JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 49.13.171.11

49.13.171.11 was found in our database!

This IP was reported 502 times. Confidence of Abuse is 100%: ?

100%

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	srv1.denm.online
Domain Name	hetzner.com
Country	🇩🇪 Germany
City	Nurnberg, Bavaria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 49.13.171.11

Whois 49.13.171.11

IP Abuse Reports for 49.13.171.11:

This IP address has been reported a total of 502 times from 151 distinct sources. 49.13.171.11 was first reported on March 29th 2025, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 AlexEventfahrtenIPDB	2026-05-14 12:38:35 (2 weeks ago)	[Thu May 14 14:38:33.807295 2026] [authz_core:error] [pid 430324:tid 430324] [client 49.13.171.11:55 ... show more [Thu May 14 14:38:33.807295 2026] [authz_core:error] [pid 430324:tid 430324] [client 49.13.171.11:55780] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php [Thu May 14 14:38:34.817058 2026] [authz_core:error] [pid 424940:tid 424940] [client 49.13.171.11:55788] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://powerstar.spdns.de/wp-login.php ... show less	Brute-Force Web App Attack
🇺🇸 lostswordfish.com	2026-05-14 10:46:04 (2 weeks ago)	Wordfence waf block on jestrellafoundation	Web App Attack
🇫🇷 LRob.fr	2026-05-14 10:45:02 (2 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇬🇧 poundawebsiteltd	2026-05-14 10:34:58 (2 weeks ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 49.13.171.11 - - [14/May/2026:11:34:51 +0100] PO ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 49.13.171.11 - - [14/May/2026:11:34:51 +0100] POST /wp-login.php HTTP/2.0 200 3537 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 show less	Web App Attack
🇳🇱 Site.eu	2026-05-14 09:44:37 (3 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 BlueWire Hosting	2026-05-14 09:35:22 (3 weeks ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇩🇪 bsoft.de	2026-05-14 09:32:19 (3 weeks ago)	49.13.171.11 - - [14/May/2026:08:03:27 +0200] "GET /wp-login.php HTTP/1.1" 404 58034 "-" "Mozilla/5. ... show more 49.13.171.11 - - [14/May/2026:08:03:27 +0200] "GET /wp-login.php HTTP/1.1" 404 58034 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 49.13.171.11 - - [14/May/2026:10:13:25 +0200] "GET /wp-login.php HTTP/1.1" 404 75120 "https://bolte.de/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 49.13.171.11 - - [14/May/2026:11:32:19 +0200] "GET /wp-login.php HTTP/1.1" 404 74933 "https://bolte.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Web App Attack
🇺🇸 jormaster3k	2026-05-14 09:27:17 (3 weeks ago)	Attack against WordPress	Web App Attack
🇫🇷 dynamix	2026-05-14 08:58:27 (3 weeks ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-14 08:35:53 (3 weeks ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 49.13.171.11 (DE/Germany/srv1.denm.online): 1 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 49.13.171.11 (DE/Germany/srv1.denm.online): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-05-14 08:14:26 (3 weeks ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 49.13.171.11 (DE/Germany/srv1.denm.online): 1 ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 49.13.171.11 (DE/Germany/srv1.denm.online): 1 in the last 3600 secs (0-195) show less	Hacking
🇲🇹 Malta	2026-05-14 08:10:21 (3 weeks ago)	49.13.171.11 - - [14/May/2026:10:10:21 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 49.13.171.11 - - [14/May/2026:10:10:21 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇬🇧 consul.to	2026-05-14 08:04:19 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 juutis	2026-05-14 05:44:54 (3 weeks ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇺🇸 TAY	2026-05-14 04:21:20 (3 weeks ago)	49.13.171.11 - - [14/May/2026:12:15:51 +0800] "POST /wp-login.php HTTP/1.1" 200 2585 "https://batuke ... show more 49.13.171.11 - - [14/May/2026:12:15:51 +0800] "POST /wp-login.php HTTP/1.1" 200 2585 "https://batukeras.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 49.13.171.11 - - [14/May/2026:12:20:56 +0800] "POST /wp-login.php HTTP/1.1" 200 2982 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 49.13.171.11 - - [14/May/2026:12:21:20 +0800] "POST /wp-login.php HTTP/1.1" 200 2982 "https://autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force

Showing 376 to 390 of 502 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.66

🇭🇰 40.83.92.30

🇨🇳 14.103.115.237

🇺🇸 216.25.89.132

🇧🇷 206.42.8.243

🇪🇨 186.4.240.226

🇺🇸 156.232.13.218

🇻🇳 103.167.89.222

🇺🇦 94.231.189.191

🇺🇸 74.220.219.243

🇳🇱 45.148.10.147

🇭🇰 45.142.154.45

🇺🇸 23.240.129.248

🇺🇸 23.211.124.205

🇮🇳 152.59.160.37

🇺🇸 104.194.10.248

🇸🇪 90.231.51.54

🇮🇳 38.254.178.79

🇬🇧 35.203.210.123

🇮🇳 183.82.98.154