JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.203.129

45.130.203.129 was found in our database!

This IP was reported 387 times. Confidence of Abuse is 79%: ?

79%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.203.129

Whois 45.130.203.129

IP Abuse Reports for 45.130.203.129:

This IP address has been reported a total of 387 times from 128 distinct sources. 45.130.203.129 was first reported on January 19th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 13:53:25 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:949110) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 09:53:17.712892 2026] [security2:error] [pid 27661:tid 27661] [client 45.130.203.129:44783] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.cwbaz.com.maricotippett.com"] [uri "/.git/HEAD"] [unique_id "ajk-TbIxf1I3bVK2_TVP8AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 Saec	2026-06-22 12:30:09 (1 day ago)	Jarvis auto-ban: CF honeypot path /.git/HEAD (4× on saec.me)	Port Scan Web App Attack
Anonymous	2026-06-22 11:34:52 (1 day ago)	45.130.203.129 - - [22/Jun/2026:08:34:47 -0300] "GET /.git/HEAD HTTP/1.1" 403 1810 "-" "Python-urlli ... show more 45.130.203.129 - - [22/Jun/2026:08:34:47 -0300] "GET /.git/HEAD HTTP/1.1" 403 1810 "-" "Python-urllib/3.10" ... show less	Port Scan Hacking SQL Injection Brute-Force Bad Web Bot Exploited Host
🇺🇸 TPI-Abuse	2026-06-22 06:35:39 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 02:35:34.278227 2026] [security2:error] [pid 17611:tid 17626] [client 45.130.203.129:51179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.speaksingnative.jimpepperfest.net"] [uri "/.git/HEAD"] [unique_id "ajjXtlIM7ZcFf4RDcGRN8AAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 20:09:52 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 16:09:44.728014 2026] [security2:error] [pid 6630:tid 6630] [client 45.130.203.129:33129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.inlinesoftware.net"] [uri "/.git/HEAD"] [unique_id "ajhFCHcuUddYHUboOropNQAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 19:41:30 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:41:11.504581 2026] [security2:error] [pid 13776:tid 13776] [client 45.130.203.129:59401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prot.gabosoftware.com"] [uri "/.git/HEAD"] [unique_id "ajg-VwHE_Cy-oNXeNT97cQAAAFg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 17:43:44 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 13:43:40.724898 2026] [security2:error] [pid 25662:tid 25674] [client 45.130.203.129:36681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anointedtour.com.havacubvision.com"] [uri "/.git/HEAD"] [unique_id "ajgizK9doAOLDpqK8IvLBgAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 16:41:14 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 12:41:02.627987 2026] [security2:error] [pid 13183:tid 13183] [client 45.130.203.129:21441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.angelicatrombo.gregorii.com"] [uri "/.git/HEAD"] [unique_id "ajgUHhuwLE6QgSxLIRHRbgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 pltcldvlpr	2026-06-21 03:03:36 (2 days ago)	CMS/framework probe: 45.130.203.129 - - [21/Jun/2026:05:03:35 +0200] "GET /.git/HEAD HTTP/1.1" 301 1 ... show more CMS/framework probe: 45.130.203.129 - - [21/Jun/2026:05:03:35 +0200] "GET /.git/HEAD HTTP/1.1" 301 178 "-" "Python-urllib/3.10" asn=137409 org="GSL Networks Pty LTD" country=EG ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 01:02:32 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 21:02:24.740036 2026] [security2:error] [pid 25312:tid 25312] [client 45.130.203.129:38895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goldenstatealliance.com.theknowledgemaster.com"] [uri "/.git/HEAD"] [unique_id "ajc4IN60pPF8xIAaN3lMYgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 08:51:32 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 04:51:27.412829 2026] [security2:error] [pid 11519:tid 11519] [client 45.130.203.129:36111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.calentadoresdemexico.com.mx"] [uri "/.env"] [unique_id "ajZUj30RykSpYakqH50zRwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 05:17:00 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 01:16:53.673555 2026] [security2:error] [pid 13010:tid 13010] [client 45.130.203.129:60857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hyggewomenscenter.com.spaceritual.net"] [uri "/.git/HEAD"] [unique_id "ajYiRfZtxa0rzpDOW3lBewAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 COMAITE	2026-06-20 02:17:24 (3 days ago)	Suspicious URL access.	Web App Attack
🇬🇧 Axel	2026-06-19 10:35:49 (4 days ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env Server: ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇺🇸 MPL	2026-06-19 09:41:11 (4 days ago)	tcp/80 (6 or more attempts)	Port Scan

Showing 1 to 15 of 387 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.224

🇺🇸 162.216.149.82

🇰🇷 61.76.38.54

🇨🇦 20.151.206.212

🇧🇪 198.235.24.232

🇷🇼 197.243.14.52

🇨🇴 179.32.200.247

🇨🇳 117.79.226.9

🇺🇸 45.8.19.51

🇺🇸 44.110.70.214

🇨🇦 20.63.8.12

🇺🇸 147.185.132.210

🇨🇦 138.197.164.175

🇱🇻 81.30.98.158

🇷🇺 45.150.37.251

🇺🇸 44.71.75.175

🇩🇪 3.125.168.113

🇺🇸 178.130.47.195

🇳🇱 176.65.148.158

🇳🇱 160.119.71.136