JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.202.89

45.130.202.89 was found in our database!

This IP was reported 343 times. Confidence of Abuse is 66%: ?

66%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.202.89

Whois 45.130.202.89

IP Abuse Reports for 45.130.202.89:

This IP address has been reported a total of 343 times from 93 distinct sources. 45.130.202.89 was first reported on October 14th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 masterguru	2026-06-18 14:04:33 (1 week ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (5001900-122)	Web App Attack
Anonymous	2026-06-18 05:03:23 (1 week ago)	[osotir.org] httpd-login-spray-net: sites=agonistes.gr; logs=/var/log/httpd/domains/agonistes.gr.log ... show more [osotir.org] httpd-login-spray-net: sites=agonistes.gr; logs=/var/log/httpd/domains/agonistes.gr.log; samples=network=45.130.202.0/24 \| distinct_ips=8 \| /wp-login.php show less	Hacking Web App Attack
🇺🇸 TNZ	2026-06-17 21:41:01 (1 week ago)	Automated honeypot: fake_login_page_visited \| Path: /wp-login.php \| ISP: AS137409 GSL Networks Pty L ... show more Automated honeypot: fake_login_page_visited \| Path: /wp-login.php \| ISP: AS137409 GSL Networks Pty LTD \| ASN: AS137409 GSL Networks Pty LTD [PROXY] \| Abuse score: 72 \| Open ports: [] \| UA: Mozilla/5.0 show less	Web App Attack
🇫🇷 dynamix	2026-06-17 12:29:52 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-13 23:07:50 (1 week ago)	Trying to access config files	Web App Attack
Anonymous	2026-06-12 10:07:28 (1 week ago)	Trying to access config files	Web App Attack
Anonymous	2026-06-10 14:07:23 (2 weeks ago)	Trying to access config files	Web App Attack
🇧🇪 voormedia	2026-06-09 06:47:45 (2 weeks ago)	Accessed trap at '/.git/HEAD'	Web App Attack
Anonymous	2026-06-09 03:06:06 (2 weeks ago)	Trying to access config files	Web App Attack
🇫🇮 inlink.ltd	2026-06-09 01:14:32 (2 weeks ago)	dot file probe	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-07 21:59:24 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-06. show less	Web App Attack SSH Hacking
🇬🇧 consul.to	2026-06-07 14:06:50 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Ba-Yu	2026-06-07 05:31:03 (2 weeks ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇺🇦 URAN Publishing Service	2026-06-07 04:21:13 (2 weeks ago)	45.130.202.89 - - [07/Jun/2026:07:21:02 +0300] "GET /cgi-bin/index.php HTTP/1.1" 404 190 "-" "Mozill ... show more 45.130.202.89 - - [07/Jun/2026:07:21:02 +0300] "GET /cgi-bin/index.php HTTP/1.1" 404 190 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 45.130.202.89 - - [07/Jun/2026:07:21:12 +0300] "GET /cgi-bin/install.php HTTP/1.1" 404 190 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" ... show less	Web App Attack
🇫🇷 Octopuce	2026-06-07 01:00:24 (2 weeks ago)	Aggressive web search of vulnerable pages: /wp-admin/js/wp-conflg.php /wp-includes/assets/husky301.p ... show more Aggressive web search of vulnerable pages: /wp-admin/js/wp-conflg.php /wp-includes/assets/husky301.php /wp.php /wp-admin/css/colors/blue/wp-tra ... show less	Web App Attack

Showing 1 to 15 of 343 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.140.214.29

🇬🇧 31.14.254.82

🇺🇸 198.2.182.222

🇭🇰 194.187.178.190

🇷🇺 176.112.128.143

🇳🇱 176.65.148.156

🇨🇳 175.178.58.190

🇭🇰 101.36.111.155

🇺🇸 54.89.101.141

🇪🇸 208.76.222.136

🇬🇧 195.140.214.25

🇺🇸 172.234.200.228

🇨🇳 157.156.242.184

🇺🇸 65.49.1.158

🇮🇳 45.10.194.247

🇸🇬 8.219.165.42

🇨🇿 194.145.183.60

🇲🇴 182.93.50.90

🇳🇱 176.65.148.197

🇺🇸 162.216.150.214