JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.15.191.16

52.15.191.16 was found in our database!

This IP was reported 59 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-15-191-16.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.15.191.16

Whois 52.15.191.16

IP Abuse Reports for 52.15.191.16:

This IP address has been reported a total of 59 times from 58 distinct sources. 52.15.191.16 was first reported on June 12th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 chronos	2026-06-15 07:14:26 (3 hours ago)	[AUTORAVALT][[15/06/2026 - 04:14:26 -03:00 UTC] Attack from [Amazon Technologies Inc.] [52.15.191.16 ... show more [AUTORAVALT][[15/06/2026 - 04:14:26 -03:00 UTC] Attack from [Amazon Technologies Inc.] [52.15.191.16][ec2-52-15-191-16.us-east-2.compute.amazonaws.com] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access the server. Spoofing -> Email] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇳🇴 tmiland	2026-06-13 18:51:15 (1 day ago)	Suricata Detected 438 attacks from 52.15.191.16.; ET SCAN MS Terminal Server Traffic on Non-standard ... show more Suricata Detected 438 attacks from 52.15.191.16.; ET SCAN MS Terminal Server Traffic on Non-standard Port; IP: 52.15.191.16; Ports: 59504; Direction: to_server; Trigger: SCAN; Category: Attempted Information Leak; Severity: 2 show less	Port Scan
🇩🇪 excill	2026-06-13 03:06:50 (2 days ago)	Honeypot mesh observed 640 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇺🇸 natdem.org	2026-06-13 00:00:21 (2 days ago)	Web: Empty user agent + errors	Web App Attack Hacking
🇩🇪 EnthecSolutions	2026-06-12 22:00:57 (2 days ago)	Detected by Enthec Solutions. \| Attempts: 66 in 24h \| Target port: 4444	Port Scan Hacking
🇳🇿 Antinson	2026-06-12 20:06:35 (2 days ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇮🇩 PENJAGA.AUM	2026-06-12 19:51:00 (2 days ago)	52.15.191.16 - Attack: Possible XSS attack, js event handler	Web App Attack SQL Injection Spoofing
🇩🇪 Enno	2026-06-12 19:44:43 (2 days ago)	P04::Fail2Ban: automated bot scanning / credential probing detected.	Web App Attack Bad Web Bot
🇺🇸 nyt	2026-06-12 19:30:55 (2 days ago)	Bad Web Bot, Web App Attack, ai-sus: Unusual user agent for a scan request	Bad Web Bot Web App Attack
🇺🇸 zwebvigil	2026-06-12 19:30:29 (2 days ago)	52.15.191.16 [12/Jun/2026:12:28:47 -0700] "\x03" 400 226 "-" port=65256 "-" "-" "-" "-" 162 52.15.1 ... show more 52.15.191.16 [12/Jun/2026:12:28:47 -0700] "\x03" 400 226 "-" port=65256 "-" "-" "-" "-" 162 52.15.191.16 [12/Jun/2026:12:29:13 -0700] "\x16\x03\x01" 400 226 "-" port=33628 "-" "-" "-" "-" 94 52.15.191.16 [12/Jun/2026:12:29:39 -0700] "\x16\x03\x01\x01" 400 226 "-" port=13286 "-" "-" "-" "-" 83 52.15.191.16 [12/Jun/2026:12:30:29 -0700] "\n" 400 226 "-" port=61924 "- show less	Web App Attack
Anonymous	2026-06-12 19:30:03 (2 days ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇫🇷 pm33	2026-06-12 19:29:38 (2 days ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇮🇩 securejdprop	2026-06-12 19:29:16 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET SCAN MS Termina ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET SCAN MS Terminal Server Traffic on Non-standard Port). Ip 52.15.191.16 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-12 19:29:14.789802263 +0000 UTC show less	Hacking Web App Attack
🇺🇸 Hulk Smash	2026-06-12 19:15:59 (2 days ago)	Automated report, webserver-auth troll for exploits and/or SSH Attempts	Brute-Force Hacking
Anonymous	2026-06-12 19:15:19 (2 days ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot

Showing 1 to 15 of 59 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a01:599:701:c700:2340:bf46:b2d:650c

🇺🇸 206.135.249.197

🇺🇦 193.27.208.30

🇮🇳 103.211.171.44

🇳🇱 85.10.133.12

🇷🇺 81.177.48.219

🇷🇺 81.177.33.4

🇺🇸 66.132.172.116

🇧🇪 34.14.122.221

🇻🇳 14.163.78.49

🇰🇷 220.127.148.6

🇺🇸 200.10.44.111

🇪🇹 196.189.155.89

🇷🇺 188.170.48.178

🇵🇭 175.176.66.17

🇧🇷 170.78.229.146

🇺🇸 165.22.8.158

🇺🇸 147.185.132.55

🇸🇬 103.195.190.165

🇸🇬 68.183.191.143