JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.13.237.121

45.13.237.121 was found in our database!

This IP was reported 57 times. Confidence of Abuse is 83%: ?

83%

ISP	Datalix
Usage Type	Data Center/Web Hosting/Transit
ASN	AS58087
Hostname(s)	121.237.13.45.in-addr.arpa
Domain Name	datalix.de
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.13.237.121

Whois 45.13.237.121

IP Abuse Reports for 45.13.237.121:

This IP address has been reported a total of 57 times from 26 distinct sources. 45.13.237.121 was first reported on April 11th 2023, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-12 04:47:12 (5 days ago)	Try to access /xmlrpc.php	Web App Attack
Anonymous	2026-06-10 04:18:03 (1 week ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 xmission.com	2026-06-09 18:52:19 (1 week ago)	Blocked by UFW (TCP on 40444) Source port: 43898 TTL: 50 Packet length: 60 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 40444) Source port: 43898 TTL: 50 Packet length: 60 TOS: 0x00 This report (for 45.13.237.121) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 psauxit	2026-06-09 13:02:11 (1 week ago)	Fail2Ban - NGINX heavily bad-bot, possible vulnerability scanning and excessive crawling/scraping	Bad Web Bot Web App Attack Hacking Web Spam
🇺🇸 xmission.com	2026-06-09 06:35:59 (1 week ago)	Blocked by UFW (TCP on 40444) Source port: 34700 TTL: 50 Packet length: 60 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 40444) Source port: 34700 TTL: 50 Packet length: 60 TOS: 0x00 This report (for 45.13.237.121) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-07 14:06:12 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 45.13.237.121 (121.237.13.45.in-addr.arpa): 1 i ... show more (mod_security) mod_security (id:210730) triggered by 45.13.237.121 (121.237.13.45.in-addr.arpa): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 10:06:04.551466 2026] [security2:error] [pid 5989:tid 5989] [client 45.13.237.121:48236] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|pa-ksa.com\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pa-ksa.com"] [uri "/docs/Jzcfm.dat"] [unique_id "aiV6zNcwXgRFILu_-okRLgAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-07 11:08:01 (1 week ago)	2026-06-07T14:36:49.417880+03:30 digitalogic sshd-session[887644]: pam_unix(sshd:auth): authenticati ... show more 2026-06-07T14:36:49.417880+03:30 digitalogic sshd-session[887644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.13.237.121 2026-06-07T14:36:51.829755+03:30 digitalogic sshd-session[887644]: Failed password for invalid user 1 from 45.13.237.121 port 32784 ssh2 2026-06-07T14:36:54.114664+03:30 digitalogic sshd-session[887644]: Connection closed by invalid user 1 45.13.237.121 port 32784 [preauth] ... show less	Brute-Force SSH
Anonymous	2026-06-07 04:32:59 (1 week ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇩🇪 ger-stg-sifi1	2026-06-07 03:08:04 (1 week ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
Anonymous	2026-06-06 19:04:09 (1 week ago)	2026-06-06T22:06:10.563355+03:30 digitalogic sshd-session[834556]: Failed password for root from 45. ... show more 2026-06-06T22:06:10.563355+03:30 digitalogic sshd-session[834556]: Failed password for root from 45.13.237.121 port 38578 ssh2 2026-06-06T22:06:23.276682+03:30 digitalogic sshd-session[834556]: Connection closed by authenticating user root 45.13.237.121 port 38578 [preauth] 2026-06-06T22:34:03.954518+03:30 digitalogic sshd-session[835782]: Connection closed by 45.13.237.121 port 42780 [preauth] ... show less	Brute-Force SSH
🇯🇵 mkaraki	2026-06-06 18:40:05 (1 week ago)	1780771204 # Service_probe # SIGNATURE_SEND # source_ip:45.13.237.121 # dst_port:7443 ...	Port Scan
Anonymous	2026-06-06 15:47:36 (1 week ago)	2026-06-06T19:17:20.883272+03:30 digitalogic sshd-session[826208]: pam_unix(sshd:auth): authenticati ... show more 2026-06-06T19:17:20.883272+03:30 digitalogic sshd-session[826208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.13.237.121 2026-06-06T19:17:22.941543+03:30 digitalogic sshd-session[826208]: Failed password for invalid user 1 from 45.13.237.121 port 58826 ssh2 2026-06-06T19:17:27.999981+03:30 digitalogic sshd-session[826208]: Connection closed by invalid user 1 45.13.237.121 port 58826 [preauth] ... show less	Brute-Force SSH
🇩🇪 netclix.gr	2026-06-06 14:53:58 (1 week ago)	(bot_qv) Bot Scraping QuickView 45.13.237.121 (DE/Germany/121.237.13.45.in-addr.arpa): 1 in the last ... show more (bot_qv) Bot Scraping QuickView 45.13.237.121 (DE/Germany/121.237.13.45.in-addr.arpa): 1 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 45.13.237.121 - - [06/Jun/2026:17:53:56 +0300] "GET /index.php?dispatch=products.quick_view&product_id=16931&prev_url=index.php%3Fdispatch%3Dcategories.view%26category_id%3D296&n_items=17745%2C17744%2C17739%2C17612%2C17610%2C17609%2C17135%2C16931%2C16391%2C16390%2C16389%2C16387 HTTP/1.1" 302 5 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com)" show less	Port Scan
🇺🇸 xmission.com	2026-06-06 11:00:39 (1 week ago)	Blocked by UFW (TCP on 61367) Source port: 39540 TTL: 50 Packet length: 60 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 61367) Source port: 39540 TTL: 50 Packet length: 60 TOS: 0x00 This report (for 45.13.237.121) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇿 Countryman	2026-06-06 00:10:01 (1 week ago)	repeated unauthorized VPN login attempt, user sweep	VPN IP Hacking Brute-Force

Showing 1 to 15 of 57 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.40.5

🇱🇹 81.30.98.158

🇳🇱 213.177.179.80

🇳🇱 204.76.203.219

🇲🇾 203.121.40.210

🇬🇧 193.163.125.151

🇧🇷 190.89.136.180

🇺🇸 172.234.21.101

🇺🇸 136.111.199.145

🇨🇳 112.86.225.60

🇳🇱 93.123.109.114

🇺🇸 74.82.47.31

🇰🇷 211.223.107.86

🇭🇰 198.176.54.61

🇧🇷 181.218.9.86

🇧🇷 45.232.133.64

🇺🇬 196.0.107.34

🇮🇳 182.95.222.178

🇬🇧 134.65.61.251

🇨🇳 122.193.74.205