JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.200.116.105

52.200.116.105 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-200-116-105.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.200.116.105

Whois 52.200.116.105

IP Abuse Reports for 52.200.116.105:

This IP address has been reported a total of 32 times from 30 distinct sources. 52.200.116.105 was first reported on June 29th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 bazter.pro	2026-06-30 12:37:27 (1 hour ago)	52.200.116.105 - - [30/Jun/2026:12:37:26 +0000] "GET /.env HTTP/1.1" 404 293 "-" "Mozilla/5.0 (Linux ... show more 52.200.116.105 - - [30/Jun/2026:12:37:26 +0000] "GET /.env HTTP/1.1" 404 293 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Port Scan Brute-Force Bad Web Bot Web App Attack SSH
🇬🇧 Marten Mark	2026-06-30 09:31:01 (4 hours ago)	52.200.116.105 - - [30/Jun/2026:09:31:00 +0000] "GET /.env HTTP/1.1" 301 166 "-" "Mozilla/5.0 (Linux ... show more 52.200.116.105 - - [30/Jun/2026:09:31:00 +0000] "GET /.env HTTP/1.1" 301 166 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Web App Attack Bad Web Bot
🇩🇪 BlueWire Hosting	2026-06-30 09:14:32 (4 hours ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇨🇦 internetworld	2026-06-30 08:37:46 (5 hours ago)	52.200.116.105 - - [30/Jun/2026:08:37:45 +0000] "GET /.env HTTP/1.1" 200 327 "-" "Mozilla/5.0 (Linux ... show more 52.200.116.105 - - [30/Jun/2026:08:37:45 +0000] "GET /.env HTTP/1.1" 200 327 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Bad Web Bot Web App Attack
🇩🇪 Phenix Info	2026-06-30 05:49:33 (7 hours ago)	SmallGuard.fr/Prestashop Forbidden Ext.	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-30 04:08:02 (9 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,m ... show more Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,mx01,mx02,mx03,wa02] show less	Bad Web Bot Web App Attack
🇪🇸 DXC-0	2026-06-30 03:01:16 (10 hours ago)	Multiple attacks on Honeypot servers	Web Spam Brute-Force Web App Attack Hacking
🇬🇧 thetomtaylor.co.uk	2026-06-30 01:05:03 (12 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa01]	Bad Web Bot Web App Attack
🇺🇸 mccsoft.io	2026-06-29 22:42:54 (15 hours ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-29 18:07:02 (19 hours ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-29 17:40:12 (20 hours ago)	Unauthorized access (80/tcp/http)	Port Scan Web App Attack
🇩🇪 Progetto1	2026-06-29 15:59:02 (21 hours ago)	Detected via HAProxyScanner at 2026-06-29 15:59:02 UTC on destination port WEB (80/443). Repeated sc ... show more Detected via HAProxyScanner at 2026-06-29 15:59:02 UTC on destination port WEB (80/443). Repeated scan / connection. show less	Port Scan Hacking Brute-Force
🇺🇸 jfz-abuse	2026-06-29 15:51:01 (21 hours ago)	fail2ban: apache-filepath-recon ...	Web App Attack
Anonymous	2026-06-29 15:41:55 (22 hours ago)	CrowdSec blocked IP for crowdsecurity/CVE-2017-9841 on vps_agent	Hacking
🇬🇧 Don Felip	2026-06-29 15:21:49 (22 hours ago)	Web Exploiter - Banned by Fail2Ban	Hacking Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 94.154.43.130

🇵🇰 206.135.172.57

🇺🇸 172.245.21.30

🇨🇳 117.60.24.57

🇮🇳 103.84.236.222

🇮🇱 94.159.134.224

🇸🇬 43.134.190.120

🇮🇩 36.64.211.93

🇺🇸 216.218.206.67

🇫🇮 147.185.133.92

🇵🇱 146.59.32.16

🇺🇸 129.153.145.135

🇭🇰 118.26.36.248

🇦🇪 109.177.118.96

🇦🇶 104.28.244.153

🇪🇸 83.55.17.100

🇺🇸 44.147.234.68

🇺🇸 35.169.206.177

🇸🇪 4.223.83.61

🇺🇸 216.25.89.142