JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.173.18.212

54.173.18.212 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 24%: ?

24%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-173-18-212.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.173.18.212

Whois 54.173.18.212

IP Abuse Reports for 54.173.18.212:

This IP address has been reported a total of 4 times from 3 distinct sources. 54.173.18.212 was first reported on June 19th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-06-20 05:13:22 (1 day ago)	2 attacks on VC URLs: GET /.git/HEAD HTTP/1.1	Hacking
🇳🇱 homeshowdomain.nl	2026-06-19 21:59:34 (2 days ago)	Auto-ban: >3000 req/min op 2026-06-19	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-19 15:33:14 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.173.18.212 (ec2-54-173-18-212.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 54.173.18.212 (ec2-54-173-18-212.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 11:33:10.957125 2026] [security2:error] [pid 30209:tid 30209] [client 54.173.18.212:42904] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elessenux.com"] [uri "/.git/HEAD"] [unique_id "ajVhNhCeUTX4AR-DthaOCgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 14:36:04 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.173.18.212 (ec2-54-173-18-212.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 54.173.18.212 (ec2-54-173-18-212.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 10:35:58.953097 2026] [security2:error] [pid 17791:tid 17818] [client 54.173.18.212:40382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.gorealtors.com"] [uri "/.git/HEAD"] [unique_id "ajVTzjxs_iUDo4yIxTKcaQAAANI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.181

🇿🇦 169.0.233.175

🇺🇸 147.185.132.106

🇺🇸 138.197.39.208

🇳🇱 89.248.167.131

🇺🇸 44.166.95.86

🇺🇸 205.210.31.90

🇮🇳 203.145.143.163

🇮🇳 182.95.60.146

🇷🇴 141.98.83.240

🇺🇸 137.184.228.138

🇺🇸 100.29.192.76

🇳🇱 91.92.40.5

🇺🇸 62.204.35.140

🇭🇰 58.176.64.176

🇳🇱 45.148.10.230

🇺🇸 44.56.46.36

🇨🇳 223.151.183.148

🇩🇪 188.245.84.238

🇨🇳 180.167.128.203