more 2026/06/11 14:19:10 [error] 4391#4391: 76008 [client 45.130.202.43] ModSecurity: Access denied with code 403 (phase 2). Matched "Operator `Ge' with parameter `5' against variable `TX:BLOCKING_INBOUND_ANOMALY_SCORE' (Value: `5' ) [file "/usr/local/owasp-modsecurity-crs-4.11.0/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "222"] [id "949110"] [rev ""] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [data ""] [severity "0"] [ver "OWASP_CRS/4.27.0"] [maturity "0"] [accuracy "0"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "abii-reporting.ingeltechgh.com"] [uri "/.env.production"] [unique_id "178118755079.243675"] [ref ""], client: 45.130.202.43, server: srv.ingeltechgh.com, request: "GET /.env.production HTTP/1.1", host: "abii-reporting.ingeltechgh.com" 2026/06/11 14:19:11 [error] 4391#4391: *76017 [client 45.130.202.43] ModSecurity: Access denied with code 403 (phase 2). Matched "Operator `Ge' with parameter `5' against variable `TX:BLOCKING_INBOUND_ANOMALY_SCORE' (Valu ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 05:05:38 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 01:05:29.978320 2026] [security2:error] [pid 10867:tid 10867] [client 45.130.202.43:54369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hillsboroughcountyresident.com.alanmariotti.com"] [uri "/.git/HEAD"] [unique_id "aipCGaTE7-ITDx0E9nedtwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 04:04:29 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 45.130.202.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 00:04:22.179511 2026] [security2:error] [pid 5048:tid 5048] [client 45.130.202.43:53557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "centerofhopefl.com.tribecalledfamilypodcast.org"] [uri "/.git/HEAD"] [unique_id "aiozxrwZ9uk64n9cRrtfUgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 inlink.ltd	2026-06-11 01:13:48 (2 days ago)	dot file probe	Web App Attack
🇯🇵 demonsword	2026-06-10 11:19:54 (3 days ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: ipleak.net:443 show less	Open Proxy Port Scan

Showing 1 to 15 of 194 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.19

🇺🇸 66.175.212.77

🇺🇸 66.132.195.89

🇹🇼 198.235.24.9

🇫🇮 147.185.133.25

🇺🇸 147.185.132.115

🇺🇸 147.185.132.9

🇵🇰 103.186.77.77

🇬🇧 89.37.172.135

🇺🇸 74.87.117.149

🇺🇸 66.132.195.110

🇺🇸 66.132.186.222

🇺🇸 66.132.186.165

🇺🇸 64.62.156.24

🇺🇸 20.64.106.58

🇰🇷 14.46.58.104

🇮🇳 8.231.97.236

🇧🇷 177.135.223.123

🇳🇱 176.65.139.249

🇧🇷 168.181.62.26