JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.14.97.224

52.14.97.224 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-14-97-224.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.14.97.224

Whois 52.14.97.224

IP Abuse Reports for 52.14.97.224:

This IP address has been reported a total of 35 times from 35 distinct sources. 52.14.97.224 was first reported on June 10th 2026, and the most recent report was 19 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Trashware	2026-06-10 13:22:36 (19 minutes ago)	Malicious connection attempt	Hacking Bad Web Bot Web App Attack
🇬🇧 seniorlinuxadmin	2026-06-10 13:13:48 (28 minutes ago)	52.14.97.224 - - [10/Jun/2026:14:13:46 +0100] "GET / HTTP/2.0" 403 158 "-" "visionheight.com/scan Mo ... show more 52.14.97.224 - - [10/Jun/2026:14:13:46 +0100] "GET / HTTP/2.0" 403 158 "-" "visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36" show less	Port Scan Web App Attack
🇧🇪 loloji	2026-06-10 13:12:37 (29 minutes ago)	Malformed HTTP requests (scanning/probing) detected by Fail2Ban [jail: nginx-bad-request]. Origin: D ... show more Malformed HTTP requests (scanning/probing) detected by Fail2Ban [jail: nginx-bad-request]. Origin: Dublin, United States (Amazon.com, Inc.). show less	Brute-Force Web App Attack
Anonymous	2026-06-10 13:10:59 (31 minutes ago)	2026-06-10 09:06:46 52.14.97.224:22666 WARNING: Bad encapsulated packet length from peer (18245), wh ... show more 2026-06-10 09:06:46 52.14.97.224:22666 WARNING: Bad encapsulated packet length from peer (18245), which must be > 0 and <= 1768 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...] 2026-06-10 09:07:05 52.14.97.224:10890 WARNING: Bad encapsulated packet length from peer (18245), which must be > 0 and <= 1768 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...] 2026-06-10 09:10:57 52.14.97.224:37974 WARNING: Bad encapsulated packet length from peer (5635), which must be > 0 and <= 1768 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...] ... show less	Port Scan Hacking
🇭🇺 Geppetto	2026-06-10 13:07:39 (34 minutes ago)	Connection to IP instead of Domain-Name, HTTP request to HTTPS port [10/Jun/2026:15:07:39 +0200] 400 ... show more Connection to IP instead of Domain-Name, HTTP request to HTTPS port [10/Jun/2026:15:07:39 +0200] 400 - GET http "/" [Client 52.14.97.224] [Length 654] [Gzip -] "visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36" "-" ... show less	Bad Web Bot Web App Attack
🇭🇰 www.winos.me	2026-06-10 13:07:28 (35 minutes ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇺🇸 kosada.com	2026-06-10 13:06:33 (35 minutes ago)	Web vulnerability probing: / (bogus vhost/SNI)	Web App Attack
Anonymous	2026-06-10 12:59:26 (43 minutes ago)	Heralding honeypot: socks5 on port 1080	Brute-Force Hacking
🇺🇸 aks4226	2026-06-10 12:58:09 (44 minutes ago)	Attacking common web applications. (n01)	Web App Attack
🇵🇱 Roper123	2026-06-10 12:51:12 (51 minutes ago)	Web app exploits	Web App Attack
Anonymous	2026-06-10 12:38:43 (1 hour ago)	SIEM ALERT AUTO REPORT	Email Spam
🇪🇸 el-brujo	2026-06-10 12:32:17 (1 hour ago)	06/10/2026-14:32:17.642403 52.14.97.224 Protocol: 6 GPL INFO SOCKS Proxy attempt	Port Scan
🇫🇷 RazorServerFR	2026-06-10 12:32:02 (1 hour ago)	1781094721 - 06/10/2026 14:32:01 Host: 52.14.97.224/52.14.97.224 Port: 1080 TCP Blocked	Port Scan
🇧🇬 MazenHost	2026-06-10 12:31:42 (1 hour ago)	1781094701 - 06/10/2026 15:31:41 Host: 52.14.97.224/52.14.97.224 Port: 1080 TCP Blocked ...	Port Scan
🇫🇷 pm33	2026-06-10 12:20:57 (1 hour ago)	Unauthorized connections HTTP 403	Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 222.254.178.97

🇲🇽 201.130.218.205

🇬🇧 185.247.137.78

🇨🇳 171.114.230.5

🇧🇬 79.124.62.134

🇳🇱 45.148.10.200

🇳🇱 45.142.193.8

🇺🇸 24.5.244.85

🇨🇳 183.191.123.210

🇮🇳 182.95.228.102

🇳🇱 176.65.139.11

🇺🇸 173.255.226.194

🇺🇸 172.110.223.195

🇭🇰 118.193.37.241

🇨🇳 112.103.72.128

🇳🇱 95.85.226.199

🇸🇬 43.134.0.85

🇮🇳 42.106.236.54

🇺🇸 20.169.49.249

🇺🇸 20.65.201.12