JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.183.247.11

54.183.247.11 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 19%: ?

19%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-183-247-11.us-west-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.183.247.11

Whois 54.183.247.11

IP Abuse Reports for 54.183.247.11:

This IP address has been reported a total of 7 times from 5 distinct sources. 54.183.247.11 was first reported on August 9th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-13 11:12:56 (1 week ago)	(caddyscan) Scanner path probe from 54.183.247.11 (US/United States/ec2-54-183-247-11.us-west-1.comp ... show more (caddyscan) Scanner path probe from 54.183.247.11 (US/United States/ec2-54-183-247-11.us-west-1.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 54.183.247.11 - - [13/Jun/2026:11:12:53 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 54.183.247.11 - - [13/Jun/2026:11:12:53 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 54.183.247.11 - - [13/Jun/2026:11:12:53 +0000] "GET /.env.local HTTP/1.1" [REDACTED] 200 2627 54.183.247.11 - - [13/Jun/2026:11:12:53 +0000] "GET /.env.production HTTP/1.1" [REDACTED] 200 2627 54.183.247.11 - - [13/Jun/2026:11:12:53 +0000] "GET /.env.staging HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-13 09:52:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 54.183.247.11 (ec2-54-183-247-11.us-west-1.comp ... show more (mod_security) mod_security (id:210492) triggered by 54.183.247.11 (ec2-54-183-247-11.us-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:52:45.591511 2026] [security2:error] [pid 24735:tid 24735] [client 54.183.247.11:60210] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webuychesterfieldhouses.com"] [uri "/.git/config"] [unique_id "ai0obaCp-zUy7zLeBmPiawAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-06-13 08:41:38 (1 week ago)	Aggressive web search of vulnerable pages: /.env /.env.local /app/.env /apps/.env /api/.env ...	Web App Attack
🇺🇸 TPI-Abuse	2024-08-10 01:12:58 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 54.183.247.11 (ec2-54-183-247-11.us-west-1.comp ... show more (mod_security) mod_security (id:240335) triggered by 54.183.247.11 (ec2-54-183-247-11.us-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 09 21:12:54.207100 2024] [security2:error] [pid 20742:tid 20742] [client 54.183.247.11:37498] [client 54.183.247.11] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 185.104.184.43 (0+1 hits since last alert)\|www.puckerbackbikini.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.puckerbackbikini.com"] [uri "/xmlrpc.php"] [unique_id "Zra-loH0iZh6sKNnYS9RWQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-09 20:03:45 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 54.183.247.11 (ec2-54-183-247-11.us-west-1.comp ... show more (mod_security) mod_security (id:240335) triggered by 54.183.247.11 (ec2-54-183-247-11.us-west-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 09 16:03:37.721282 2024] [security2:error] [pid 14978:tid 14978] [client 54.183.247.11:43462] [client 54.183.247.11] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 54.183.247.11 (+1 hits since last alert)\|mouserart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mouserart.com"] [uri "/xmlrpc.php"] [unique_id "ZrZ2GSDzslpxlNYZ5JxR3AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2024-08-09 14:03:02 (1 year ago)	Looking for CMS/PHP/SQL vulnerablilities - 13	Exploited Host Web App Attack
🇲🇹 Malta	2024-08-09 09:07:51 (1 year ago)	54.183.247.11 - - [09/Aug/2024:11:07:51 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 54.183.247.11 - - [09/Aug/2024:11:07:51 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 171.231.196.32

🇺🇸 47.88.53.172

🇳🇱 5.187.35.26

🇩🇪 194.88.98.126

🇳🇱 176.65.139.218

🇸🇬 121.6.81.59

🇦🇿 94.20.98.10

🇮🇳 52.172.177.191

🇬🇧 46.101.77.4

🇧🇷 45.205.1.76

🇺🇸 8.229.57.2

🇺🇸 152.32.150.215

🇨🇳 120.48.130.213

🇨🇳 59.45.231.100

🇲🇾 47.250.43.129

🇩🇪 45.43.62.37

🇨🇳 36.129.49.235

🇨🇦 20.43.5.233

🇷🇺 5.3.154.1

🇺🇸 216.25.89.127