JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.71.6.200

13.71.6.200 was found in our database!

This IP was reported 182 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇮🇳 India
City	Pune, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.71.6.200

Whois 13.71.6.200

IP Abuse Reports for 13.71.6.200:

This IP address has been reported a total of 182 times from 162 distinct sources. 13.71.6.200 was first reported on June 29th 2026, and the most recent report was 30 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Alfafoxtrot	2026-06-29 22:44:02 (30 minutes ago)	Reason: malware suspicious \| src-ip: 13.71.6.200 \| dport=80 \| Protoc.=TCP \| Inc. 2d: 8	Exploited Host Hacking
🇳🇱 oisecnet	2026-06-29 21:02:19 (2 hours ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-29. 538 requests from this ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-29. 538 requests from this IP. show less	Brute-Force Web App Attack SSH
🇫🇷 Feelautom	2026-06-29 19:35:07 (3 hours ago)	[FeelAutom Auto-Ban] SuspiciousExtension: /gfile.php (Score: 200)	Port Scan
🇺🇸 TPI-Abuse	2026-06-29 19:34:42 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 13.71.6.200 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 13.71.6.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 15:34:38.707435 2026] [security2:error] [pid 4600:tid 4600] [client 13.71.6.200:34802] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "m.closedfortheseason.com"] [uri "/wp-config.php"] [unique_id "akLIzlk5lzAxW-1YhlxuGwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 matatunos	2026-06-29 19:30:14 (3 hours ago)	Honeypot favala.es: 24 peticiones web a rutas de ataque (/wp-login, /.env, etc.) en 24h. Reporte aut ... show more Honeypot favala.es: 24 peticiones web a rutas de ataque (/wp-login, /.env, etc.) en 24h. Reporte automático. show less	Web App Attack Bad Web Bot
🇺🇸 Lee Daniel	2026-06-29 19:29:57 (3 hours ago)	13.71.6.200 - - [29/Jun/2026:15:29:54 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 404 20766 "- ... show more 13.71.6.200 - - [29/Jun/2026:15:29:54 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 404 20766 "-" "-" 13.71.6.200 - - [29/Jun/2026:15:29:55 -0400] "GET /chosen.php HTTP/1.1" 404 20719 "-" "-" 13.71.6.200 - - [29/Jun/2026:15:29:55 -0400] "GET /pp.php HTTP/1.1" 404 20703 "-" "-" 13.71.6.200 - - [29/Jun/2026:15:29:56 -0400] "GET /wp-includes/ID3/rk2.php HTTP/1.1" 404 20768 "-" "-" 13.71.6.200 - - [29/Jun/2026:15:29:57 -0400] "GET /gfile.php HTTP/1.1" 404 20723 "-" "-" ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack
🇺🇸 nasset	2026-06-29 19:29:14 (3 hours ago)	13.71.6.200 - - [29/Jun/2026:12:29:10 -0700] "GET /p.php HTTP/1.1" 403 584 "-" "-" 13.71.6.200 - - [ ... show more 13.71.6.200 - - [29/Jun/2026:12:29:10 -0700] "GET /p.php HTTP/1.1" 403 584 "-" "-" 13.71.6.200 - - [29/Jun/2026:12:29:11 -0700] "GET /Rk41.php HTTP/1.1" 403 584 "-" "-" 13.71.6.200 - - [29/Jun/2026:12:29:12 -0700] "GET /fgd.php HTTP/1.1" 403 584 "-" "-" 13.71.6.200 - - [29/Jun/2026:12:29:13 -0700] "GET /wp-mail.php/wp-includes/admin.php HTTP/1.1" 403 584 "-" "-" 13.71.6.200 - - [29/Jun/2026:12:29:13 -0700] "GET /wp-admin/user/content.php HTTP/1.1" 403 584 "-" "-" ... show less	Bad Web Bot Web App Attack
🇫🇷 Kraften	2026-06-29 19:25:07 (3 hours ago)	Web noscript attack ...	Web Spam Web App Attack
🇯🇵 pixelboost.kr	2026-06-29 19:25:03 (3 hours ago)	13.71.6.200 - - [30/Jun/2026:04:25:01 +0900] "GET /wp-content/plugins/hellopress/wp_filemanager.php ... show more 13.71.6.200 - - [30/Jun/2026:04:25:01 +0900] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 146 "-" "-" 13.71.6.200 - - [30/Jun/2026:04:25:01 +0900] "GET /this_is_a_new_hello_world.php HTTP/1.1" 404 146 "-" "-" ... show less	Bad Web Bot Web App Attack
🇺🇸 WeekendWeb	2026-06-29 19:23:13 (3 hours ago)	Wordpress Vunerability attack	Web App Attack
🇩🇪 Skyrider	2026-06-29 19:22:15 (3 hours ago)	crowdsecurity/http-backdoors-attempts	Web App Attack
Anonymous	2026-06-29 19:19:22 (3 hours ago)	"GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1"	Hacking Web App Attack
🇮🇩 soc-yk	2026-06-29 19:18:10 (3 hours ago)	Type: credential_attack Risk: 100 Events: 305 Evidence: - Repeated authentication attack activity d ... show more Type: credential_attack Risk: 100 Events: 305 Evidence: - Repeated authentication attack activity detected - Credential abuse behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Brute-Force SSH
🇪🇸 Francisco Vallejo	2026-06-29 19:18:08 (3 hours ago)	[Mon Jun 29 21:18:07.471665 2026] [core:info] [pid 251636:tid 127200783214272] [client 13.71.6.200:6 ... show more [Mon Jun 29 21:18:07.471665 2026] [core:info] [pid 251636:tid 127200783214272] [client 13.71.6.200:65453] AH00128: File does not exist: /var/www/franvallejo/wp-content/plugins/hellopress/wp_filemanager.php [Mon Jun 29 21:18:07.722452 2026] [core:info] [pid 251636:tid 127200816785088] [client 13.71.6.200:65453] AH00128: File does not exist: /var/www/franvallejo/this_is_a_new_hello_world.php [Mon Jun 29 21:18:07.973093 2026] [core:info] [pid 251636:tid 127201872524992] [client 13.71.6.200:65453] AH00128: File does not exist: /var/www/franvallejo/txets.php [Mon Jun 29 21:18:08.225597 2026] [core:info] [pid 251636:tid 127201847346880] [client 13.71.6.200:65453] AH00128: File does not exist: /var/www/franvallejo/7logs.php [Mon Jun 29 21:18:08.581219 2026] [core:info] [pid 251636:tid 127200791606976] [client 13.71.6.200:65453] AH00128: File does not exist: /var/www/franvallejo/css/xp.php ... show less	Brute-Force SSH
Anonymous	2026-06-29 19:16:53 (3 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 13.71.6.200 (IN/India/-)	SQL Injection

Showing 1 to 15 of 182 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.198.128.124

🇸🇬 148.66.142.9

🇻🇳 103.78.0.229

🇲🇾 49.124.148.186

🇭🇰 43.132.150.89

🇷🇺 31.173.67.77

🇷🇴 2.57.121.112

🇬🇧 198.244.189.160

🇺🇸 195.184.76.111

🇮🇹 172.253.228.153

🇺🇸 162.216.150.183

🇫🇮 147.185.133.174

🇺🇸 23.94.92.98

🇺🇸 13.223.136.144

🇨🇳 220.189.209.18

🇵🇱 146.59.95.254

🇮🇳 110.225.255.179

🇵🇱 109.205.211.91

🇳🇱 91.92.40.31

🇺🇸 66.132.195.91