JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.203.136

45.130.203.136 was found in our database!

This IP was reported 363 times. Confidence of Abuse is 85%: ?

85%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.203.136

Whois 45.130.203.136

IP Abuse Reports for 45.130.203.136:

This IP address has been reported a total of 363 times from 123 distinct sources. 45.130.203.136 was first reported on August 29th 2023, and the most recent report was 53 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 as211431.net	2026-06-24 21:45:59 (53 minutes ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/HEAD UA: Python-urllib/3.10 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-24 00:16:47 (22 hours ago)	Automatically blocked after 1 security event. Observed sensitive configuration-file probes. Source: ... show more Automatically blocked after 1 security event. Observed sensitive configuration-file probes. Source: Cloudflare security controls. show less	Hacking Web App Attack
🇱🇻 garmtech.com	2026-06-22 14:50:15 (2 days ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇧🇪 Saec	2026-06-22 12:30:19 (2 days ago)	Jarvis auto-ban: CF honeypot path /.git/HEAD (2× on saec.me)	Port Scan Web App Attack
🇺🇸 MPL	2026-06-22 09:08:09 (2 days ago)	tcp/80 (6 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2026-06-22 03:53:20 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 23:53:03.373309 2026] [security2:error] [pid 5105:tid 5114] [client 45.130.203.136:58057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.piazza9.com"] [uri "/.git/HEAD"] [unique_id "ajixn2lYEteH-Na0wczzTwAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 19:41:34 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:41:11.214493 2026] [security2:error] [pid 13753:tid 13753] [client 45.130.203.136:40509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "copa.gabosoftware.com"] [uri "/.git/HEAD"] [unique_id "ajg-VxDsLJDz6gybgHy8hAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 19:02:18 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:02:10.953537 2026] [security2:error] [pid 1282:tid 1282] [client 45.130.203.136:32063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.cruisevacationtickets.com"] [uri "/.git/HEAD"] [unique_id "ajg1Mu-kigQ0SWSpEIVldwAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 17:41:09 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 13:41:02.769794 2026] [security2:error] [pid 24305:tid 24305] [client 45.130.203.136:26183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.abneyfoundation.org"] [uri "/.git/HEAD"] [unique_id "ajgiLge_P1_AtLEZj-SPfAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Axel	2026-06-20 23:26:02 (3 days ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/HEAD Se ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.git/HEAD Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇫🇷 masterguru	2026-06-20 09:33:27 (4 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.130.203.136 (EG/Egypt/-): 1 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 45.130.203.136 (EG/Egypt/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-19 20:34:26 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 16:34:21.685555 2026] [security2:error] [pid 31178:tid 31178] [client 45.130.203.136:39879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.danasedge.cain2016.org"] [uri "/.env"] [unique_id "ajWnzdEV8eiOtfMm9-KovwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇭🇺 bcsaba	2026-06-19 13:07:02 (5 days ago)	Suricata: Alert - ET INFO Request to Hidden Environment File - Inbound	Web App Attack
🇫🇮 as211431.net	2026-06-19 00:09:18 (5 days ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.env UA: Python-urllib/3.10 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 OceanTreasure	2026-06-18 02:35:16 (6 days ago)	tcp/80; Git HEAD reference exposure attempt: "GET /.git/HEAD" @ 2026-06-18T02:26:55Z [proxy]	Web App Attack

Showing 1 to 15 of 363 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 139.199.14.186

🇷🇺 83.239.0.202

🇬🇧 35.203.211.132

🇰🇷 211.106.133.202

🇹🇼 198.235.24.113

🇧🇷 179.51.153.37

🇺🇸 162.216.150.97

🇺🇸 148.153.193.52

🇫🇮 147.185.133.178

🇧🇷 45.205.1.244

🇨🇳 39.163.155.150

🇵🇭 210.5.117.238

🇺🇸 193.56.116.237

🇺🇸 162.216.150.57

🇺🇸 107.180.88.176

🇮🇩 103.131.61.163

🇨🇳 58.212.237.11

🇬🇧 18.175.53.202

🇺🇸 2607:f8b0:400e:c06::123

🇦🇷 186.122.177.140