AbuseIPDB » 13.229.235.115
13.229.235.115
This IP was reported 5 times. Confidence of
Abuse
is 30% : ?
ISP
Amazon Data Services Singapore
Usage Type
Data Center/Web Hosting/Transit
ASN
AS16509
Hostname(s)
ec2-13-229-235-115.ap-southeast-1.compute.amazonaws.com
Domain Name
amazon.com
Country
๐ธ๐ฌ
Singapore
City
Singapore
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 13.229.235.115 :
This IP address has been reported a total of
5
times from
4 distinct
sources.
13.229.235.115 was first reported on
June 22nd 2026 , and the most recent report was
19 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฉ๐ช
LRob.fr
2026-06-23 17:00:13
(19 hours ago)
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-23 14:55:56
(21 hours ago)
(mod_security) mod_security (id:210730) triggered by 13.229.235.115 (ec2-13-229-235-115.ap-southeast ...
show more
(mod_security) mod_security (id:210730) triggered by 13.229.235.115 (ec2-13-229-235-115.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 10:55:49.197318 2026] [security2:error] [pid 21039:tid 21039] [client 13.229.235.115:50510] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.fundaciondamashcc.org.ec|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.fundaciondamashcc.org.ec"] [uri "/1.sql"] [unique_id "ajqedaGlWQABS_q86RH0awAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
consul.to
2026-06-23 03:09:00
(1 day ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ท
LoneRider
2026-06-22 20:01:48
(1 day ago)
[22/Jun/2026:22:01:36.222905 +0200] ajmUoGPBBoHIEra3cor14gAAAAQ 13.229.235.115 37108 127.0.0.1 7081
...
show more
[22/Jun/2026:22:01:36.222905 +0200] ajmUoGPBBoHIEra3cor14gAAAAQ 13.229.235.115 37108 127.0.0.1 7081
[22/Jun/2026:22:01:42.749323 +0200] ajmUppmMizYAuW7QQoo60QAAAAo 13.229.235.115 33880 127.0.0.1 7081
[22/Jun/2026:22:01:47.973990 +0200] ajmUq4CuHi6uuZa69IM18AAAAAI 13.229.235.115 33894 127.0.0.1 7081
...
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-22 16:59:53
(1 day ago)
(mod_security) mod_security (id:210730) triggered by 13.229.235.115 (ec2-13-229-235-115.ap-southeast ...
show more
(mod_security) mod_security (id:210730) triggered by 13.229.235.115 (ec2-13-229-235-115.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 12:59:46.140070 2026] [security2:error] [pid 19136:tid 19136] [client 13.229.235.115:58322] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||pluscures.com|F|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pluscures.com"] [uri "/database.sql"] [unique_id "ajlqAue7xEshSyEPKGnv5wAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: