AbuseIPDB » 16.52.210.128
16.52.210.128 was found in our database!
This IP was reported 18 times. Confidence of Abuse is 84%: ?
| ISP | Amazon Data Services Canada |
|---|---|
| Usage Type | Data Center/Web Hosting/Transit |
| ASN | AS16509 |
| Hostname(s) |
ec2-16-52-210-128.ca-central-1.compute.amazonaws.com |
| Domain Name | amazon.com |
| Country | ๐จ๐ฆ Canada |
| City | Montreal, Quebec |
IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.
IP Abuse Reports for 16.52.210.128:
This IP address has been reported a total of 18 times from 17 distinct sources. 16.52.210.128 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
| Reporter | IoA Timestamp (UTC) | Comment | Categories | |
|---|---|---|---|---|
| ๐บ๐ธ Starburst SysOp Team |
Host header is a numeric IP address. Pattern match "(?:^( (920350-iad5-2)
|
Hacking Bad Web Bot | ||
| ๐ฉ๐ช Trashware |
Nosy troll bot
|
Hacking Bad Web Bot Web App Attack | ||
| ๐บ๐ธ cazae |
|
Port Scan | ||
| ๐บ๐ธ RAP |
2026-07-05 17:51:19 UTC Unauthorized activity to TCP port 9200.
|
Port Scan | ||
| ๐ฎ๐ฉ PENJAGA.AUM |
16.52.210.128 - Attack: Possible XSS attack, script tag
|
Web App Attack SQL Injection Spoofing | ||
| ๐บ๐ธ xmission.com |
|
Port Scan | ||
| ๐บ๐ธ HamSammich |
|
Brute-Force Web App Attack | ||
| ๐บ๐ธ Cyber Crusader |
Hundreds of Attempts (at least) to Connect to and Access Firewall Ports
|
Port Scan Hacking Brute-Force | ||
| ๐บ๐ธ RAP |
2026-06-27 15:34:32 UTC Unauthorized activity to TCP port 9200.
|
Port Scan | ||
| ๐ง๐ท SOC Blue Team |
IPs get by Hunting on SIEM
|
Phishing Web Spam Port Scan Hacking | ||
| ๐ฉ๐ช Admins@FBN |
IPS:drop <match> dstport=9200
|
Brute-Force Exploited Host | ||
| ๐ต๐ฑ sefinek.net |
|
Port Scan | ||
| ๐ฉ๐ช ghostwarriors |
Webpage scraping
|
Brute-Force Bad Web Bot Web App Attack | ||
| ๐บ๐ธ cwytech |
Fleet-wide ban from the Ghostfleet ๐ป. Triggered by scenario: cwy/tactical-rmm-lockdown-high.
|
Hacking | ||
| ๐ฆ๐บ dyln |
Dyls honeypot brute-force: proto8 (1 total hits)
|
Brute-Force |
Showing 1 to 15 of 18 reports
Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown ๐ฉ