JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.203.138

45.130.203.138 was found in our database!

This IP was reported 348 times. Confidence of Abuse is 76%: ?

76%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.203.138

Whois 45.130.203.138

IP Abuse Reports for 45.130.203.138:

This IP address has been reported a total of 348 times from 108 distinct sources. 45.130.203.138 was first reported on April 16th 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 as211431.net	2026-06-19 00:09:02 (1 hour ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.env UA: Python-urllib/3.10 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 poundawebsiteltd	2026-06-18 05:36:19 (19 hours ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 45.130.203.138 - - [18/Jun/2026:0 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 45.130.203.138 - - [18/Jun/2026:06:36:17 +0100] GET /.git/HEAD HTTP/1.1 403 177 - Python-urllib/3.10 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 02:22:55 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 22:22:47.437095 2026] [security2:error] [pid 30800:tid 30800] [client 45.130.203.138:22553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.roguetechtalks.ficklepassionproductions.com"] [uri "/.git/HEAD"] [unique_id "ajNWd2A7OVOquQl9vBmY3gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 22:46:53 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 18:46:44.412299 2026] [security2:error] [pid 11468:tid 11468] [client 45.130.203.138:47509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brainstormer.visionremota.info"] [uri "/.git/HEAD"] [unique_id "ajMj1LsKAEgAm87VfoS8gQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 OceanTreasure	2026-06-17 06:25:05 (1 day ago)	tcp/80; Git HEAD reference exposure attempt: "GET /.git/HEAD" @ 2026-06-17T06:20:38Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 05:42:02 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 01:41:56.760748 2026] [security2:error] [pid 26143:tid 26170] [client 45.130.203.138:40245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.com"] [uri "/.git/HEAD"] [unique_id "ajIzpAxaeJY4C88XU7PBqAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 00:51:16 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 20:51:12.142966 2026] [security2:error] [pid 20580:tid 20580] [client 45.130.203.138:46111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.4940brooklinedr.com.13waggoners.com"] [uri "/.git/HEAD"] [unique_id "ajHvgOZn5rCUENlhQaFW-gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2026-06-10 17:54:26 (1 week ago)	/wp-admin/maint/flex.php	Web App Attack
🇫🇷 Octopuce	2026-06-10 12:28:05 (1 week ago)	Aggressive web search of vulnerable pages: /wp-head.php /vendor/phpunit/phpunit/src/Util/PHP/admin-f ... show more Aggressive web search of vulnerable pages: /wp-head.php /vendor/phpunit/phpunit/src/Util/PHP/admin-footer.php /wp-content/upgrade/wp-conflg.php ... show less	Web App Attack
🇺🇸 blizzard	2026-06-08 11:06:10 (1 week ago)	Unauthorized HTTP/1.1 GET /.git/HEAD blocked by Browser Integrity Check: (ASN: 137409) (Network: GSL ... show more Unauthorized HTTP/1.1 GET /.git/HEAD blocked by Browser Integrity Check: (ASN: 137409) (Network: GSL Networks Pty LTD) (Method: GET) (Path: /.git/HEAD) (Query: ) (User Agent: Python-urllib/3.10) show less	Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇫🇮 mnazibo	2026-06-07 04:00:10 (1 week ago)	Date: Jun 07 06:46:12 2026 EAT \| Reported IP: 45.130.203.138 mod_security \| id: 930130 949110 \| DE/u ... show more Date: Jun 07 06:46:12 2026 EAT \| Reported IP: 45.130.203.138 mod_security \| id: 930130 949110 \| DE/usernameab.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5) show less	SQL Injection Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-06-07 03:05:43 (1 week ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇫🇷 geot	2026-05-24 12:52:54 (3 weeks ago)	GET /.git/HEAD HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 09:43:35 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 05:43:31.035044 2026] [security2:error] [pid 15247:tid 15247] [client 45.130.203.138:33893] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nmposters.vabq.com"] [uri "/.git/HEAD"] [unique_id "ahLIQ4VlolLXoST5wWSLpgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-23 11:10:54 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 07:10:51.255432 2026] [security2:error] [pid 25710:tid 25710] [client 45.130.203.138:46181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "capitalcitysoul.com.calvaryshreveport.org"] [uri "/.git/HEAD"] [unique_id "ahGLO4LYn79yW-u-y_pzUQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 348 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.68

🇺🇸 162.216.149.232

🇺🇸 104.194.10.248

🇷🇺 94.180.250.11

🇨🇱 64.137.121.145

🇩🇪 8.211.47.177

🇺🇸 2600:382:dd07:70ba:d5ba:fba8:603c:5158

🇨🇳 223.76.158.107

🇺🇸 216.164.107.14

🇧🇷 206.42.21.38

🇨🇱 201.187.174.221

🇳🇱 195.178.110.30

🇦🇱 188.93.112.20

🇺🇸 162.216.149.15

🇺🇸 157.245.222.108

🇩🇿 154.242.34.121

🇺🇸 149.36.14.154

🇺🇸 147.185.132.223

🇺🇸 147.185.132.163

🇺🇸 147.185.132.19