JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.6.59.95

52.6.59.95 was found in our database!

This IP was reported 71 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-6-59-95.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.6.59.95

Whois 52.6.59.95

IP Abuse Reports for 52.6.59.95:

This IP address has been reported a total of 71 times from 50 distinct sources. 52.6.59.95 was first reported on May 28th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 6kilowatti	2026-06-04 12:27:11 (4 hours ago)	2026-06-04T15:27:10.322108+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-04T15:27:10.322108+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=52.6.59.95 DST=5.61.88.83 LEN=60 TOS=0x00 PREC=0x00 TTL=113 ID=20994 DF PROTO=TCP SPT=39694 DPT=21 WINDOW=62727 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇨🇳 さいとうあすか	2026-06-04 11:16:33 (5 hours ago)	Jun 4 19:16:31 pbs sshd[505143]: Connection closed by 52.6.59.95 port 44634 [preauth] ...	Brute-Force SSH
Anonymous	2026-06-04 10:42:10 (6 hours ago)	Unauthorized access (tcp/3389/rdp)	Port Scan
🇩🇪 ISPLtd	2026-06-04 04:00:14 (13 hours ago)	Jun 4 01:00:11 52.6.59.95 TCP SPT=35632 DPT=1245 SYN Jun 4 01:00:12 52.6.59.95 TCP SPT=35632 DPT=1 ... show more Jun 4 01:00:11 52.6.59.95 TCP SPT=35632 DPT=1245 SYN Jun 4 01:00:12 52.6.59.95 TCP SPT=35632 DPT=1245 SYN Jun 4 01:00:14 52.6.59.95 TCP SPT=35632 DPT=1245 ... show less	Port Scan
🇵🇱 dcnet	2026-06-03 22:00:09 (19 hours ago)	FortiGate detected DOS attack from IPv4 address 52.6.59.95	DDoS Attack
🇳🇱 BIV	2026-06-03 21:13:23 (19 hours ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 12443. ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 12443. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇺🇸 rellim.com	2026-06-03 20:08:58 (21 hours ago)	Jun 3 02:13:14 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08 ... show more Jun 3 02:13:14 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=52.6.59.95 DST=204.17.205.254 LEN=60 TOS=0x00 PREC=0x00 TTL=109 ID=2957 DF PROTO=TCP SPT=62240 DPT=9200 WINDOW=62727 RES=0x00 SYN URGP=0 Jun 3 02:13:15 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=52.6.59.95 DST=204.17.205.254 LEN=60 TOS=0x00 PREC=0x00 TTL=109 ID=2958 DF PROTO=TCP SPT=62240 DPT=9200 WINDOW=62727 RES=0x00 SYN URGP=0 Jun 3 02:13:17 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=52.6.59.95 DST=204.17.205.254 LEN=60 TOS=0x00 PREC=0x00 TTL=109 ID=2959 DF PROTO=TCP SPT=62240 DPT=9200 WINDOW=62727 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-06-03 20:00:26 (21 hours ago)	52.6.59.95 - - [03/Jun/2026:22:00:25 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0 ... show more 52.6.59.95 - - [03/Jun/2026:22:00:25 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" US ... show less	Port Scan
Anonymous	2026-06-03 19:59:42 (21 hours ago)	Try to connect to Port_Scan_8443_stealth	Port Scan
🇩🇪 iNetWorker	2026-06-03 08:30:56 (1 day ago)	firewall-block, port(s): 12443/tcp	Port Scan
🇲🇹 neilcaruana	2026-06-03 08:09:55 (1 day ago)	Sentinel detected an attack on port [8443]	Hacking
🇧🇷 chronos	2026-06-03 07:31:50 (1 day ago)	Possible malicious scan or exploit attempt on database services. \| Port: 9200 \| Proto: TCP \| Locatio ... show more Possible malicious scan or exploit attempt on database services. \| Port: 9200 \| Proto: TCP \| Location: United States, Ashburn show less	Hacking Port Scan SQL Injection Exploited Host
🇧🇷 W8C Dev	2026-06-03 05:08:38 (1 day ago)	Jun 3 02:08:37 vmori-manager-1 sshd[278697]: Connection closed by 52.6.59.95 port 41912 [preauth] . ... show more Jun 3 02:08:37 vmori-manager-1 sshd[278697]: Connection closed by 52.6.59.95 port 41912 [preauth] ... show less	Brute-Force SSH
🇨🇿 kronos	2026-06-03 03:12:42 (1 day ago)	IDS: FlowIntel scan-like source \| SID:9900001 \| session_sigs:607 \| alerts5m:607	Port Scan
🇯🇵 mkaraki	2026-06-02 22:48:13 (1 day ago)	1780440491 # Service_probe # SIGNATURE_SEND # source_ip:52.6.59.95 # dst_port:22 ...	Port Scan

Showing 1 to 15 of 71 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇪 196.196.253.18

🇳🇱 195.178.110.30

🇳🇱 172.253.95.221

🇩🇪 130.12.181.106

🇺🇸 47.254.50.3

🇫🇷 2001:41d0:33d:9200::40d

🇳🇱 176.65.139.130

🇩🇪 130.12.181.97

🇻🇳 103.61.44.43

🇦🇹 94.198.41.242

🇧🇷 205.210.31.235

🇺🇸 205.210.31.87

🇳🇱 172.94.9.169

🇮🇹 93.92.77.103

🇫🇷 91.231.89.110

🇺🇸 35.212.248.178

🇧🇷 186.233.118.22

🇧🇷 179.60.143.137

🇧🇷 177.30.64.65

🇺🇾 167.58.231.34