This IP address has been reported a total of
297
times from
131 distinct
sources.
45.130.83.96 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Jun 29 22:58:46 www4 WPAudit[3763974]: 45.130.83.96 nelsonbcwelding.com "Mozilla/5.0 (Windows NT 11. ...
show moreJun 29 22:58:46 www4 WPAudit[3763974]: 45.130.83.96 nelsonbcwelding.com "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" admin:nelsonbcwelding! FAIL
Jun 29 22:58:53 www4 WPAudit[3765174]: 45.130.83.96 nelsonbcwelding.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" administrator:nelsonbcwelding! FAIL
Jun 29 22:58:59 www4 WPAudit[3763974]: 45.130.83.96 nelsonbcwelding.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" nelsonbcwelding:nelsonbcwelding! FAIL
Jun 29 22:59:03 www4 WPAudit[3765174]: 45.130.83.96 nelsonbcwelding.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" admin:nelsonbcwelding@123 FAIL
Jun 29 22:59:16 www4 WPAudit[3763974]: 45.130.83.96 nelsonbcwelding.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15
...
show less
2026-06-29T17:25:46.773972-05:00 web wordpress(eagletransvip.com)[373899]: Blocked authentication at ...
show more2026-06-29T17:25:46.773972-05:00 web wordpress(eagletransvip.com)[373899]: Blocked authentication attempt for admin from 45.130.83.96
...
show less
2026-06-29T14:52:39.890059-05:00 web wordpress(eagletransvip.com)[335991]: Blocked authentication at ...
show more2026-06-29T14:52:39.890059-05:00 web wordpress(eagletransvip.com)[335991]: Blocked authentication attempt for admin from 45.130.83.96
...
show less
Web App Attack
Brute-Force
Anonymous
(wordpress) Failed login wp-login.php or xmlrpc.php
WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 45.130.83.96 - - [29/Jun/2026:01:57:56 +0100] PO ...
show moreWP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 45.130.83.96 - - [29/Jun/2026:01:57:56 +0100] POST /wp-login.php HTTP/1.1 200 4455 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15
show less
{"ClientAddr":"45.130.83.96:46011","ClientHost":"45.130.83.96","ClientPort":"46011","ClientUsername" ...
show more{"ClientAddr":"45.130.83.96:46011","ClientHost":"45.130.83.96","ClientPort":"46011","ClientUsername":"-","DownstreamContentSize":12395,"DownstreamStatus":403,"Duration":200867482,"OriginContentSize":12395,"OriginDuration":194323339,"OriginStatus":403,"Overhead":6544143,"RequestAddr":"www.cleveradmin.de","RequestContentSize":121,"RequestCount":1659037,"RequestHost":"www.cleveradmin.de","RequestMethod":"POST","RequestPath":"/wp-login.php","RequestPort":"-","RequestProtocol":"HTTP/1.1","RequestScheme":"https","RetryAttempts":0,"RouterName":"cleveradmin-www-websecure@file","ServiceAddr":"172.16.80.10:80","ServiceName":"cleveradmin-www@file","ServiceURL":"http://172.16.80.10:80","StartLocal":"2026-06-28T16:08:04.846443135+02:00","StartUTC":"2026-06-28T14:08:04.846443135Z","TLSCipher":"TLS_AES_128_GCM_SHA256","TLSVersion":"1.3","entryPointName":"websecure","level":"info","msg":"","time":"2026-06-28T16:08:05+02:00"}
{"ClientAddr":"45.130.83.96:46011","ClientHost":"45.130.83.96","ClientPort":"
...
show less