JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.90.21.15

52.90.21.15 was found in our database!

This IP was reported 52 times. Confidence of Abuse is 0%: ?

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-90-21-15.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.90.21.15

Whois 52.90.21.15

IP Abuse Reports for 52.90.21.15:

This IP address has been reported a total of 52 times from 45 distinct sources. 52.90.21.15 was first reported on September 2nd 2025, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 ISPLtd	2025-09-07 10:54:38 (8 months ago)	52.90.21.15 71.7.236.113:443 - URL:/.git/config [02/Sep/2025:16:23:38 -0300] "GET /.git/config 52.90 ... show more 52.90.21.15 71.7.236.113:443 - URL:/.git/config [02/Sep/2025:16:23:38 -0300] "GET /.git/config 52.90.21.15 71.7.236.113:443 - URL:/.git/config [02/Sep/2025:16:37:04 -0300] "GET /.git/config ... show less	Hacking Web App Attack
🇧🇪 sid3windr	2025-09-04 09:02:00 (9 months ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇨🇳 ThreatBook.io	2025-09-03 22:25:26 (9 months ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/52.90.21.15 2025-09 ... show more ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/52.90.21.15 2025-09-03 02:03:33 / show less	Web App Attack
🇨🇦 polycoda	2025-09-03 10:57:09 (9 months ago)	📡 Port scan	Hacking Web App Attack
🇺🇸 FamilysWebSite	2025-09-03 09:37:00 (9 months ago)	l9tcpid/v1.1.0	Hacking Web App Attack
🇫🇷 service Informatique	2025-09-03 04:00:37 (9 months ago)	/.git	Web App Attack
🇫🇷 Murazaki	2025-09-02 22:04:17 (9 months ago)	_ 52.90.21.15 - - [02/Sep/2025:19:56:11 +0200] "GET / HTTP/1.1" 400 150 "-" "-" "-" ...	Hacking
🇫🇷 JPPO	2025-09-02 21:47:02 (9 months ago)	Port 80/443 : GET /.git or /.git/HEAD, /.git/config ... /.DS_store	Web App Attack
🇩🇪 Blexyel	2025-09-02 20:11:17 (9 months ago)	52.90.21.15 - - [02/Sep/2025:20:11:15 +0000] "GET /.git/config HTTP/1.1" 404 146 "-" "l9explore/1.2. ... show more 52.90.21.15 - - [02/Sep/2025:20:11:15 +0000] "GET /.git/config HTTP/1.1" 404 146 "-" "l9explore/1.2.2" ... show less	Brute-Force Web App Attack
🇨🇦 Anymous	2025-09-02 20:08:01 (9 months ago)	GET / HTTP/1.1 400 4586 "-" "-"	Port Scan Web App Attack
🇺🇸 MPL	2025-09-02 20:02:05 (9 months ago)	tcp/80 (2 or more attempts)	Port Scan
🇩🇪 v1nc	2025-09-02 19:59:43 (9 months ago)	52.90.21.15 - - [02/Sep/2025:19:59:42 +0000] "\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03`\x19\x9E\ ... show more 52.90.21.15 - - [02/Sep/2025:19:59:42 +0000] "\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03`\x19\x9E\x19\x1Em\xB7\x12\x9FN\x8F8P~4\x98\x00\xE2\xC8m\xB7Fl\xC0\xE1U\xB7c\xBF'.\| \xC92\x9B\xC6\xDAu\xA0\xFB\xC4\x94\x165\x1F\xB2 &Z\xF6N\x0B\xCD\xB6\x16s\xAC\x9D\xD6\xBF+\xEBn@\x00&\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-" ... show less	Hacking
Anonymous	2025-09-02 19:56:40 (9 months ago)	Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1	Hacking Web App Attack
🇪🇸 el-brujo	2025-09-02 19:47:56 (9 months ago)	02/Sep/2025:21:47:55.899301 +0200Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 02/Sep/2025:21:47:55.899301 +0200Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 52.90.21.15] ModSecurity: Warning. Matched phrase "/.git/" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.git/ found within REQUEST_FILENAME: /.git/config"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "91.126.217.153"] [uri "/.git/config"] [unique_id "aLdJ68O7d2QKPOrQNyPkQAAAAY0"] ... show less	Hacking Web App Attack
🇺🇸 Rip	2025-09-02 19:47:06 (9 months ago)	Unauthorized scanners are forbidden. ...	Port Scan Brute-Force Bad Web Bot

Showing 1 to 15 of 52 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.196.50.91

🇺🇿 194.107.115.199

🇳🇱 185.242.226.58

🇮🇳 182.95.128.195

🇩🇪 164.92.161.148

🇷🇺 81.30.212.94

🇨🇳 43.248.108.238

🇮🇩 43.245.249.251

🇺🇸 204.48.22.120

🇺🇸 184.105.247.231

🇺🇸 162.216.149.225

🇲🇦 154.144.225.226

🇺🇸 138.68.243.18

🇱🇹 45.227.254.170

🇺🇸 20.65.195.33

🇬🇧 193.163.125.85

🇬🇧 185.247.137.251

🇮🇩 182.16.252.18

🇩🇪 176.65.132.24

🇮🇩 163.7.9.84