JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.231.108.48

13.231.108.48 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 99%: ?

99%

ISP	Amazon Data Services Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.231.108.48

Whois 13.231.108.48

IP Abuse Reports for 13.231.108.48:

This IP address has been reported a total of 41 times from 35 distinct sources. 13.231.108.48 was first reported on May 27th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-28 12:05:11 (2 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
Anonymous	2026-05-27 22:37:39 (2 weeks ago)	(PERMBLOCK) 13.231.108.48 (JP/Japan/ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com) has had ... show more (PERMBLOCK) 13.231.108.48 (JP/Japan/ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com) has had more than 4 temp blocks in the last 86400 secs; IP: 13.231.108.48; Ports: *; Direction: 1; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Brute-Force
🇺🇦 URAN Publishing Service	2026-05-27 19:33:59 (3 weeks ago)	13.231.108.48 - - [27/May/2026:22:33:58 +0300] "GET /xmlrpc.php?rsd HTTP/1.1" 404 683 "-" "Mozilla/5 ... show more 13.231.108.48 - - [27/May/2026:22:33:58 +0300] "GET /xmlrpc.php?rsd HTTP/1.1" 404 683 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" ... show less	Web App Attack
🇳🇱 Roderic	2026-05-27 12:42:48 (3 weeks ago)	(wordpress-404) Searching for non-existent wordpress installs from 13.231.108.48 (JP/Japan/Tokyo/Tok ... show more (wordpress-404) Searching for non-existent wordpress installs from 13.231.108.48 (JP/Japan/Tokyo/Tokyo/ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com/[redacted]) show less	Brute-Force
🇩🇪 abdubhai	2026-05-27 12:34:59 (3 weeks ago)	13.231.108.48 - - [27/May/2026:1 ...	Brute-Force
Anonymous	2026-05-27 11:51:16 (3 weeks ago)	13.231.108.48 - - [27/May/2026:13:51:15 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 441 " ... show more 13.231.108.48 - - [27/May/2026:13:51:15 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 441 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 13.231.108.48 - - [27/May/2026:13:51:15 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 292 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 13.231.108.48 - - [27/May/2026:13:51:15 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 441 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 13.231.108.48 - - [27/May/2026:13:51:15 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 292 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 13.231.108.48 - - [27/May/2026:13:51:15 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 292 "-" "Mozilla/5.0 (Windows NT 10.0; Win6 ... show less	Brute-Force Web App Attack
Anonymous	2026-05-27 11:02:30 (3 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: JP, Attack patterns: WordPress scanning, Malicious User-Agent show less	Bad Web Bot Web App Attack
🇦🇱 router.al	2026-05-27 10:57:12 (3 weeks ago)	05/27/2026-10:57:11.974791 13.231.108.48 Protocol: 6 ET SCAN WordPress Scanner Performing Multiple R ... show more 05/27/2026-10:57:11.974791 13.231.108.48 Protocol: 6 ET SCAN WordPress Scanner Performing Multiple Requests to Windows Live Writer XML show less	Hacking
🇫🇷 Jean Valjean	2026-05-27 10:53:09 (3 weeks ago)	Fail2ban Caboom : wp-login.php Bruteforce	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-27 10:36:41 (3 weeks ago)	(xmlrpc) Apache: Failed xmlrpc access from 13.231.108.48 (JP/Japan/ec2-13-231-108-48.ap-northeast-1. ... show more (xmlrpc) Apache: Failed xmlrpc access from 13.231.108.48 (JP/Japan/ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com): 10 in the last 3600 secs (0-201) show less	Hacking
Anonymous	2026-05-27 10:20:04 (3 weeks ago)	Bot / scanning and/or hacking attempts: GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1, GET /wp2/wp- ... show more Bot / scanning and/or hacking attempts: GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1, GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1, GET /news/wp-includes/wlwmanifest.xml HTTP/1.1, GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1, GET /website/wp-includes/wlwmanifest.xml HTTP/1.1, GET /wp-includes/wlwmanifest.xml HTTP/1.1, GET /site/wp-includes/wlwmanifest.xml HTTP/1.1, GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1, GET /xmlrpc.php?rsd HTTP/1.1, GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1, GET /test/wp-includes/wlwmanifest.xml HTTP/1.1, GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 show less	Hacking Web App Attack
🇭🇳 unph	2026-05-27 09:44:17 (3 weeks ago)	Intento de acceso sospechoso bloqueado por AbuseIPDB Blocker Plugin	Brute-Force
🇺🇦 URAN Publishing Service	2026-05-27 09:15:46 (3 weeks ago)	13.231.108.48 - - [27/May/2026:12:15:45 +0300] "GET /xmlrpc.php?rsd HTTP/1.1" 404 683 "-" "Mozilla/5 ... show more 13.231.108.48 - - [27/May/2026:12:15:45 +0300] "GET /xmlrpc.php?rsd HTTP/1.1" 404 683 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 08:41:56 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 13.231.108.48 (ec2-13-231-108-48.ap-northeast-1 ... show more (mod_security) mod_security (id:225170) triggered by 13.231.108.48 (ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 04:41:51.582697 2026] [security2:error] [pid 20760:tid 20760] [client 13.231.108.48:56883] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fredlandia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fredlandia.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ahauTx4S-P5oERRTxntQ5gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-05-27 08:24:46 (3 weeks ago)	(mod_security) mod_security (id:210410) triggered by 13.231.108.48 (JP/Japan/ec2-13-231-108-48.ap-no ... show more (mod_security) mod_security (id:210410) triggered by 13.231.108.48 (JP/Japan/ec2-13-231-108-48.ap-northeast-1.compute.amazonaws.com): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 175.195.205.236

🇦🇹 152.53.3.237

🇨🇳 124.129.157.189

🇱🇹 81.30.98.49

🇭🇰 43.250.173.130

🇷🇴 2.57.122.177

🇦🇷 186.38.26.5

🇮🇳 172.217.34.217

🇨🇳 118.145.238.60

🇨🇳 116.249.227.73

🇩🇪 109.250.0.156

🇺🇸 104.22.101.234

🇺🇸 34.31.88.250

🇨🇳 14.103.10.167

🇸🇬 188.166.251.103

🇳🇱 176.65.139.42

🇺🇸 147.185.132.177

🇮🇳 103.152.159.182

🇺🇸 85.208.96.203

🇷🇴 80.94.95.221