JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.130.203.203

45.130.203.203 was found in our database!

This IP was reported 274 times. Confidence of Abuse is 61%: ?

61%

ISP	Legaco Networks B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	legaconetworks.nl
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.130.203.203

Whois 45.130.203.203

IP Abuse Reports for 45.130.203.203:

This IP address has been reported a total of 274 times from 89 distinct sources. 45.130.203.203 was first reported on February 13th 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 23:08:41 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:08:36.263311 2026] [security2:error] [pid 17114:tid 17114] [client 45.130.203.203:38409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.charityholidaycards.com"] [uri "/.env"] [unique_id "aj209GjjiVKFLiZrSTULuAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-25 16:52:49 (8 hours ago)	45.130.203.203 - - [26/Jun/2026:00:52:48 +0800] "GET /.git/HEAD HTTP/1.1" 404 237544 "-" "Python-url ... show more 45.130.203.203 - - [26/Jun/2026:00:52:48 +0800] "GET /.git/HEAD HTTP/1.1" 404 237544 "-" "Python-urllib/3.10" ... show less	Bad Web Bot Web App Attack
🇫🇷 mrcrassi	2026-06-25 16:35:02 (8 hours ago)	Triggered Cloudflare WAF (bic) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint ... show more Triggered Cloudflare WAF (bic) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/HEAD UA: Python-urllib/3.10 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-25 09:07:49 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 05:07:44.842162 2026] [security2:error] [pid 6167:tid 6167] [client 45.130.203.203:63769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drschneedle.org.theholographicseed.com"] [uri "/.git/HEAD"] [unique_id "ajzv4ME4O9JkyEYyyrNx-wAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 05:55:17 (19 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 01:55:13.267815 2026] [security2:error] [pid 11780:tid 11780] [client 45.130.203.203:40443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "randallbrooks.com"] [uri "/.git/HEAD"] [unique_id "ajzCwQ75gAqkEU3xsg3QAAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 02:18:48 (22 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 22:18:44.680787 2026] [security2:error] [pid 3296:tid 3296] [client 45.130.203.203:22121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.caremedicalbillinginc.com"] [uri "/.env"] [unique_id "ajyQBIMYSNw5C9M2Zm8NdwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 OptimusGO	2026-06-25 01:59:18 (23 hours ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-06-25 02:59:18 UTC Log evidence: 45.130.203.203 - - [25/Jun/2026:02:59:18 +0100] "GET /.git/HEAD HTTP/1.1" 404 146 "-" "Python-urllib/3.10" 06/25/2026-02:59:18.328905 [wDrop] [] [1:7000910:1] FINSERV CRITICAL: Git Repository Access [] [Classification: Web Application Attack] [Priority: 1] {TCP} 45.130.203.203:23053 -> 185.127.18.66:80 06/25/2026-02:59:18.328905 [] [1:1000112:1] SECURITY CRITICAL: Git Config File Access Attempt [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 45.130.203.203:23053 -> 185.127.18.66:80 show less	Port Scan Brute-Force
🇺🇸 TPI-Abuse	2026-06-25 01:18:00 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 21:17:55.672578 2026] [security2:error] [pid 30074:tid 30074] [client 45.130.203.203:55509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.comicpreservation.com"] [uri "/.env"] [unique_id "ajyBw5Q8pKU7THi_gpwguwAAAE8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 23:37:35 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:37:27.642760 2026] [security2:error] [pid 7191:tid 7191] [client 45.130.203.203:59071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jacobunderwoodmusic.com"] [uri "/.git/HEAD"] [unique_id "ajxqNzopwLo3qiMU7mD_XQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 08:53:47 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:53:40.280066 2026] [security2:error] [pid 12085:tid 12085] [client 45.130.203.203:58787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.everpickon.com"] [uri "/.env"] [unique_id "ajpJlJwQrUmKEQSa1B87KQAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 05:27:23 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 01:27:15.185157 2026] [security2:error] [pid 23798:tid 23798] [client 45.130.203.203:42005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jirafx.aktkaro.com"] [uri "/.git/HEAD"] [unique_id "ajDes9o_CRJtGzdgrmKJNwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 02:58:45 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 22:58:40.375710 2026] [security2:error] [pid 24296:tid 24296] [client 45.130.203.203:46957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.eaglejames.disio.com"] [uri "/.git/HEAD"] [unique_id "ajC74A25xaxGXo1lHBZPLwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Charlesiv	2026-06-16 02:02:41 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 137409 (GSL Networks Pty ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 137409 (GSL Networks Pty LTD) Protocol: HTTP/1.1 (GET method) Endpoint: /.git/HEAD Timestamp: 2026-06-16T01:04:23Z Ray ID: a0c5e6724f075d5b UA: Python-urllib/3.10 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-16 00:35:18 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 20:35:11.409875 2026] [security2:error] [pid 18589:tid 18706] [client 45.130.203.203:29125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.aliqshacommoditiescorporation.com.aliqsha.com"] [uri "/.git/HEAD"] [unique_id "ajCaP9svSr-YSn1wFrud-wAAAEM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 08:03:09 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 45.130.203.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:03:05.512915 2026] [security2:error] [pid 9687:tid 9687] [client 45.130.203.203:26943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.seskalee.com.sfsdesignsproductions.com"] [uri "/.git/HEAD"] [unique_id "ai-xuexOyT3cdws1DSiyigAAABs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 274 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.15.10.179

🇪🇨 181.188.237.220

🇺🇸 172.191.239.155

🇺🇸 172.69.23.11

🇱🇹 141.98.10.140

🇨🇳 117.172.221.133

🇺🇸 104.22.20.85

🇺🇸 104.22.20.84

🇺🇸 64.62.197.195

🇰🇷 47.80.29.108

🇨🇳 36.22.242.255

🇺🇸 35.236.251.185

🇹🇼 221.120.38.97

🇺🇸 208.84.101.146

🇺🇸 162.158.166.212

🇦🇺 121.45.188.229

🇰🇷 106.96.6.73

🇺🇸 104.22.17.99

🇺🇸 104.22.17.98

🇮🇩 103.182.192.6