JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.234.53.25

13.234.53.25 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Data Services India
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-13-234-53-25.ap-south-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.234.53.25

Whois 13.234.53.25

IP Abuse Reports for 13.234.53.25:

This IP address has been reported a total of 32 times from 29 distinct sources. 13.234.53.25 was first reported on June 26th 2026, and the most recent report was 1 minute ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 london2038.com	2026-06-26 11:16:24 (1 minute ago)	Attacking WordPress 13.234.53.25 - - [26/Jun/2026:13:16:21 +0200] "POST /wp-login.php HTTP/2.0" 503 ... show more Attacking WordPress 13.234.53.25 - - [26/Jun/2026:13:16:21 +0200] "POST /wp-login.php HTTP/2.0" 503 19291 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇩🇪 Lino Project	2026-06-26 06:42:58 (4 hours ago)	13.234.53.25 - - [26/Jun/2026:08:42:55 +0200] "GET /wp-login.php HTTP/2.0" 403 285 "-" "Mozilla/5.0 ... show more 13.234.53.25 - - [26/Jun/2026:08:42:55 +0200] "GET /wp-login.php HTTP/2.0" 403 285 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 06:41:42 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 13.234.53.25 (ec2-13-234-53-25.ap-south-1.compu ... show more (mod_security) mod_security (id:225170) triggered by 13.234.53.25 (ec2-13-234-53-25.ap-south-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 02:41:37.026825 2026] [security2:error] [pid 21636:tid 21636] [client 13.234.53.25:57950] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|luxandunion.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "luxandunion.com"] [uri "/wp-json/wp/v2/users/6"] [unique_id "aj4fIe57s8rn6-jk58bM3AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bsoft.de	2026-06-26 06:36:26 (4 hours ago)	13.234.53.25 - - [26/Jun/2026:07:57:45 +0200] "GET /wp-login.php HTTP/1.1" 404 61044 "-" "Mozilla/5. ... show more 13.234.53.25 - - [26/Jun/2026:07:57:45 +0200] "GET /wp-login.php HTTP/1.1" 404 61044 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 13.234.53.25 - - [26/Jun/2026:08:33:30 +0200] "GET /wp-login.php HTTP/1.1" 404 200090 "https://bolte.de/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 13.234.53.25 - - [26/Jun/2026:08:36:26 +0200] "GET /wp-login.php HTTP/1.1" 200 2980 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" show less	Web App Attack
🇺🇸 lostswordfish.com	2026-06-26 06:34:04 (4 hours ago)	Wordfence waf block on ncrsol	Web App Attack
🇫🇮 stinpriza	2026-06-26 06:33:54 (4 hours ago)	Web App Attack	Web App Attack
🇩🇪 Ba-Yu	2026-06-26 06:32:45 (4 hours ago)	WordPress bruteforce	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 dynamix	2026-06-26 06:31:34 (4 hours ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇬🇧 spamverify.com	2026-06-26 06:30:31 (4 hours ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
Anonymous	2026-06-26 06:26:03 (4 hours ago)	Bot / scanning and/or hacking attempts: POST /wp-login.php HTTP/2.0	Hacking Web App Attack
Anonymous	2026-06-26 06:24:35 (4 hours ago)	[Fri Jun 26 07:34:10.334373 2026] [authz_core:error] [pid 1485:tid 1637] [client 13.234.53.25:32556] ... show more [Fri Jun 26 07:34:10.334373 2026] [authz_core:error] [pid 1485:tid 1637] [client 13.234.53.25:32556] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Fri Jun 26 07:34:10.615068 2026] [authz_core:error] [pid 1485:tid 1642] [client 13.234.53.25:32556] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php [Fri Jun 26 08:24:33.435117 2026] [authz_core:error] [pid 1486:tid 1618] [client 13.234.53.25:55546] AH01630: client denied by server configuration: /var/www/wordp/wp-login.php [Fri Jun 26 08:24:33.715426 2026] [authz_core:error] [pid 1486:tid 1590] [client 13.234.53.25:55546] AH01630: client denied by server configuration: /var/www/wordp/wp-login.php, referer: https://akcurate.de/wordpress/wp-login.php ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 06:23:39 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 13.234.53.25 (ec2-13-234-53-25.ap-south-1.compu ... show more (mod_security) mod_security (id:225170) triggered by 13.234.53.25 (ec2-13-234-53-25.ap-south-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 02:23:35.828799 2026] [security2:error] [pid 10100:tid 10100] [client 13.234.53.25:56954] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bayareamustangs.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bayareamustangs.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aj4a59rgRRsDfRT--VXBvwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-26 06:17:07 (5 hours ago)	13.234.53.25 - - [26/Jun/2026:08:17:01 +0200] "GET /wp-login.php HTTP/2.0" 200 3999 "-" "Mozilla/5.0 ... show more 13.234.53.25 - - [26/Jun/2026:08:17:01 +0200] "GET /wp-login.php HTTP/2.0" 200 3999 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 floreriaexpress	2026-06-26 06:16:58 (5 hours ago)	FakeADS-Anti: country:IN \| https://mail.floreriaexpresschile.cl/wp-login.php	Bad Web Bot
🇺🇸 Victor López	2026-06-26 06:16:26 (5 hours ago)	s4.digitalhypepro.com 13.234.53.25 - - [26/Jun/2026:01:12:45 -0500] "GET /wp-login.php HTTP/2.0" 200 ... show more s4.digitalhypepro.com 13.234.53.25 - - [26/Jun/2026:01:12:45 -0500] "GET /wp-login.php HTTP/2.0" 200 2525 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" s4.digitalhypepro.com 13.234.53.25 - - [26/Jun/2026:01:12:46 -0500] "POST /wp-login.php HTTP/2.0" 200 2695 "https://s4.digitalhypepro.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ads.buscaempresas.co 13.234.53.25 - - [26/Jun/2026:01:16:25 -0500] "GET /wp-login.php HTTP/2.0" 200 1862 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 43.159.51.254

🇭🇰 2602:80d:1003::13

🇺🇸 207.200.180.174

🇺🇸 162.216.150.31

🇫🇮 147.185.133.254

🇵🇰 119.73.19.184

🇳🇱 45.156.87.93

🇺🇸 23.234.114.58

🇺🇸 3.229.213.129

🇮🇳 2409:4090:8076:d600:cc33:dd15:62a7:51cf

🇷🇺 194.190.153.226

🇳🇱 185.242.226.103

🇺🇸 172.184.216.49

🇸🇦 145.82.66.188

🇸🇬 128.199.255.160

🇨🇳 115.231.78.11

🇸🇬 47.84.133.39

🇨🇳 222.209.91.178

🇺🇸 195.184.76.180

🇫🇷 167.86.82.207