JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.197.108.167

54.197.108.167 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 5%: ?

ISP	Amazon.com, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-197-108-167.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.197.108.167

Whois 54.197.108.167

IP Abuse Reports for 54.197.108.167:

This IP address has been reported a total of 4 times from 3 distinct sources. 54.197.108.167 was first reported on October 7th 2023, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-28 10:55:10 (5 hours ago)	(mod_security) mod_security (id:210492) triggered by 54.197.108.167 (ec2-54-197-108-167.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.197.108.167 (ec2-54-197-108-167.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 06:55:04.516986 2026] [security2:error] [pid 8080:tid 8087] [client 54.197.108.167:52516] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.silvestricarpet.com"] [uri "/.git/config"] [unique_id "akD9iGRP9M6KYBd1hLTZ5QAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 06:36:27 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 54.197.108.167 (ec2-54-197-108-167.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 54.197.108.167 (ec2-54-197-108-167.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 02:36:24.342853 2026] [security2:error] [pid 10443:tid 10443] [client 54.197.108.167:39922] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.greensealusa.stormstrips.com"] [uri "/.git/HEAD"] [unique_id "akDA6JDFD1U95wLoaz-_IAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇬 MazenHost	2023-10-08 08:21:28 (2 years ago)	1696753287 - 10/08/2023 10:21:27 Host: 54.197.108.167/54.197.108.167 Port: 143 TCP Blocked ...	Port Scan
Anonymous	2023-10-07 19:19:43 (2 years ago)	port scan and connect, tcp 443 (https)	Port Scan

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇿 219.89.198.191

🇩🇪 195.230.103.246

🇧🇷 177.11.190.160

🇹🇭 118.194.251.17

🇺🇸 98.92.0.216

🇫🇷 62.210.101.177

🇺🇸 45.33.40.18

🇺🇸 20.65.193.226

🇫🇮 2a00:1450:4010:c1c::12b

🇧🇷 177.11.190.159

🇧🇷 177.11.190.16

🇳🇱 142.93.225.156

🇭🇰 118.26.37.105

🇨🇳 111.26.167.36

🇨🇳 106.75.144.110

🇧🇬 79.124.49.174

🇳🇱 45.148.10.152

🇳🇱 195.178.110.188

🇬🇧 185.152.250.165

🇸🇬 185.150.0.21