JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.252.220.51

3.252.220.51 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 36%: ?

36%

ISP	Amazon Data Services Ireland Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-252-220-51.eu-west-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇮🇪 Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.252.220.51

Whois 3.252.220.51

IP Abuse Reports for 3.252.220.51:

This IP address has been reported a total of 7 times from 7 distinct sources. 3.252.220.51 was first reported on February 3rd 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 4server	2026-06-08 20:37:28 (1 week ago)	[MonJun0822:37:24.1958212026][security2:error][pid1787992:tid1788169][client3.252.220.51:0]ModSecuri ... show more [MonJun0822:37:24.1958212026][security2:error][pid1787992:tid1788169][client3.252.220.51:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\\|\\\\\\\\bcensysinspect\\\\\\\\b\\|\\\\\\\\bcensys\\\\\\\\b\\|\\\\\\\\bexpanse\\\\\\\\b\\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"www.tpgs.ch.136-243-54-122.cpanel.site\"][uri\"/\"][unique_id\"aicoBNtoJ3SthJb0fV8izgAAARc\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 filstal.org	2026-06-08 20:16:25 (1 week ago)	Bad bot activity detected (automated scraping/probing) UA: Mozilla/5.0 (compatible; NetcraftSurveyAg ... show more Bad bot activity detected (automated scraping/probing) UA: Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; [email protected]) show less	Bad Web Bot Web App Attack
🇦🇺 paulshipley.com.au	2026-06-08 19:41:06 (1 week ago)	[Tue Jun 09 05:41:05.322984 2026] [security2:error] [pid 130265] [client 3.252.220.51:39464] [client ... show more [Tue Jun 09 05:41:05.322984 2026] [security2:error] [pid 130265] [client 3.252.220.51:39464] [client 3.252.220.51] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.levellapromotions.co.nz"] [uri "/"] [unique_id "aica0e2_eF1ePNxkTb2koQAAAA8"] ... show less	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-08 17:58:03 (1 week ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇺🇸 conrad10781	2026-06-08 17:55:01 (1 week ago)	nginx-cgi-bin	Web App Attack
Anonymous	2026-06-08 16:19:43 (1 week ago)	Probing for /owa	Web App Attack
🇧🇬 pa4080	2023-02-03 20:05:01 (3 years ago)	Detected by ModSecurity. Request URI: /welcome.php	Hacking Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.103.152.196

🇺🇸 205.210.31.90

🇺🇸 91.230.168.30

🇺🇸 91.230.168.2

🇸🇬 2404:6800:4003:c04::121

🇯🇵 212.32.76.4

🇨🇦 199.21.149.124

🇩🇪 167.94.146.48

🇭🇰 152.32.190.10

🇺🇸 148.153.32.123

🇧🇬 78.128.113.74

🇨🇳 14.103.115.143

🇳🇱 200.162.148.208

🇪🇨 193.30.14.163

🇧🇷 187.33.59.116

🇧🇩 103.4.145.50

🇧🇷 82.47.106.184

🇺🇸 71.19.150.18

🇹🇼 61.224.66.211

🇧🇷 45.205.1.76