JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.15.222.56

52.15.222.56 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 62%: ?

62%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-15-222-56.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.15.222.56

Whois 52.15.222.56

IP Abuse Reports for 52.15.222.56:

This IP address has been reported a total of 10 times from 10 distinct sources. 52.15.222.56 was first reported on June 18th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 TrafficAnalyser	2026-06-18 06:55:23 (2 days ago)	Port scanning	Port Scan
Anonymous	2026-06-18 05:10:32 (2 days ago)	Port Scan detected from 52.15.222.56 (US/United States/ec2-52-15-222-56.us-east-2.compute.amazonaw ... show more Port Scan detected from 52.15.222.56 (US/United States/ec2-52-15-222-56.us-east-2.compute.amazonaws.com). 5 hits in the last 30 seconds show less	Brute-Force Port Scan
🇮🇪 AutosOnShow	2026-06-18 04:44:05 (2 days ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-06-18 04:43:35.357 \|	Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 04:22:47 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 52.15.222.56 (ec2-52-15-222-56.us-east-2.comput ... show more (mod_security) mod_security (id:210492) triggered by 52.15.222.56 (ec2-52-15-222-56.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 00:22:41.464351 2026] [security2:error] [pid 18761:tid 18761] [client 52.15.222.56:52988] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.88"] [uri "/.git/HEAD"] [unique_id "ajNykVDNJ_RzfDCM71r_2gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 EGP Abuse Dept	2026-06-18 04:00:08 (2 days ago)	Scanning for web/db/file exploits on tpc-018.mach3builders.nl	SQL Injection Bad Web Bot Web App Attack
🇧🇷 SOC PR	2026-06-18 03:49:10 (2 days ago)	IPS: Web Server Enforcement Violation.	Hacking
🇹🇷 Threat.live	2026-06-18 03:45:05 (2 days ago)	Suspicious Connection Attempts	Brute-Force
Anonymous	2026-06-18 03:32:17 (2 days ago)	Http Port:80 (http_status:403) - Agent:Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/53 ... show more Http Port:80 (http_status:403) - Agent:Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 show less	Web App Attack
🇷🇸 Scan	2026-06-18 02:59:48 (2 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇾 lns.bz	2026-06-18 02:31:34 (2 days ago)	Too many 404 requests [BY]	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.40.10

🇨🇳 182.61.35.204

🇺🇸 147.185.132.240

🇳🇱 89.21.67.165

🇳🇱 45.148.10.240

🇺🇸 35.237.126.118

🇺🇸 35.232.136.4

🇯🇵 8.216.84.209

🇷🇴 2.57.122.238

🇺🇸 172.202.117.179

🇺🇸 162.216.149.200

🇧🇪 158.173.67.190

🇩🇪 138.68.70.115

🇨🇳 120.82.92.97

🇫🇮 74.125.114.147

🇸🇬 43.134.130.2

🇺🇸 40.67.161.175

🇺🇸 35.211.194.217

🇧🇪 35.187.53.131

🇺🇸 35.185.27.240