JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.53.216.160

52.53.216.160 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-52-53-216-160.us-west-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.53.216.160

Whois 52.53.216.160

IP Abuse Reports for 52.53.216.160:

This IP address has been reported a total of 30 times from 25 distinct sources. 52.53.216.160 was first reported on February 22nd 2025, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 gu-alvareza	2026-06-18 07:05:33 (18 hours ago)	Spring.Boot.Actuator.Unauthorized.Access	Brute-Force
🇩🇪 iNetWorker	2026-06-18 05:11:01 (20 hours ago)	firewall-block, port(s): 2077/tcp, 2083/tcp	Port Scan
🇹🇷 Threat.live	2026-06-18 05:05:04 (20 hours ago)	Suspicious Connection Attempts	Brute-Force
Anonymous	2026-06-18 04:08:50 (21 hours ago)	Portscan: TCP/2083, TCP/2095, TCP/2086, TCP/2078, TCP/2082, TCP/2096, TCP/2077	Port Scan
🇬🇧 wiredalter	2026-06-18 04:06:39 (21 hours ago)	Blocked by fail2ban on gVPS [2086/tcp] Source Port: 36582 TTL: 57 Packet Length: 60 TOS: 0x00 Analy ... show more Blocked by fail2ban on gVPS [2086/tcp] Source Port: 36582 TTL: 57 Packet Length: 60 TOS: 0x00 Analyzed by https://ip.wiredalter.com show less	Brute-Force SSH
🇫🇷 service Informatique	2026-06-18 04:00:37 (21 hours ago)	/___proxy_subdomain_whm/login	Web App Attack
🇦🇹 centurion	2026-06-18 03:08:04 (22 hours ago)	Unauthorized attempt on cendev [2096/tcp] Source port: 45840 TTL: 58 Packet length: 60 TOS: 0x00 htt ... show more Unauthorized attempt on cendev [2096/tcp] Source port: 45840 TTL: 58 Packet length: 60 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇵 radheykrishna.com.np	2026-06-18 02:45:10 (22 hours ago)	Jun 18 08:30:09 kernel: [5240548.684541] [UFW BLOCK] IN=ens160 OUT= SRC=52.53.216.160 LEN=60 TOS=0x0 ... show more Jun 18 08:30:09 kernel: [5240548.684541] [UFW BLOCK] IN=ens160 OUT= SRC=52.53.216.160 LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID=9102 DF PROTO=TCP SPT=42126 DPT=2096 WINDOW=62727 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 Choice Tech LLC	2026-06-18 01:55:01 (23 hours ago)	Blocked by OPNsense firewall; 3 hits, proto=tcp, ports=2078,2082,2083	Port Scan Hacking
🇺🇸 MPL	2026-06-18 01:03:23 (1 day ago)	tcp port scan (7 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-18 00:44:34 (1 day ago)	tcp port scan (14 or more attempts)	Port Scan
🇷🇸 Scan	2026-06-18 00:34:29 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇾 lns.bz	2026-06-17 23:54:37 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 23:52:14 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 52.53.216.160 (ec2-52-53-216-160.us-west-1.comp ... show more (mod_security) mod_security (id:210492) triggered by 52.53.216.160 (ec2-52-53-216-160.us-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 19:52:10.310482 2026] [security2:error] [pid 24371:tid 24371] [client 52.53.216.160:56844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.169"] [uri "/.git/HEAD"] [unique_id "ajMzKmolsHNzBhHsH8jA3AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Ocean Ascents	2026-06-17 23:48:28 (1 day ago)	Probe for vulnerabilities. Path attempted: /wp-config.php	Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 2001:41d0:305:2100::95ed

🇰🇷 221.162.3.119

🇧🇷 205.210.31.198

🇺🇸 195.184.76.247

🇨🇳 123.14.121.145

🇨🇳 115.231.78.11

🇨🇳 115.231.78.3

🇨🇳 113.206.147.204

🇰🇷 112.175.29.94

🇺🇸 104.236.53.110

🇨🇳 60.208.178.124

🇨🇳 58.212.237.217

🇺🇸 20.163.15.247

🇸🇬 2a04:c607:33:12:9999::143

🇬🇧 194.50.235.136

🇧🇷 187.17.224.139

🇬🇧 176.20.168.98

🇨🇳 175.19.75.128

🇻🇳 171.234.13.140

🇮🇳 139.59.94.55