This IP address has been reported a total of
78
times from
71 distinct
sources.
13.75.1.139 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Triggered Cloudflare WAF (firewallCustom) from HK.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show moreTriggered Cloudflare WAF (firewallCustom) from HK.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /X7ROOT.PHP
UA: Empty string
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Automated: 15 requests with error status in 120s window from 13.75.1.139.
Evidence: /yindu.php:301,/ ...
show moreAutomated: 15 requests with error status in 120s window from 13.75.1.139.
Evidence: /yindu.php:301,/meta.php:404,/meta.php:301,/ww.php:404,/ww.php:301,/wp-logs.php:404,/wp-logs.php:301,/wp-logins.php:404,/wp-logins.php:301,/wp-check.php:404,/wp-check.php:301,/this_is_a_new_hello_world.php:404,/this_is_a_new_hello_world.php:301,/wp-content/plugins/hellopress/wp_filemanager.php:404,/wp-content/plugins/hellopress/wp_filemanager.php:301
show less
[TueJul0710:18:35.2089832026][security2:error][pid3135598:tid3136020][client13.75.1.139:0]ModSecurit ...
show more[TueJul0710:18:35.2089832026][security2:error][pid3135598:tid3136020][client13.75.1.139:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\"wp-config\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"webdisk.whatsdecor.ch\"][uri\"/wp-configer.php\"][unique_id\"aky2W2Li0-qx5HcOgT0OBQAAAFY\"]
show less