AbuseIPDB » 15.188.48.249

15.188.48.249 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 38%: ?

38%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
Hostname(s)	ec2-15-188-48-249.eu-west-3.compute.amazonaws.com
Domain Name	amazon.com
Country	France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 15.188.48.249

Whois 15.188.48.249

IP Abuse Reports for 15.188.48.249:

This IP address has been reported a total of 24 times from 19 distinct sources. 15.188.48.249 was first reported on January 27th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
CrystalMaker	30 Jan 2023	Vulnerability scan - GET /.env; GET /.env	Hacking
Anonymous	29 Jan 2023	GET /.env	Web App Attack
openstrike.co.uk	29 Jan 2023	2 attacks on env grabbing URLs like: 15.188.48.249 - - [28/Jan/2023:17:35:32 +0000] "GET /.env ... show more2 attacks on env grabbing URLs like: 15.188.48.249 - - [28/Jan/2023:17:35:32 +0000] "GET /.env HTTP/1.1" 404 1115 show less	Hacking
dwmosaics	29 Jan 2023	"GET /.env HTTP/1.1" 404 5056 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit...	Brute-Force Web App Attack
Shadymint	29 Jan 2023	url probing from IP marked as abusive	Web App Attack
someone	28 Jan 2023	*:80 15.188.48.249 - - [28/Jan/2023:19:28:04 +0100] "GET /.env HTTP/1.1" 301 477 "-" "Mozilla/5.0 (X ... show more*:80 15.188.48.249 - - [28/Jan/2023:19:28:04 +0100] "GET /.env HTTP/1.1" 301 477 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Web App Attack
LRNP	28 Jan 2023	_ 15.188.48.249 - - [28/Jan/2023:18:13:15 +0000] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11; ... show more_ 15.188.48.249 - - [28/Jan/2023:18:13:15 +0000] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Bad Web Bot Web App Attack
tg_de	28 Jan 2023	18 attempts since 27.01.2023 19:50:31 CET - last search for: /.env	Web App Attack
Anonymous	28 Jan 2023	Configuration snooping (/.env), accessed by IP not domain: 15.188.48.249 - - [28/Jan/2023:12: ... show moreConfiguration snooping (/.env), accessed by IP not domain: 15.188.48.249 - - [28/Jan/2023:12:39:57 +0000] "GET /.env HTTP/1.1" 404 243 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36" show less	Hacking Web App Attack
rakkor	28 Jan 2023	2023/01/28 12:39:44 [error] 28551#28551: *1651998 open() "/var/services/web/.env" failed (2: No such ... show more2023/01/28 12:39:44 [error] 28551#28551: *1651998 open() "/var/services/web/.env" failed (2: No such file or directory), client: 15.188.48.249, server: , request: "GET /.env HTTP/1.1", host: "82.15.118.204" show less	Hacking Brute-Force
gurnip	28 Jan 2023	Vulnerability probe of page /.env, not found on server.	Brute-Force Web App Attack
GAS	28 Jan 2023	GET /.env HTTP/1.1 - Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/3 ... show moreGET /.env HTTP/1.1 - Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F show less	Port Scan Hacking
sebaro11	28 Jan 2023	Portscan on 443/TCP blocked by UFW	Port Scan
tg_de	27 Jan 2023	7 attempts since 27.01.2023 19:50:31 CET - last search for: /.env	Web App Attack
el-brujo	27 Jan 2023	27/Jan/2023:21:53:33 +0100Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 15.188. ... show more27/Jan/2023:21:53:33 +0100Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 15.188.48.249] ModSecurity: Warning. Pattern match "^[\\\\\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "735"] [id "920350"] [msg "Host header is a numeric IP address"] [data "91.126.217.153"] [severity "WARNING"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "91.126.217.153"] [uri "/.env"] [unique_id "Y9Q5zUxywI08rgOlMCFkXwAAAEQ"] ... show less	Hacking

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩