JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.14.237.252

52.14.237.252 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-14-237-252.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.14.237.252

Whois 52.14.237.252

IP Abuse Reports for 52.14.237.252:

This IP address has been reported a total of 34 times from 29 distinct sources. 52.14.237.252 was first reported on June 18th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 boxed-it	2026-06-20 11:26:28 (4 days ago)	GET /.git/HEAD (Tarpitted for 1d15h8m29s, wasted 8.06MB)	Web App Attack
🇫🇷 service Informatique	2026-06-19 04:00:37 (5 days ago)	/___proxy_subdomain_whm/login	Web App Attack
🇷🇸 Scan	2026-06-19 00:18:02 (5 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇷 SOCBR	2026-06-18 23:52:27 (5 days ago)	IPS: Linux System Files Information Disclosure.	Hacking
🇩🇪 ghostwarriors	2026-06-18 23:50:22 (5 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Selckie	2026-06-18 23:39:03 (5 days ago)	fail2ban: NGINX unusual impact	Web App Attack
🇬🇧 Apache	2026-06-18 23:14:41 (5 days ago)	(mod_security) mod_security (id:920350) triggered by 52.14.237.252 (US/United States/ec2-52-14-237-2 ... show more (mod_security) mod_security (id:920350) triggered by 52.14.237.252 (US/United States/ec2-52-14-237-252.us-east-2.compute.amazonaws.com): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇷🇺 lns.bz	2026-06-18 22:27:29 (5 days ago)	Too many 404 requests [RU.VDS]	Web App Attack
🇦🇺 FireGuard Server	2026-06-18 22:05:05 (5 days ago)	Blocked by OPNsense firewall; 7 hits, proto=tcp, ports=2077,2078,2082,2083,2086,2095,2096	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-06-18 20:52:39 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 52.14.237.252 (ec2-52-14-237-252.us-east-2.comp ... show more (mod_security) mod_security (id:210492) triggered by 52.14.237.252 (ec2-52-14-237-252.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 16:52:36.362739 2026] [security2:error] [pid 27152:tid 27152] [client 52.14.237.252:56786] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.14"] [uri "/.git/HEAD"] [unique_id "ajRalJQgYj6a-Q7qUL5OlgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 festigf	2026-06-18 20:19:41 (5 days ago)	Attacco rilevato da Fail2Ban su Nginx	Brute-Force Web App Attack
🇺🇸 xmission.com	2026-06-18 19:20:22 (5 days ago)	Blocked by UFW (TCP on 2095) Source port: 42526 TTL: 58 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2095) Source port: 42526 TTL: 58 Packet length: 60 TOS: 0x00 This report (for 52.14.237.252) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 globcom	2026-06-18 19:01:30 (5 days ago)	General hacking/exploits/scanning	Web App Attack
🇺🇦 RatCommander	2026-06-18 18:49:45 (5 days ago)	CrowdSec: crowdsecurity/http-probing	Port Scan Web App Attack
🇫🇷 HerrWolf	2026-06-18 18:15:06 (5 days ago)	CrowdSec Detection: crowdsecurity/http-sensitive-files	Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.18

🇨🇼 190.88.4.168

🇧🇷 186.201.233.18

🇩🇪 130.12.180.51

🇧🇩 103.112.62.144

🇲🇾 60.54.104.131

🇳🇱 45.148.10.151

🇬🇧 34.39.126.31

🇺🇸 18.189.74.1

🇺🇸 104.243.35.104

🇧🇩 103.183.62.3

🇺🇸 100.56.242.5

🇺🇸 91.230.168.190

🇩🇪 47.245.141.91

🇳🇱 195.178.110.26

🇩🇪 185.242.3.195

🇨🇳 112.19.161.224

🇺🇸 65.49.1.20

🇸🇬 43.160.237.65

🇺🇸 34.223.110.196