JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.23.132.65

3.23.132.65 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 55%: ?

55%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-23-132-65.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.23.132.65

Whois 3.23.132.65

IP Abuse Reports for 3.23.132.65:

This IP address has been reported a total of 15 times from 13 distinct sources. 3.23.132.65 was first reported on May 22nd 2026, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 websecuritylabs	2026-06-29 17:25:00 (14 hours ago)	Web App Attack	Web App Attack
🇨🇭 Kepler-1649c	2026-06-18 10:05:16 (1 week ago)	Detected Attack: HTPasswd.Access	Hacking
Anonymous	2026-06-18 05:47:50 (1 week ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇫🇷 GoodOldTOS	2026-06-18 04:12:52 (1 week ago)	Bad keywords detected in request: /.git	Web App Attack
🇨🇿 Countryman	2026-06-18 03:43:17 (1 week ago)	IPS detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇨🇿 Countryman	2026-06-18 03:43:17 (1 week ago)	IPS detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇨🇦 Slackin' Jack	2026-06-18 03:22:42 (1 week ago)	Unauthorized scraper/crawler on port 80/443. (3.23.132.65)	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-18 03:14:14 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 3.23.132.65 (ec2-3-23-132-65.us-east-2.compute. ... show more (mod_security) mod_security (id:210492) triggered by 3.23.132.65 (ec2-3-23-132-65.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 23:14:08.869634 2026] [security2:error] [pid 7785:tid 7785] [client 3.23.132.65:50384] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.193"] [uri "/.git/HEAD"] [unique_id "ajNigCEQS4MXirtnfQyGCAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 02:46:13 (1 week ago)	[Thu Jun 18 04:46:11.948565 2026] [:error] [pid 125590:tid 125590] [client 3.23.132.65:48948] ModSec ... show more [Thu Jun 18 04:46:11.948565 2026] [:error] [pid 125590:tid 125590] [client 3.23.132.65:48948] ModSecurity: Warning. Matched "Operator `PmFromFile' with parameter `restricted-files.data' against variable `REQUEST_FILENAME' (Value: `/.git/logs/HEAD' ) [file "/usr/local/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "131"] [id "930130"] [rev ""] [msg "Restricted File Access Attempt"] [data "Matched Data: .git/ found within REQUEST_FILENAME: /.git/logs/HEAD"] [severity "2"] [ver "OWASP_CRS/4.28.0-dev"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/ATTACK-LFI"] [tag "capec/1000/255/153/126"] [uri "/.git/logs/HEAD"] [unique_id "178175077158.664246"] [ref "o1,5v4,15t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin"] [Thu Jun 18 04:46:12.728873 2026] [:error] [pid 125584:tid 125584] [client 3.23.132.65:48952] ModSecu ... show less	Web App Attack
🇧🇾 lns.bz	2026-06-18 02:09:50 (1 week ago)	Too many 404 requests [BY]	Web App Attack
🇧🇷 SOCBRAZIL	2026-06-18 02:00:55 (1 week ago)	IPS: Web Server Enforcement Violation.	Hacking
🇺🇸 TPI-Abuse	2026-06-18 01:57:55 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 3.23.132.65 (ec2-3-23-132-65.us-east-2.compute. ... show more (mod_security) mod_security (id:210492) triggered by 3.23.132.65 (ec2-3-23-132-65.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 21:57:50.537447 2026] [security2:error] [pid 5457:tid 5457] [client 3.23.132.65:47038] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.90"] [uri "/.git/config"] [unique_id "ajNQnkJvF5jzFZUKEs8OsQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇸 Scan	2026-06-18 01:27:13 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 dynamix	2026-06-18 01:15:53 (1 week ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Roderic	2026-05-22 01:40:37 (1 month ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.98

🇺🇿 194.107.115.199

🇺🇸 184.105.139.95

🇫🇮 147.185.133.175

🇳🇱 89.248.168.227

🇺🇸 67.205.129.76

🇺🇸 47.85.8.171

🇺🇸 20.125.96.254

🇳🇱 185.213.175.137

🇦🇫 180.94.75.10

🇮🇳 122.187.230.154

🇦🇺 112.213.38.58

🇮🇳 103.174.34.49

🇮🇳 74.125.178.152

🇳🇱 68.66.251.43

🇳🇱 45.156.128.51

🇻🇳 14.191.95.223

🇹🇼 198.235.24.29

🇧🇷 186.247.84.113

🇺🇦 178.54.129.170