JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.152.20.95

54.152.20.95 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 16%: ?

16%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-152-20-95.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.152.20.95

Whois 54.152.20.95

IP Abuse Reports for 54.152.20.95:

This IP address has been reported a total of 3 times from 2 distinct sources. 54.152.20.95 was first reported on June 21st 2026, and the most recent report was 58 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 08:07:06 (58 minutes ago)	(mod_security) mod_security (id:210492) triggered by 54.152.20.95 (ec2-54-152-20-95.compute-1.amazon ... show more (mod_security) mod_security (id:210492) triggered by 54.152.20.95 (ec2-54-152-20-95.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 04:07:00.127542 2026] [security2:error] [pid 6113:tid 6113] [client 54.152.20.95:46036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dpproductionhk.dppc.studio"] [uri "/.git/HEAD"] [unique_id "ajebpMQE3Wkx7Moc8aEF2gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 07:02:16 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 54.152.20.95 (ec2-54-152-20-95.compute-1.amazon ... show more (mod_security) mod_security (id:210492) triggered by 54.152.20.95 (ec2-54-152-20-95.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 03:02:09.228921 2026] [security2:error] [pid 17027:tid 17027] [client 54.152.20.95:39588] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jimpharris.com"] [uri "/.git/HEAD"] [unique_id "ajeMcQEEzNlAumupUsNSaAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mw	2026-06-21 00:20:07 (8 hours ago)	GET /search%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2fetc%2f.%2fpasswd HTTP/1 ... show more GET /search%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2f.%252e%2fetc%2f.%2fpasswd HTTP/1.1 show less	Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.253.9.49

🇵🇰 175.107.3.68

🇮🇳 117.213.144.255

🇦🇹 109.70.100.11

🇮🇩 103.147.237.208

🇺🇸 54.145.221.182

🇨🇳 42.230.181.126

🇺🇸 3.85.225.13

🇺🇸 165.154.163.112

🇮🇳 152.32.158.219

🇬🇧 35.203.210.125

🇺🇸 2604:a940:302:118:0:3f::

🇳🇱 185.224.128.16

🇩🇪 167.94.146.59

🇺🇸 104.232.79.58

🇮🇳 103.176.16.0

🇮🇹 93.92.79.195

🇱🇹 81.30.98.158

🇺🇸 74.48.84.234

🇧🇷 45.140.192.187