JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 134.209.111.13

134.209.111.13 was found in our database!

This IP was reported 86 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 134.209.111.13

Whois 134.209.111.13

IP Abuse Reports for 134.209.111.13:

This IP address has been reported a total of 86 times from 37 distinct sources. 134.209.111.13 was first reported on November 15th 2021, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nyt	2026-06-15 15:05:43 (7 hours ago)	Brute-Force, Web App Attack, suspicious: Login brute-force (6/60s)	Brute-Force Web App Attack
🇩🇪 AlexEventfahrtenIPDB	2026-06-15 14:43:52 (8 hours ago)	[Mon Jun 15 16:43:52.141274 2026] [authz_core:error] [pid 462548:tid 462548] [client 134.209.111.13: ... show more [Mon Jun 15 16:43:52.141274 2026] [authz_core:error] [pid 462548:tid 462548] [client 134.209.111.13:44982] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.de/wp-login.php [Mon Jun 15 16:43:52.141343 2026] [authz_core:error] [pid 406485:tid 406485] [client 134.209.111.13:44998] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.de/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 akasolutions.de	2026-06-15 14:35:16 (8 hours ago)	(wordpress) Failed wordpress login from 134.209.111.13 (SG/Singapore/-)	Brute-Force
🇫🇷 Jean Valjean	2026-06-15 09:09:38 (13 hours ago)	Fail2ban Caboom : wp-login.php Bruteforce	Brute-Force Web App Attack
🇬🇧 Steve	2026-06-14 17:09:48 (1 day ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
🇬🇧 blik2108	2026-06-14 15:16:33 (1 day ago)	blog.blacknellsatsea.co.uk:443 134.209.111.13 - - [14/Jun/2026:16:16:32 +0100] "POST /wp-login.php H ... show more blog.blacknellsatsea.co.uk:443 134.209.111.13 - - [14/Jun/2026:16:16:32 +0100] "POST /wp-login.php HTTP/1.1" 200 7176 "https://blog.blacknellsatsea.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" blog.blacknellsatsea.co.uk:443 134.209.111.13 - - [14/Jun/2026:16:16:32 +0100] "POST /wp-login.php HTTP/1.1" 200 7176 "https://blog.blacknellsatsea.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" blog.blacknellsatsea.co.uk:443 134.209.111.13 - - [14/Jun/2026:16:16:32 +0100] "POST /wp-login.php HTTP/1.1" 200 7176 "https://blog.blacknellsatsea.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" blog.blacknellsatsea.co.uk:443 134.209.111.13 - - [14/Jun/2026:16:16:32 +0100] "POST /wp-login.php HTTP/1.1" 200 7176 "https://blog.blacknellsatsea.co.uk/ ... show less	Brute-Force Web App Attack
🇮🇹 Progetto1	2026-06-14 13:45:03 (1 day ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇪🇸 masterguru	2026-06-14 12:55:31 (1 day ago)	(wplogin) Failed WordPress login from 134.209.111.13 (SG/Singapore/-): 5 in the last 3600 secs (0-12 ... show more (wplogin) Failed WordPress login from 134.209.111.13 (SG/Singapore/-): 5 in the last 3600 secs (0-122) show less	Hacking
🇬🇧 noise.agency	2026-06-14 09:25:05 (1 day ago)	(wordpress) Failed wordpress login from 134.209.111.13 (SG/Singapore/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-14 08:34:12 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 134.209.111.13 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 134.209.111.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 04:34:08.835552 2026] [security2:error] [pid 13275:tid 13275] [client 134.209.111.13:55264] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.iplayriichi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.iplayriichi.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai5ngAuR69Eg3w2AvbS2XwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-14 08:09:19 (1 day ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-14 07:15:02 (1 day ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 02:56:20 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 134.209.111.13 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 134.209.111.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 22:56:15.963487 2026] [security2:error] [pid 25541:tid 25541] [client 134.209.111.13:52456] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|oshadega.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "oshadega.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai4YT-6L0Dh-ptvT1AgcTAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 02:37:37 (1 day ago)	Bot / scanning and/or hacking attempts: POST /wp-login.php HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 02:31:59 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 134.209.111.13 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 134.209.111.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 22:31:51.521277 2026] [security2:error] [pid 16180:tid 16180] [client 134.209.111.13:60736] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mail.modalsoftware.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.modalsoftware.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai4SlxvC3DKKiihhPsP8dgAAACg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 86 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.124.202

🇲🇴 182.93.50.90

🇰🇷 14.206.12.13

🇧🇷 187.33.59.116

🇺🇸 162.216.149.213

🇮🇳 152.32.158.219

🇦🇺 103.208.219.38

🇷🇺 95.165.159.70

🇺🇦 78.30.250.62

🇪🇨 45.224.97.241

🇨🇳 42.194.158.19

🇧🇷 191.37.76.17

🇺🇸 66.132.172.41

🇺🇸 209.85.214.197

🇨🇳 120.79.178.220

🇮🇩 103.166.10.244

🇸🇬 103.13.207.88

🇬🇧 89.34.96.151

🇳🇱 45.148.10.141

🇳🇱 195.178.110.246