JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.150.228.31

54.150.228.31 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 25%: ?

25%

ISP	Amazon Data Services Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-150-228-31.ap-northeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.150.228.31

Whois 54.150.228.31

IP Abuse Reports for 54.150.228.31:

This IP address has been reported a total of 6 times from 5 distinct sources. 54.150.228.31 was first reported on January 11th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-24 08:06:06 (6 hours ago)	13.108 requests in 1 hour (3d7h59m)	Brute-Force Bad Web Bot
🇳🇱 Site.eu	2026-06-24 07:58:10 (7 hours ago)	Excessive 404/403 errors	Brute-Force
🇮🇹 VHosting	2026-06-23 18:35:08 (20 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-01-12 23:00:31 (5 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-11. show less	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-01-11 22:58:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 54.150.228.31 (ec2-54-150-228-31.ap-northeast-1 ... show more (mod_security) mod_security (id:210492) triggered by 54.150.228.31 (ec2-54-150-228-31.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 11 17:58:48.183760 2026] [security2:error] [pid 16345:tid 16345] [client 54.150.228.31:57960] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "christineohlman.independentmusicconference.com"] [uri "/.git/config"] [unique_id "aWQrKLD71J6rMre_cKSsGwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-11 20:54:35 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 54.150.228.31 (ec2-54-150-228-31.ap-northeast-1 ... show more (mod_security) mod_security (id:210492) triggered by 54.150.228.31 (ec2-54-150-228-31.ap-northeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 11 15:54:27.616227 2026] [security2:error] [pid 6704:tid 6704] [client 54.150.228.31:48994] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chrisswansoncampaign.com"] [uri "/.git/config"] [unique_id "aWQOA_c-28C-bkMsKI0grQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.126.96.33

🇺🇸 66.132.224.26

🇮🇷 62.133.46.16

🇨🇳 61.173.113.84

🇧🇪 34.156.182.50

🇺🇸 20.40.217.42

🇯🇵 8.216.3.87

🇸🇬 2a09:bac1:6560:8::278:3b

🇮🇩 182.16.252.18

🇵🇰 180.178.130.132

🇩🇪 178.16.52.120

🇰🇷 175.198.175.22

🇺🇸 157.245.141.140

🇻🇳 152.32.249.95

🇵🇰 103.213.112.68

🇸🇬 103.189.234.244

🇺🇸 65.49.1.218

🇱🇹 62.60.130.219

🇻🇳 42.118.3.5

🇷🇴 2.57.121.112