JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.217.207.48

13.217.207.48 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Data Services Northern Virginia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-13-217-207-48.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.217.207.48

Whois 13.217.207.48

IP Abuse Reports for 13.217.207.48:

This IP address has been reported a total of 34 times from 25 distinct sources. 13.217.207.48 was first reported on June 5th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-07 21:59:05 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-06. show less	Web App Attack SSH Hacking
🇬🇧 openstrike.co.uk	2026-06-07 05:13:12 (1 week ago)	2 attacks on VC URLs: GET /.git/config HTTP/1.1	Hacking
🇩🇪 LRob.fr	2026-06-07 02:15:05 (1 week ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-07 02:05:00 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 13.217.207.48 (ec2-13-217-207-48.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 13.217.207.48 (ec2-13-217-207-48.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 22:04:55.238560 2026] [security2:error] [pid 4434:tid 4434] [client 13.217.207.48:59518] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "superzilla.com"] [uri "/.git/config"] [unique_id "aiTRx4xqmsD0j2sPC3mxmAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 raph	2026-06-06 21:35:51 (1 week ago)	[DOT FILES] crawler .env, .git, .config, etc.	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 18:16:09 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 13.217.207.48 (ec2-13-217-207-48.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 13.217.207.48 (ec2-13-217-207-48.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 14:16:02.001121 2026] [security2:error] [pid 15714:tid 15714] [client 13.217.207.48:58252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sundollsforever.org"] [uri "/.git/config"] [unique_id "aiRj4qRtGEqiGHpR8Hgy3QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 AvonleaConsulting	2026-06-06 17:40:33 (1 week ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-06 16:58:54 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "python" at REQUEST_HEADERS:User-Agent. (1100000-196 ... show more BAD BOT - Detected and Blocked.. Matched phrase "python" at REQUEST_HEADERS:User-Agent. (1100000-196) show less	Bad Web Bot
🇩🇪 netclix.gr	2026-06-06 14:47:11 (1 week ago)	(bot_kill_mega) Aggressive Bot Blocked: python 13.217.207.48 (US/United States/ec2-13-217-207-48.com ... show more (bot_kill_mega) Aggressive Bot Blocked: python 13.217.207.48 (US/United States/ec2-13-217-207-48.compute-1.amazonaws.com): 1 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 13.217.207.48 - - [06/Jun/2026:17:47:06 +0300] "GET /.git/config HTTP/1.1" 403 146 "-" "python-requests/2.25.1" show less	Port Scan
🇩🇪 Lino Project	2026-06-06 14:45:26 (1 week ago)	13.217.207.48 - - [06/Jun/2026:16:45:23 +0200] "GET /.git/config HTTP/1.1" 404 3773 "-" "python-requ ... show more 13.217.207.48 - - [06/Jun/2026:16:45:23 +0200] "GET /.git/config HTTP/1.1" 404 3773 "-" "python-requests/2.25.1" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-06 12:05:50 (1 week ago)	Abuse Detected (10)	Brute-Force Web App Attack
Anonymous	2026-06-06 11:42:02 (1 week ago)	Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1	Hacking Web App Attack
Anonymous	2026-06-06 11:13:19 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 13.217.207.48 (US/United States/ec2-13- ... show more (mod_security) mod_security triggered on hostname [redacted] 13.217.207.48 (US/United States/ec2-13-217-207-48.compute-1.amazonaws.com) show less	SQL Injection
🇺🇸 kosada.com	2026-06-06 08:14:43 (1 week ago)	Web vulnerability probing: /.git/config (bogus vhost/SNI)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 08:09:26 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 13.217.207.48 (ec2-13-217-207-48.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 13.217.207.48 (ec2-13-217-207-48.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 04:09:21.667173 2026] [security2:error] [pid 28016:tid 28016] [client 13.217.207.48:52694] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sterlingandtime.com"] [uri "/.git/config"] [unique_id "aiPVsXMX-68YKT75f6Zf1QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.145.27

🇿🇦 165.165.110.239

🇲🇾 115.135.197.252

🇮🇳 103.178.253.58

🇱🇦 103.114.147.217

🇻🇳 103.75.183.177

🇳🇱 45.148.10.183

🇺🇸 45.41.160.68

🇺🇸 24.144.84.83

🇵🇰 203.101.186.255

🇩🇪 194.187.176.50

🇵🇾 181.123.62.210

🇳🇱 172.94.9.214

🇵🇹 161.123.131.113

🇫🇷 148.135.254.231

🇮🇹 87.12.222.204

🇺🇸 71.222.19.242

🇧🇷 20.226.32.175

🇺🇸 2607:f8b0:4001:c6a::120

🇺🇸 198.20.191.156