JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.145.250.185

54.145.250.185 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Data Services Northern Virginia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-145-250-185.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.145.250.185

Whois 54.145.250.185

IP Abuse Reports for 54.145.250.185:

This IP address has been reported a total of 30 times from 19 distinct sources. 54.145.250.185 was first reported on June 4th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 taivas.nl	2026-06-05 13:02:11 (1 day ago)	Bad_requests	Bad Web Bot
🇱🇻 garmtech.com	2026-06-05 12:23:52 (1 day ago)	Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probi ... show more Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇫🇷 Sklurk	2026-06-05 11:40:26 (1 day ago)	Web App Attack	Web App Attack
🇳🇱 Mangelot Hosting	2026-06-05 08:05:59 (2 days ago)	(bad_user_agent) srv101 Bad User-Agent 54.145.250.185 (US/United States/ec2-54-145-250-185.compute-1 ... show more (bad_user_agent) srv101 Bad User-Agent 54.145.250.185 (US/United States/ec2-54-145-250-185.compute-1.amazonaws.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 07:53:51 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 03:53:48.463731 2026] [security2:error] [pid 15145:tid 15145] [client 54.145.250.185:40964] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fydelitybags.com"] [uri "/.git/config"] [unique_id "aiKAjC5NYkCH3SqwjHUvHgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 06:57:26 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 02:57:20.531695 2026] [security2:error] [pid 9235:tid 9235] [client 54.145.250.185:50502] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gacstoday.com"] [uri "/.git/config"] [unique_id "aiJzULeKOaO4ZhDyCuiLWgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 06:03:04 (2 days ago)	Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1	Hacking Web App Attack
🇳🇱 e.fierstra	2026-06-05 04:16:48 (2 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
Anonymous	2026-06-05 04:13:24 (2 days ago)	(caddyscan) Scanner path probe from 54.145.250.185 (US/United States/ec2-54-145-250-185.compute-1.am ... show more (caddyscan) Scanner path probe from 54.145.250.185 (US/United States/ec2-54-145-250-185.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:04:13:05 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:04:13:08 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:04:13:10 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:04:13:15 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:04:13:20 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
Anonymous	2026-06-05 03:05:26 (2 days ago)	(caddyscan) Scanner path probe from 54.145.250.185 (US/United States/ec2-54-145-250-185.compute-1.am ... show more (caddyscan) Scanner path probe from 54.145.250.185 (US/United States/ec2-54-145-250-185.compute-1.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:03:05:19 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:03:05:19 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:03:05:20 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:03:05:21 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.145.250.185 - - [05/Jun/2026:03:05:22 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-05 01:54:24 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 21:54:16.346458 2026] [security2:error] [pid 13600:tid 13600] [client 54.145.250.185:53700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fruitinthedesert.com"] [uri "/.git/config"] [unique_id "aiIsSCIkPVs9AbjcmaJVgQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-06-05 01:00:04 (2 days ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-04 22:19:19 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:19:11.983544 2026] [security2:error] [pid 25240:tid 25240] [client 54.145.250.185:40730] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fruitsinthedesert.com"] [uri "/.git/config"] [unique_id "aiH532M8qRuNQFGAckBMqgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kommunos	2026-06-04 22:07:38 (2 days ago)	/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 21:48:34 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.145.250.185 (ec2-54-145-250-185.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 17:48:29.074325 2026] [security2:error] [pid 6521:tid 6521] [client 54.145.250.185:50712] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frogdesignmexico.com"] [uri "/.git/config"] [unique_id "aiHyrdmY5XuDNVdCnTKQEQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 103.146.159.173

🇨🇳 222.216.2.74

🇨🇳 222.186.13.130

🇳🇱 176.65.148.96

🇺🇸 3.235.215.92

🇺🇸 2607:f8b0:4001:c0b::121

🇺🇸 209.33.37.101

🇵🇱 178.183.125.51

🇫🇷 173.249.37.70

🇺🇸 157.230.12.97

🇺🇸 150.107.38.251

🇺🇸 147.185.132.217

🇺🇸 104.234.32.99

🇺🇸 34.58.124.191

🇺🇸 20.171.9.108

🇲🇽 201.149.53.243

🇹🇭 184.22.111.94

🇮🇳 152.52.227.94

🇨🇳 139.199.182.94

🇮🇳 125.19.216.162