JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.230.112.53

13.230.112.53 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 12%: ?

12%

ISP	Amazon Data Services Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-13-230-112-53.ap-northeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.230.112.53

Whois 13.230.112.53

IP Abuse Reports for 13.230.112.53:

This IP address has been reported a total of 9 times from 7 distinct sources. 13.230.112.53 was first reported on December 2nd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Mediashaker	2026-06-02 05:19:26 (2 weeks ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 13.230.112.53 (JP/Japan/ ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 13.230.112.53 (JP/Japan/ec2-13-230-112-53.ap-northeast-1.compute.amazonaws.com) show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-02 04:55:43 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 13.230.112.53 (ec2-13-230-112-53.ap-northeast-1 ... show more (mod_security) mod_security (id:210492) triggered by 13.230.112.53 (ec2-13-230-112-53.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 00:55:36.034505 2026] [security2:error] [pid 29586:tid 29586] [client 13.230.112.53:58186] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "allieleejieun.click"] [uri "/.env"] [unique_id "ah5iSC3yLS5XPeTFAoFE1gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 03:58:55 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 13.230.112.53 (ec2-13-230-112-53.ap-northeast-1 ... show more (mod_security) mod_security (id:949110) triggered by 13.230.112.53 (ec2-13-230-112-53.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 23:58:49.335963 2026] [security2:error] [pid 31989:tid 31989] [client 13.230.112.53:35112] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "allhandswashservices.com"] [uri "/.env"] [unique_id "ah5U-ZGN-7lEHrLFc_JHKQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-04 23:00:22 (6 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-12-03. show less	Hacking Web App Attack SSH
🇳🇱 homeshowdomain.nl	2025-12-03 23:01:06 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-03	Hacking Web App Attack SSH
🇹🇷 rtbh.com.tr	2025-12-03 20:10:16 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 SpaceHost-Server	2025-12-02 23:29:38 (6 months ago)		Brute-Force Web App Attack
🇺🇸 myagent.site	2025-12-02 20:16:08 (6 months ago)	Blocking for trying to access an exploit file: /phpinfo.php	Hacking
🇩🇪 macrob	2025-12-02 16:14:57 (6 months ago)	2025/12/02 16:14:55 [error] 2561696#2561696: 139671503 access forbidden by rule, client: 13.230.112 ... show more 2025/12/02 16:14:55 [error] 2561696#2561696: 139671503 access forbidden by rule, client: 13.230.112.53, server: ca5h.win, request: "GET /.git/config HTTP/1.1", host: "ca5h.win" 2025/12/02 16:14:56 [error] 2561695#2561695: 139671764 access forbidden by rule, client: 13.230.112.53, server: ca5h.win, request: "GET /.env HTTP/1.1", host: "ca5h.win" 2025/12/02 16:14:56 [error] 2561696#2561696: 139671481 access forbidden by rule, client: 13.230.112.53, server: ca5h.win, request: "GET /.env.local HTTP/1.1", host: "ca5h.win" ... show less	Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.50.194.182

🇩🇪 164.92.206.15

🇺🇸 93.152.208.38

🇫🇷 85.217.140.15

🇹🇯 62.89.208.218

🇵🇷 38.50.88.89

🇺🇸 2a13:dcc6:b14e:e622:8e0e:6609:e431:6bd2

🇨🇳 175.19.52.56

🇺🇸 107.175.156.151

🇳🇱 91.92.40.12

🇸🇬 68.183.236.1

🇳🇱 52.233.193.61

🇭🇰 35.220.240.79

🇺🇸 216.25.89.72

🇵🇰 202.163.87.8

🇵🇱 185.241.208.74

🇨🇴 181.56.210.115

🇺🇸 162.216.150.71

🇪🇬 156.208.205.166

🇨🇳 106.38.195.164