JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.87.171.66

52.87.171.66 was found in our database!

This IP was reported 648 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-87-171-66.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.87.171.66

Whois 52.87.171.66

IP Abuse Reports for 52.87.171.66:

This IP address has been reported a total of 648 times from 221 distinct sources. 52.87.171.66 was first reported on April 29th 2021, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 slartybartfast69420blazit	2026-06-25 20:40:47 (7 hours ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-23 20:41:22 (2 days ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-21 20:43:00 (4 days ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-20 20:42:54 (5 days ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-18 20:44:14 (1 week ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-16 20:44:56 (1 week ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-14 20:46:52 (1 week ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-13 20:46:45 (1 week ago)	Fail2ban picked up 52.87.171.66 attacking nginx	Web App Attack
🇫🇮 nNordic	2026-06-09 09:15:56 (2 weeks ago)	Connection attempt blocked by IDS/IPS from 52.87.171.66/32	Hacking
🇦🇷 Bruno	2026-05-28 02:04:33 (4 weeks ago)	Port Scanner: 52.87.171.66	Port Scan
🇦🇹 Pingger Shikkoken	2026-05-27 23:28:40 (4 weeks ago)	2026-05-27T23:28:40+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-05-27T23:28:40+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=52.87.171.66 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=120 ID=12414 DF PROTO=TCP SPT=33200 DPT=12443 WINDOW=62727 RES=0x00 SYN URGP=0 2026-05-27T23:28:41+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=52.87.171.66 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=120 ID=12415 DF PROTO=TCP SPT=33200 DPT=12443 WINDOW=62727 RES=0x00 SYN URGP=0 2026-05-27T23:28:43+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=52.87.171.66 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=120 ID=12416 DF PROTO=TCP SPT=33200 DPT=12443 WINDOW=62727 RES=0x00 SYN URGP=0 show less	Hacking
🇩🇪 anycast_ac	2026-05-27 18:36:27 (4 weeks ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/9200 (generic). Commands captur ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/9200 (generic). Commands captured: $ show less	DDoS Attack IoT Targeted Brute-Force
🇸🇪 NordhTech	2026-05-27 18:30:07 (4 weeks ago)	More than 3 malicious connection attempts, trying port(s) 56001/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 Cyber Crusader	2026-05-27 06:46:41 (4 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇫🇷 ISPLtd	2026-05-27 03:40:11 (4 weeks ago)	May 27 00:40:07 52.87.171.66 TCP SPT=23024 DPT=8443 SYN May 27 00:40:08 52.87.171.66 TCP SPT=23024 D ... show more May 27 00:40:07 52.87.171.66 TCP SPT=23024 DPT=8443 SYN May 27 00:40:08 52.87.171.66 TCP SPT=23024 DPT=8443 SYN May 27 00:40:10 52.87.171.66 TCP SPT=23024 DPT=8443 WIND ... show less	Port Scan

Showing 1 to 15 of 648 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2400:cb00:930:1000:45ad:4217:c37a:8f74

🇷🇺 188.19.164.8

🇦🇲 178.160.228.254

🇭🇰 152.32.129.154

🇮🇳 117.247.233.195

🇺🇸 20.65.194.119

🇨🇳 223.109.141.190

🇲🇲 202.165.91.185

🇺🇸 198.46.154.22

🇭🇰 190.92.239.22

🇸🇬 155.94.200.122

🇮🇩 103.186.61.254

🇷🇺 85.140.4.166

🇩🇪 82.115.19.14

🇺🇸 64.62.156.27

🇬🇧 45.82.76.108

🇮🇳 27.60.107.20

🇸🇬 15.235.164.171

🇨🇳 218.93.190.170

🇺🇸 216.73.160.62