JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.70.181.31

52.70.181.31 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 93%: ?

93%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-70-181-31.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.70.181.31

Whois 52.70.181.31

IP Abuse Reports for 52.70.181.31:

This IP address has been reported a total of 16 times from 15 distinct sources. 52.70.181.31 was first reported on June 28th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Justin F. \| AS204464	2026-06-30 11:58:47 (4 hours ago)	Honeypot [nx-infrastructure]: Unauthorized traffic on 21/ftpd Reported by: Justin F.	Port Scan
🇺🇸 ne1for23	2026-06-30 11:37:12 (4 hours ago)	Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" ... show more Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" resources improperly exposed externally and "protected" only by a lack of external DNS resolution. 52.70.181.31 - - [30/Jun/2026:11:37:11 +0000] "GET / HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" "-" show less	Hacking
🇺🇸 etu brutus	2026-06-30 09:24:05 (7 hours ago)	52.70.181.31 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
🇺🇸 xmission.com	2026-06-30 09:16:12 (7 hours ago)	Blocked by UFW (TCP on 13443) Source port: 43122 TTL: 121 Packet length: 60 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 13443) Source port: 43122 TTL: 121 Packet length: 60 TOS: 0x00 This report (for 52.70.181.31) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Mailguard-FRD	2026-06-30 07:03:41 (9 hours ago)	1782803021 - 06/30/2026 09:03:41 Host: 52.70.181.31/52.70.181.31 Port: 3389 TCP Blocked ...	Port Scan
🇩🇪 ITSNF	2026-06-29 21:20:07 (19 hours ago)	Blocked by os-abuseipdb; 3 hits, proto=tcp, ports=7443	Port Scan Hacking
🇦🇹 centurion	2026-06-29 21:16:52 (19 hours ago)	Blocked by UFW on ns03 [7443/tcp] Source port: 36132 TTL: 115 Packet length: 60 TOS: 0x00 This repo ... show more Blocked by UFW on ns03 [7443/tcp] Source port: 36132 TTL: 115 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Thomas Barth	2026-06-29 19:58:49 (20 hours ago)	2026-06-29T21:58:48.701868+02:00 server sshd-session[22709]: Connection closed by 52.70.181.31 port ... show more 2026-06-29T21:58:48.701868+02:00 server sshd-session[22709]: Connection closed by 52.70.181.31 port 54216 [preauth] ... show less	Brute-Force SSH
🇨🇦 polycoda	2026-06-29 19:44:42 (20 hours ago)	AutoBlock: 📡 Port Scan (Non Decay-Based)	Port Scan
🇨🇦 polycoda	2026-06-29 13:31:21 (1 day ago)	📡 Port scan	Hacking Web App Attack
🇮🇪 RoboSOC	2026-06-29 09:39:20 (1 day ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ec2-52-70-181-31.compute-1.amazonaws.co ... show more SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ec2-52-70-181-31.compute-1.amazonaws.com. show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-29 07:46:37 (1 day ago)	Honeypot hit: Unauthorized traffic on 21/ftpd	Port Scan
Anonymous	2026-06-29 02:28:10 (1 day ago)	2026-06-29T03:28:10.614116+01:00 vps kernel: [44440232.333816] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-29T03:28:10.614116+01:00 vps kernel: [44440232.333816] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=52.70.181.31 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=113 ID=2295 DF PROTO=TCP SPT=27450 DPT=7547 WINDOW=62727 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇧🇷 diego	2026-06-29 01:45:50 (1 day ago)	[probe-68-69] 2026-06-29 01:29:19, Client: 52.70.181.31, Protocol: 6, Unauthorized activity to HTTP: ... show more [probe-68-69] 2026-06-29 01:29:19, Client: 52.70.181.31, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇧🇷 somosbr	2026-06-29 01:30:17 (1 day ago)	[2026-06-29T01:30:17Z] Unsolicited scan from 52.70.181.31 to port 3232/tcp	Port Scan

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.238

🇭🇰 150.5.154.160

🇨🇳 125.122.36.17

🇧🇩 103.213.238.91

🇧🇷 45.188.54.180

🇧🇪 34.14.112.72

🇺🇸 195.184.76.219

🇧🇷 138.36.195.92

🇧🇬 79.124.56.238

🇬🇧 35.203.211.113

🇨🇦 2607:f8b0:4023:1803::127

🇨🇦 184.107.95.45

🇩🇪 162.19.230.21

🇨🇳 114.55.34.71

🇨🇳 106.75.237.200

🇳🇱 81.171.72.135

🇳🇱 80.57.100.57

🇳🇱 45.148.10.151

🇸🇬 45.78.194.242

🇺🇸 3.89.75.137