JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.245.102.71

172.245.102.71 was found in our database!

This IP was reported 251 times. Confidence of Abuse is 67%: ?

67%

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	172-245-102-71-host.colocrossing.com
Domain Name	hostpapa.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.245.102.71

Whois 172.245.102.71

IP Abuse Reports for 172.245.102.71:

This IP address has been reported a total of 251 times from 112 distinct sources. 172.245.102.71 was first reported on August 18th 2024, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 zynex	2026-06-26 08:02:59 (17 hours ago)	URL Probing: /wp-includes/block-bindings/system_core.php	Web App Attack
🇨🇭 4server	2026-06-26 07:10:15 (18 hours ago)	[FriJun2609:10:08.6122282026][security2:error][pid3444647:tid3444883][client172.245.102.71:0]ModSecu ... show more [FriJun2609:10:08.6122282026][security2:error][pid3444647:tid3444883][client172.245.102.71:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\"wp-config\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"annunci-ticino.ch\"][uri\"/wp-config-sample.php\"][unique_id\"aj4l0MBDi_tvGKk24MyBPAAAAQE\"] show less	Hacking Web App Attack
🇩🇪 4server	2026-06-26 01:29:04 (1 day ago)	[FriJun2603:28:58.6635882026][security2:error][pid2383029:tid2383054][client172.245.102.71:0]ModSecu ... show more [FriJun2603:28:58.6635882026][security2:error][pid2383029:tid2383054][client172.245.102.71:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"bno.ch\"][uri\"/xmlrpc.php\"][unique_id\"aj3V2qUNgmgHOJ0oKwVmMgAAAFY\"] show less	Port Scan Brute-Force Web App Attack
🇨🇭 backslash	2026-06-26 00:12:10 (1 day ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 WeekendWeb	2026-06-25 20:18:33 (1 day ago)	Wordpress Vunerability attack	Web App Attack
🇩🇪 rh24	2026-06-25 19:36:25 (1 day ago)	(wordpress) Failed wordpress login from 172.245.102.71 (US/United States/172-245-102-71-host.colocro ... show more (wordpress) Failed wordpress login from 172.245.102.71 (US/United States/172-245-102-71-host.colocrossing.com): (CF_ENABLE) show less	Brute-Force
🇫🇷 dynamix	2026-06-25 10:00:40 (1 day ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-25 06:24:07 (1 day ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇺🇸 EvilTurkey	2026-06-22 16:58:16 (4 days ago)	Web app attack against financial institution website.	Web App Attack Hacking
🇩🇪 botreporter	2026-06-21 01:06:17 (6 days ago)	CMS vulnerability/installation scanning	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-20 22:15:03 (6 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇫🇷 ELYAZ	2026-06-18 07:17:41 (1 week ago)	(y4) Failed scan -byebye- from 172.245.102.71 (US/United States/172-245-102-71-host.colocrossing.com ... show more (y4) Failed scan -byebye- from 172.245.102.71 (US/United States/172-245-102-71-host.colocrossing.com): (CF_ENABLE) show less	Hacking
🇫🇷 tecnicorioja	2026-05-27 22:00:29 (4 weeks ago)	wp-login attack [27/May/2026:19:01:59	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-05-18 07:19:20 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 FeG Deutschland	2026-05-17 07:07:00 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 251 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.56

🇺🇸 2600:1f18:5b75:b803:5dc0:7ad2:cd5c:f046

🇨🇳 221.0.15.111

🇧🇷 205.210.31.241

🇧🇷 205.210.31.240

🇵🇱 166.88.82.44

🇮🇳 115.248.8.65

🇨🇳 110.249.202.161

🇧🇩 103.42.203.47

🇷🇺 95.26.200.249

🇸🇪 20.240.51.74

🇺🇸 216.25.89.127

🇧🇷 205.210.31.229

🇧🇷 205.210.31.215

🇧🇷 205.210.31.208

🇱🇻 188.112.150.160

🇺🇸 162.216.150.61

🇮🇳 157.32.138.190

🇯🇵 149.22.87.50

🇺🇸 147.185.132.75