JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.198.113.101

139.198.113.101 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	Yunify Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS134366
Domain Name	yunify.com
Country	🇭🇰 Hong Kong
City	Tung Chung, Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.198.113.101

Whois 139.198.113.101

IP Abuse Reports for 139.198.113.101:

This IP address has been reported a total of 36 times from 15 distinct sources. 139.198.113.101 was first reported on September 15th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 PulseServers	2024-11-03 09:24:26 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISCA2 ... show less	DDoS Attack Exploited Host
🇺🇸 PulseServers	2024-11-03 09:09:02 (1 year ago)	Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com ... show more Malicious Web Traffic - Exploit probing, request floods, etc. on a server hosted by PulseServers.com - ISUS2 ... show less	DDoS Attack Exploited Host
🇩🇪 Packets-Decreaser.NET	2024-10-31 21:45:13 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 FeG Deutschland	2024-10-25 12:07:02 (1 year ago)	Looking for CMS/PHP/SQL vulnerablilities - 13	Exploited Host Web App Attack
🇦🇺 MAGIC	2024-10-24 18:03:55 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2024-10-19 18:20:46 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 19 14:20:37.635815 2024] [security2:error] [pid 17101:tid 17101] [client 139.198.113.101:56658] [client 139.198.113.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 139.198.113.101 (+1 hits since last alert)\|gracebaptisthartsville.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gracebaptisthartsville.com"] [uri "/xmlrpc.php"] [unique_id "ZxP4dRbKloeQy_43YOEJeAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2024-10-17 00:01:19 (1 year ago)	139.198.113.101 - - [17/Oct/2024:02:01:19 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 139.198.113.101 - - [17/Oct/2024:02:01:19 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-10-16 07:30:18 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 16 03:30:11.473016 2024] [security2:error] [pid 25448:tid 25448] [client 139.198.113.101:39026] [client 139.198.113.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 139.198.113.101 (+1 hits since last alert)\|www.pcga.golf\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.pcga.golf"] [uri "/xmlrpc.php"] [unique_id "Zw9rg3uNmaIYDvoAxe3KIwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-14 06:08:37 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 14 02:08:29.568867 2024] [security2:error] [pid 25821:tid 25821] [client 139.198.113.101:43042] [client 139.198.113.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 139.198.113.101 (+1 hits since last alert)\|www.fetchamreadingroom.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.fetchamreadingroom.org"] [uri "/xmlrpc.php"] [unique_id "Zwy1XbAjQiOZwMSIkOe8YQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2024-10-13 23:29:59 (1 year ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2024-10-05 01:13:41 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 04 21:13:33.539857 2024] [security2:error] [pid 9061:tid 9083] [client 139.198.113.101:36826] [client 139.198.113.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 139.198.113.101 (+1 hits since last alert)\|www.honorac.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.honorac.com"] [uri "/xmlrpc.php"] [unique_id "ZwCSvQDxE9GwGyG1vYYcLwAAAVQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-04 19:26:02 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 04 15:25:54.526260 2024] [security2:error] [pid 3187:tid 3187] [client 139.198.113.101:35150] [client 139.198.113.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 139.198.113.101 (+1 hits since last alert)\|zoesaadeh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "zoesaadeh.com"] [uri "/xmlrpc.php"] [unique_id "ZwBBQrNJ8M4auP5jFlNzcAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Ba-Yu	2024-10-03 08:53:06 (1 year ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
🇲🇹 Malta	2024-10-03 07:31:01 (1 year ago)	139.198.113.101 - - [03/Oct/2024:09:31:01 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linu ... show more 139.198.113.101 - - [03/Oct/2024:09:31:01 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6613.138 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-10-03 02:21:49 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 139.198.113.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 02 22:21:44.814709 2024] [security2:error] [pid 28193:tid 28193] [client 139.198.113.101:47144] [client 139.198.113.101] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 139.198.113.101 (+1 hits since last alert)\|www.calvarycavaliers.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.calvarycavaliers.org"] [uri "/xmlrpc.php"] [unique_id "Zv3_uKevLBrKfa5hBJq26gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 185.5.249.185

🇧🇷 138.185.5.154

🇰🇷 112.216.129.27

🇺🇸 3.130.168.2

🇧🇷 205.210.31.198

🇺🇸 192.3.81.187

🇸🇬 148.72.207.188

🇸🇬 114.119.155.42

🇺🇸 108.88.187.80

🇨🇿 46.135.109.64

🇺🇸 45.3.50.174

🇺🇿 5.182.26.69

🇺🇸 168.100.149.137

🇺🇸 157.230.136.54

🇵🇭 154.18.197.35

🇸🇦 142.154.106.44

🇩🇪 139.162.183.93

🇨🇳 118.196.129.25

🇮🇳 118.185.130.194

🇩🇪 95.90.13.168