JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 52.87.193.155

52.87.193.155 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-52-87-193-155.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 52.87.193.155

Whois 52.87.193.155

IP Abuse Reports for 52.87.193.155:

This IP address has been reported a total of 94 times from 67 distinct sources. 52.87.193.155 was first reported on September 28th 2021, and the most recent report was 27 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ISPLtd	2026-06-07 09:35:07 (27 minutes ago)	Jun 7 03:35:02 52.87.193.155 TCP SPT=51038 DPT=3232 SYN Jun 7 03:35:03 52.87.193.155 TCP SPT=51038 ... show more Jun 7 03:35:02 52.87.193.155 TCP SPT=51038 DPT=3232 SYN Jun 7 03:35:03 52.87.193.155 TCP SPT=51038 DPT=3232 SYN Jun 7 03:35:05 52.87.193.155 TCP SPT=51038 DPT=3232 WIND ... show less	Port Scan
🇬🇧 Andrew	2026-06-07 08:25:24 (1 hour ago)	2026-06-07T08:25:19.809174+00:00 Debian sshd[4031435]: Connection closed by 52.87.193.155 port 24460 ... show more 2026-06-07T08:25:19.809174+00:00 Debian sshd[4031435]: Connection closed by 52.87.193.155 port 24460 [preauth] ... show less	Port Scan Hacking Brute-Force SSH
🇱🇹 Selckie	2026-06-07 01:25:51 (8 hours ago)	fail2ban: NGINX unusual impact	Web App Attack
🇹🇷 SeczarSecureOps	2026-06-06 21:18:16 (12 hours ago)	Auto-blocked by Seczar SecureOps — High-Risk Port Probe (admin-managed entries) — Elasticsearch (18 ... show more Auto-blocked by Seczar SecureOps — High-Risk Port Probe (admin-managed entries) — Elasticsearch (18 events in 10min) at 2026-06-06 21:18 show less	Web App Attack
🇺🇸 MPL	2026-06-06 18:51:11 (15 hours ago)	tcp/22 (4 or more attempts)	Port Scan
🇩🇪 ITSNF	2026-06-06 15:00:06 (19 hours ago)	Blocked by OPNsense firewall; 27 hits, proto=tcp, ports=443	Port Scan Hacking
🇺🇸 donarev419	2026-06-06 05:07:10 (1 day ago)	Connection to port 9200 with data transfer. Data preview:	Port Scan Hacking
🇹🇼 taiwanfrp.me	2026-06-06 04:14:22 (1 day ago)	taiwanfrp NewUserConn auto-ban: reason=ip_over_target_scan_limit_60s1, conn10s=1, targets10m=1, targ ... show more taiwanfrp NewUserConn auto-ban: reason=ip_over_target_scan_limit_60s1, conn10s=1, targets10m=1, target=proxy:kiwicanary.MinecraftJavax2n\|port:- show less	Port Scan Hacking
🇩🇪 dispaisyenterprises	2026-06-06 03:16:51 (1 day ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic on 21/ftpd Reported by DisPaisy Enterprises (dispai ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic on 21/ftpd Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 iNetWorker	2026-06-06 02:15:49 (1 day ago)	trying to access non-authorized port	Port Scan
🇺🇸 cwytech	2026-06-06 02:06:42 (1 day ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/rdg-local-lockdown-high.	Bad Web Bot Web App Attack
🇯🇵 S.O.B.A. Dev.	2026-06-06 01:54:05 (1 day ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇯🇵 mkaraki	2026-06-05 22:49:37 (1 day ago)	1780699776 # Service_probe # SIGNATURE_SEND # source_ip:52.87.193.155 # dst_port:8080 ...	Port Scan
🇩🇪 wlt-blocker	2026-06-05 21:07:36 (1 day ago)	Illegal port scans	Port Scan
Anonymous	2026-06-05 16:57:03 (1 day ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 3232 [5] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (243 bytes of payload); 3232 [5] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.59.201.12

🇺🇬 196.0.3.188

🇳🇱 195.178.110.133

🇺🇿 198.163.193.143

🇺🇸 198.12.152.88

🇧🇷 170.80.81.139

🇻🇪 154.27.136.216

🇮🇶 151.244.155.163

🇭🇰 143.14.151.180

🇿🇦 102.221.220.50

🇫🇷 85.217.140.46

🇺🇸 64.62.156.38

🇺🇸 38.77.211.196

🇰🇷 211.197.12.104

🇰🇷 211.46.188.16

🇭🇰 199.45.155.74

🇷🇺 195.2.67.184

🇬🇧 193.163.125.183

🇧🇴 181.115.147.5

🇺🇸 172.203.241.222