AbuseIPDB » 52.209.144.229

52.209.144.229 was found in our database!

This IP was reported 403 times. Confidence of Abuse is 16%: ?

16%

ISP	Amazon Data Services Ireland Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-209-144-229.eu-west-1.compute.amazonaws.com
Domain Name	amazon.com
Country	Ireland
City	Dublin, Leinster

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 52.209.144.229

Whois 52.209.144.229

IP Abuse Reports for 52.209.144.229:

This IP address has been reported a total of 403 times from 28 distinct sources. 52.209.144.229 was first reported on October 20th 2022, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
el-brujo	2025-06-21 21:17:53 (3 weeks ago)	Cloudflare WAF: Request Path: /descargas/ebooks%20Joas/ADVERSARY%20EMULATION%20MATRIX%20by%20Joas.pd ... show moreCloudflare WAF: Request Path: /descargas/ebooks%20Joas/ADVERSARY%20EMULATION%20MATRIX%20by%20Joas.pdf Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (compatible; digitalshadowsbot/1.0; +http://www.digitalshadows.com/bot/ Action: log Source: firewallManaged ASN Description: AMAZON-02 Country: IE Method: GET Timestamp: 2025-06-21T21:17:53Z ruleId: d68f8101f6e14e25aefcaea69c530a29. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
el-brujo	2025-06-20 06:56:11 (3 weeks ago)	Cloudflare WAF: Request Path: /descargas/manuales/Hacking%20y%20Seguridad%20informatica/Penetration% ... show moreCloudflare WAF: Request Path: /descargas/manuales/Hacking%20y%20Seguridad%20informatica/Penetration%20Testing%20and%20Network%20Analyzer%20manuals%20(PDF)/Nessus%205.0%20User%20Guide%20(July%2024,%202012%20Revision%2014).pdf Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (compatible; digitalshadowsbot/1.0; +http://www.digitalshadows.com/bot/ Action: log Source: firewallManaged ASN Description: AMAZON-02 Country: IE Method: GET Timestamp: 2025-06-20T06:56:11Z ruleId: d68f8101f6e14e25aefcaea69c530a29. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
el-brujo	2025-06-10 20:32:16 (1 month ago)	Cloudflare WAF: Request Path: /robots.txt Request Query: Host: ns2.elhacker.net userAgent: Mozilla/ ... show moreCloudflare WAF: Request Path: /robots.txt Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (compatible; digitalshadowsbot/1.0; +http://www.digitalshadows.com/bot/ Action: log Source: firewallManaged ASN Description: AMAZON-02 Country: IE Method: GET Timestamp: 2025-06-10T20:32:16Z ruleId: d68f8101f6e14e25aefcaea69c530a29. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
Anonymous	2025-06-06 01:17:57 (1 month ago)	Portscan	Port Scan
kk_it_man	2025-05-28 10:00:16 (1 month ago)	honey catch	Port Scan
Largnet SOC	2025-05-17 11:33:26 (1 month ago)	52.209.144.229 triggered Icarus honeypot on port 139. Check us out on github.	Port Scan Hacking
kk_it_man	2025-04-30 08:00:12 (2 months ago)	honey catch	Port Scan
Largnet SOC	2025-04-26 10:43:45 (2 months ago)	52.209.144.229 triggered Icarus honeypot on port 139. Check us out on github.	Port Scan Hacking
begou.dev	2025-04-25 10:29:44 (2 months ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/139	Port Scan
geeek	2025-04-06 05:11:06 (3 months ago)	Port scanning: 139 TCP Blocked	Port Scan
el-brujo	2025-04-02 22:20:12 (3 months ago)	Cloudflare WAF: Request Path: /descargas/manuales/Hacking%20y%20Seguridad%20informatica/Penetration% ... show moreCloudflare WAF: Request Path: /descargas/manuales/Hacking%20y%20Seguridad%20informatica/Penetration%20Testing%20and%20Network%20Analyzer%20manuals%20(PDF)/Nessus%205.0%20User%20Guide%20(July%2024,%202012%20Revision%2014).pdf Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (compatible; digitalshadowsbot/1.0; +http://www.digitalshadows.com/bot/ Action: log Source: firewallManaged ASN Description: AMAZON-02 Country: IE Method: GET Timestamp: 2025-04-02T22:20:12Z ruleId: d68f8101f6e14e25aefcaea69c530a29. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
Study Bitcoin 🤗	2025-03-26 00:12:44 (3 months ago)	Port probe to tcp/80 (http) [srv132]	Port Scan Bad Web Bot Web App Attack
BSG Webmaster	2025-03-22 07:35:29 (3 months ago)	Port scanning (Port 80)	Port Scan Hacking
TPI-Abuse	2025-03-16 06:27:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 52.209.144.229 (ec2-52-209-144-229.eu-west-1.co ... show more(mod_security) mod_security (id:210492) triggered by 52.209.144.229 (ec2-52-209-144-229.eu-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 16 02:27:30.689981 2025] [security2:error] [pid 4377:tid 4377] [client 52.209.144.229:40846] [client 52.209.144.229] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.149"] [uri "/helllo.htaccess"] [unique_id "Z9ZvUvOjvifeOtqxWBdDMgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Alexandr Kulkov	2025-03-13 04:57:16 (4 months ago)	52.209.144.229 triggered Icarus honeypot on port 139.	Port Scan Hacking

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩