JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.71.109.140

52.71.109.140 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 0%: ?

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-71-109-140.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.71.109.140

Whois 52.71.109.140

IP Abuse Reports for 52.71.109.140:

This IP address has been reported a total of 52 times from 41 distinct sources. 52.71.109.140 was first reported on April 1st 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-01 06:17:05 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=94, sources=1)	Hacking Brute-Force SSH
🇳🇱 homeshowdomain.nl	2026-04-02 21:59:04 (2 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-01. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-04-01 22:03:01 (2 months ago)	Auto-ban: >3000 req/min op 2026-04-01	Web App Attack SSH Hacking
Anonymous	2026-04-01 12:18:29 (2 months ago)	"GET /.git/config HTTP/1.1"	Hacking Web App Attack
Anonymous	2026-04-01 06:55:20 (2 months ago)	Portscan: TCP/443 (4x), TCP/80 (3x)	Port Scan
🇬🇧 openstrike.co.uk	2026-04-01 05:14:13 (2 months ago)	2 attacks on VC URLs: GET /.git/config HTTP/1.1	Hacking
Anonymous	2026-04-01 05:03:52 (2 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Clou ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Cloud secrets probing show less	Bad Web Bot Web App Attack
Anonymous	2026-04-01 04:32:13 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
Anonymous	2026-04-01 04:05:06 (2 months ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-04-01 04:01:43 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 52.71.109.140 (ec2-52-71-109-140.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 52.71.109.140 (ec2-52-71-109-140.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 00:01:37.593834 2026] [security2:error] [pid 5579:tid 5579] [client 52.71.109.140:40436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bethanneblue.net"] [uri "/.git/config"] [unique_id "acyYoXtxZeXKePsqA5WMlwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-01 03:34:44 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 52.71.109.140 (ec2-52-71-109-140.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 52.71.109.140 (ec2-52-71-109-140.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 23:34:36.846295 2026] [security2:error] [pid 2993:tid 2993] [client 52.71.109.140:47188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yerevanpress.am"] [uri "/.git/config"] [unique_id "acySTHjH6e1zqlY_wBGYOQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-01 03:32:14 (2 months ago)	52.71.109.140 - - [01/Apr/2026:05:32:13 +0200] "GET /.git/config HTTP/1.1" 403 4981 "-" "Mozilla/5.0 ... show more 52.71.109.140 - - [01/Apr/2026:05:32:13 +0200] "GET /.git/config HTTP/1.1" 403 4981 "-" "Mozilla/5.0 (Windows NT 6.2; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" ... show less	Web App Attack
🇵🇱 sefinek.net	2026-04-01 03:09:23 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /.git/config \| UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/125.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 IROK	2026-04-01 03:06:29 (2 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
🇺🇸 TPI-Abuse	2026-04-01 03:00:34 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 52.71.109.140 (ec2-52-71-109-140.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 52.71.109.140 (ec2-52-71-109-140.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 23:00:28.407420 2026] [security2:error] [pid 13227:tid 13227] [client 52.71.109.140:54572] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "judithchallender.com"] [uri "/.git/config"] [unique_id "acyKTLGX20ALx6-W2Y4kVgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 185.200.116.70

🇺🇸 162.216.150.82

🇧🇬 79.124.59.78

🇨🇳 58.45.56.9

🇳🇱 45.148.10.183

🇺🇸 2605:59c8:2468:b508:1087:6086:f5fa:496

🇩🇪 217.154.9.253

🇭🇰 152.32.212.41

🇩🇪 109.91.4.177

🇺🇦 77.87.40.114

🇺🇸 67.140.7.25

🇺🇸 66.94.100.2

🇬🇧 35.203.211.89

🇳🇱 185.223.235.46

🇭🇰 152.32.130.136

🇳🇱 77.83.39.55

🇳🇱 45.153.34.16

🇺🇸 13.89.124.221

🇧🇷 201.131.29.67

🇭🇰 129.226.174.80