JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.203.7.249

54.203.7.249 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	Amazon.com, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-203-7-249.us-west-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Boardman, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.203.7.249

Whois 54.203.7.249

IP Abuse Reports for 54.203.7.249:

This IP address has been reported a total of 18 times from 11 distinct sources. 54.203.7.249 was first reported on April 6th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-28 14:36:11 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.comput ... show more (mod_security) mod_security (id:210492) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 10:36:05.447694 2026] [security2:error] [pid 27094:tid 27094] [client 54.203.7.249:53714] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.alitcogroup.com"] [uri "/.svn/wc.db"] [unique_id "afDF1fvUDkkcVytWvQceeAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-30 10:45:33 (1 year ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack
🇦🇺 MAGIC	2024-04-23 08:12:59 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2024-04-22 23:39:30 (2 years ago)	54.203.7.249 - - [23/Apr/2024:01:39:29 +0200] "GET /robots.txt HTTP/2.0" 200 349 "-" "Friendly_Crawl ... show more 54.203.7.249 - - [23/Apr/2024:01:39:29 +0200] "GET /robots.txt HTTP/2.0" 200 349 "-" "Friendly_Crawler/Nutch-1.20-SNAPSHOT" show less	Bad Web Bot
🇦🇺 MAGIC	2024-04-17 02:19:02 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2024-04-15 18:11:49 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.comput ... show more (mod_security) mod_security (id:225170) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 15 14:11:41.457959 2024] [security2:error] [pid 12974] [client 54.203.7.249:33932] [client 54.203.7.249] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gamerah.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gamerah.net"] [uri "/wp-json/wp/v2/users/12"] [unique_id "Zh1t3QiqgWqj1bcNWNOkngAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2024-04-15 18:11:28 (2 years ago)	Web App Attack	Web App Attack
🇩🇪 rh24	2024-04-15 06:42:13 (2 years ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 54.203.7.249 (US/Uni ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 54.203.7.249 (US/United States/ec2-54-203-7-249.us-west-2.compute.amazonaws.com) show less	Bad Web Bot
🇦🇺 MAGIC	2024-04-13 18:03:59 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2024-04-13 11:07:52 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.comput ... show more (mod_security) mod_security (id:225170) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 13 07:07:49.012972 2024] [security2:error] [pid 6904] [client 54.203.7.249:42668] [client 54.203.7.249] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.cvoguemag.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cvoguemag.com"] [uri "/NewHome/wp-json/wp/v2/users/1"] [unique_id "ZhpnhS2vsq8s-7Iq4P0ZLQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇬 pa4080	2024-04-12 10:21:25 (2 years ago)	Detected by ModSecurity. Request URI: /wp-json/wp/v2/posts/9688	Web App Attack
🇦🇺 MAGIC	2024-04-11 05:05:40 (2 years ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇪 taivas.nl	2024-04-09 15:02:11 (2 years ago)	Bad_requests	Bad Web Bot
🇳🇱 BlueWire Hosting	2024-04-07 20:10:08 (2 years ago)	Detected as a bad bot	Bad Web Bot
🇺🇸 TPI-Abuse	2024-04-07 03:06:24 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.comput ... show more (mod_security) mod_security (id:225170) triggered by 54.203.7.249 (ec2-54-203-7-249.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 06 23:06:16.870308 2024] [security2:error] [pid 14306] [client 54.203.7.249:38888] [client 54.203.7.249] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.clcmillvale.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.clcmillvale.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "ZhINqH8yNwOHU_Z5ObRZHQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.253.248.17

🇫🇷 185.103.143.101

🇱🇹 77.90.185.41

🇮🇳 203.192.221.25

🇮🇷 185.120.242.47

🇵🇪 161.132.50.236

🇫🇷 62.210.122.54

🇯🇵 210.157.193.238

🇵🇰 110.38.255.253

🇻🇳 103.101.162.141

🇺🇸 40.124.173.206

🇺🇸 34.182.135.245

🇩🇪 213.209.159.227

🇭🇰 199.45.155.79

🇵🇱 195.3.220.7

🇺🇸 162.216.150.5

🇫🇮 147.185.133.10

🇮🇳 103.152.68.34

🇮🇳 103.91.72.193

🇧🇬 79.124.60.146