JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.13.191.71

45.13.191.71 was found in our database!

This IP was reported 192 times. Confidence of Abuse is 24%: ?

24%

ISP	Pitline Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS42708
Domain Name	pitline.net
Country	🇳🇴 Norway
City	Oslo, Oslo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.13.191.71

Whois 45.13.191.71

IP Abuse Reports for 45.13.191.71:

This IP address has been reported a total of 192 times from 59 distinct sources. 45.13.191.71 was first reported on August 24th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-05-11 06:05:43 (1 month ago)	Too many Status 40X (11)	Brute-Force Web App Attack
Anonymous	2026-05-11 04:33:11 (1 month ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇮🇳 dineshskt4all	2026-05-10 18:06:44 (1 month ago)	[Sun May 10 18:06:41.945551 2026] [proxy_fcgi:error] [pid 692121:tid 129571437405888] [client 45.13. ... show more [Sun May 10 18:06:41.945551 2026] [proxy_fcgi:error] [pid 692121:tid 129571437405888] [client 45.13.191.71:0] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇫🇷 Octopuce	2026-05-04 15:39:30 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/semrush/x.php /wp-content/plugins/hel ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/semrush/x.php /wp-content/plugins/hello-plus/classes/ehp-sarang.php /wp-content/ ... show less	Web App Attack
🇺🇸 nyt	2026-05-04 14:14:52 (1 month ago)	Web Shell Upload	Hacking Web App Attack
🇨🇭 zynex	2026-05-03 19:23:58 (1 month ago)	URL Probing: /wp-content/themes/twentytwentyfive/patterns/template-singl-portfolio.php	Web App Attack
🇲🇹 Malta	2026-04-29 15:04:02 (1 month ago)	45.13.191.71 - - [29/Apr/2026:17:04:02 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 45.13.191.71 - - [29/Apr/2026:17:04:02 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇳🇱 Site.eu	2026-04-17 20:53:47 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 Penny Packer	2026-03-13 01:09:40 (3 months ago)	Fail2Ban apache-tripwires	Web App Attack
🇺🇸 TPI-Abuse	2026-03-12 08:30:43 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 45.13.191.71 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 45.13.191.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 04:30:35.436950 2026] [security2:error] [pid 31422:tid 31422] [client 45.13.191.71:25431] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|secureonebank.net\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "secureonebank.net"] [uri "/backup/wallet.dat"] [unique_id "abJ5qy0l8yTRFagj-I3kugAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Valhalla	2026-02-24 16:05:17 (3 months ago)	/backups/index.zip	Hacking Web App Attack
🇺🇦 URAN Publishing Service	2026-02-12 10:44:11 (4 months ago)	45.13.191.71 - - [12/Feb/2026:12:44:10 +0200] "GET //wp-content/plugins/pwnd-2/pwnd.php HTTP/1.1" 40 ... show more 45.13.191.71 - - [12/Feb/2026:12:44:10 +0200] "GET //wp-content/plugins/pwnd-2/pwnd.php HTTP/1.1" 404 280 "-" "Go-http-client/1.1" 45.13.191.71 - - [12/Feb/2026:12:44:10 +0200] "GET //wp-content/plugins/wpforms/class-wpforms-update.php HTTP/1.1" 404 280 "-" "Go-http-client/1.1" ... show less	Web App Attack
Anonymous	2026-01-31 04:52:57 (4 months ago)	"GET //wp-admin/images/index.php HTTP/1.1"	Hacking Web App Attack
🇨🇭 backslash	2026-01-29 21:45:08 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇩🇪 igerman	2026-01-29 00:54:33 (4 months ago)	caddy probes: [wordpress] GET /wp-includes/block-bindings/ -> 403 [wordpress] GET /wp-content/ -> 40 ... show more caddy probes: [wordpress] GET /wp-includes/block-bindings/ -> 403 [wordpress] GET /wp-content/ -> 403 [wordpress] GET /wp-includes/widgets/ -> 403 [wordpress] GET /wp-admin/network/ -> 403 [wordpress] GET /wp-admin/css/colors/sunrise/ -> 403 [wordpress] GET /wp-includes/theme-compat/ -> 403 [wordpress] GET /wp-content/plugins/ioxi/ioxi/ -> 403 [wordpress] GET /wp-includes/id3/ -> 403 [wordpress] GET /wp-includes/blocks/query/ -> 403 [wordpress] GET /wp-includes/js/tinymce/langs/ -> 403 [wordpress] GET /wp-admin/css/colors/ectoplasm/ -> 403 [wordpress] GET /wp-includes/blocks/group/ -> 403 [web] GET /blog/ -> 403 [wordpress] GET /wp-content/themes/twentytwentyfour/ -> 403 [wordpress] GET /wp-includes/interactivity-api/ -> 403 [wordpress] GET /wp-includes/wp-class.php/wp-content/themes/travelscape/ -> 403 [wordpress] GET /wp-content/upgrade/ -> 403 [wordpress] GET /wp-admin/js/dist/ -> 403 show less	Web App Attack

Showing 1 to 15 of 192 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.191.157.64

🇺🇸 23.128.248.174

🇨🇳 218.78.131.154

🇻🇪 190.120.254.5

🇦🇷 181.167.106.40

🇮🇩 103.164.57.37

🇵🇰 103.134.0.7

🇩🇪 69.5.169.94

🇨🇱 64.137.37.15

🇨🇳 39.105.217.27

🇺🇸 34.125.244.43

🇫🇮 34.88.170.27

🇺🇸 17.132.72.4

🇷🇴 2.57.122.177

🇭🇺 194.180.16.42

🇺🇸 165.154.163.110

🇺🇸 147.182.241.81

🇺🇸 134.33.68.249

🇻🇳 103.75.183.232

🇭🇰 101.36.111.38