JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.226.207.121

34.226.207.121 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 77%: ?

77%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-34-226-207-121.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.226.207.121

Whois 34.226.207.121

IP Abuse Reports for 34.226.207.121:

This IP address has been reported a total of 34 times from 20 distinct sources. 34.226.207.121 was first reported on June 4th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 nzhost.co.nz	2026-06-05 19:10:34 (2 weeks ago)	$f2bV_matches	Hacking Brute-Force
Anonymous	2026-06-05 15:37:59 (2 weeks ago)	(caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.am ... show more (caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:15:37:39 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:15:37:42 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:15:37:45 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:15:37:53 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:15:37:59 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-05 15:35:23 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 34.226.207.121 (ec2-34-226-207-121.compute-1.am ... show more (mod_security) mod_security (id:949110) triggered by 34.226.207.121 (ec2-34-226-207-121.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 11:35:15.203889 2026] [security2:error] [pid 8785:tid 8785] [client 34.226.207.121:60942] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "krupaandsons.com"] [uri "/.git/config"] [unique_id "aiLss24yn9sC8dfJg4DnkwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 15:14:35 (2 weeks ago)	[ns41.kdns.gr] httpd-suspicious-path: sites=koukas-machines.com; logs=/var/log/httpd/domains/koukas- ... show more [ns41.kdns.gr] httpd-suspicious-path: sites=koukas-machines.com; logs=/var/log/httpd/domains/koukas-machines.com.log; samples=/.git/config show less	Hacking Web App Attack
Anonymous	2026-06-05 12:30:08 (2 weeks ago)	(caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.am ... show more (caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:12:29:46 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:12:29:49 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:12:29:57 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:12:30:01 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:12:30:03 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
🇩🇪 kommunos	2026-06-05 12:20:14 (2 weeks ago)	/.git/config	Web App Attack
🇹🇷 baku.hosting	2026-06-05 12:07:52 (2 weeks ago)	CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 34.226.207.121 (US/United Stat ... show more CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.amazonaws.com): 5 in the last 3600 secs show less	Brute-Force Web App Attack
🇭🇺 kranem	2026-06-05 12:00:10 (2 weeks ago)	Triggered Cloudflare WAF from US. Action taken: BLOCK ASN: 14618 (Amazon.com, Inc.) Protocol: HTTP/1 ... show more Triggered Cloudflare WAF from US. Action taken: BLOCK ASN: 14618 (Amazon.com, Inc.) Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config Timestamp: 2026-06-05T11:28:33Z User-Agent: python-requests/2.25.1 show less	Bad Web Bot
🇺🇸 helios.live	2026-06-05 08:20:26 (2 weeks ago)	2026/06/05 08:20:24 [error] 3229110#3229110: 37649 access forbidden by rule, client: 34.226.207.121 ... show more 2026/06/05 08:20:24 [error] 3229110#3229110: 37649 access forbidden by rule, client: 34.226.207.121, server: kocervpn.com, request: "GET /.git/config HTTP/1.1", host: "kocervpn.com" 2026/06/05 08:20:25 [error] 3229110#3229110: 37649 access forbidden by rule, client: 34.226.207.121, server: kocervpn.com, request: "GET /.git/config HTTP/1.1", host: "kocervpn.com" 2026/06/05 08:20:25 [error] 3229110#3229110: 37649 access forbidden by rule, client: 34.226.207.121, server: kocervpn.com, request: "GET /.git/config HTTP/1.1", host: "kocervpn.com" 2026/06/05 08:20:25 [error] 3229110#3229110: 37649 access forbidden by rule, client: 34.226.207.121, server: kocervpn.com, request: "GET /.git/config HTTP/1.1", host: "kocervpn.com" 2026/06/05 08:20:26 [error] 3229110#3229110: 37649 access forbidden by rule, client: 34.226.207.121, server: kocervpn.com, request: "GET /.git/config HTTP/1.1", host: "kocervpn.com" ... show less	Web App Attack
🇩🇪 FeG Deutschland	2026-06-05 08:12:04 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
Anonymous	2026-06-05 06:47:08 (2 weeks ago)	(caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.am ... show more (caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:06:46:55 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:06:46:57 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:06:47:00 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:06:47:02 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:06:47:07 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
Anonymous	2026-06-05 03:56:38 (2 weeks ago)	(caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.am ... show more (caddyscan) Scanner path probe from 34.226.207.121 (US/United States/ec2-34-226-207-121.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:03:56:19 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:03:56:25 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:03:56:28 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:03:56:32 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 34.226.207.121 - - [05/Jun/2026:03:56:37 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
🇳🇿 Antinson	2026-06-05 03:44:47 (2 weeks ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇫🇷 lindi	2026-06-05 01:25:21 (2 weeks ago)	Probing for resource vulnerabilities ...	Web Spam Brute-Force Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 00:35:51 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 34.226.207.121 (ec2-34-226-207-121.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 34.226.207.121 (ec2-34-226-207-121.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 20:35:46.004985 2026] [security2:error] [pid 31360:tid 31360] [client 34.226.207.121:49294] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnen.org"] [uri "/.git/config"] [unique_id "aiIZ4jBaaY9bifiFmD7c8AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 95.6.42.173

🇫🇷 85.217.140.5

🇩🇪 69.5.169.15

🇺🇸 64.62.156.152

🇺🇸 64.62.156.24

🇺🇸 54.212.155.239

🇺🇸 45.33.55.247

🇺🇸 43.135.134.180

🇬🇧 35.203.211.154

🇳🇱 204.76.203.81

🇺🇸 135.119.112.69

🇸🇬 118.26.111.107

🇨🇳 14.103.112.104

🇫🇮 2a00:1450:4010:c20::12b

🇵🇰 182.190.218.154

🇵🇰 182.185.148.93

🇸🇬 165.154.236.104

🇨🇳 121.229.9.110

🇮🇩 103.186.31.66

🇷🇺 83.220.185.70