JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.204.240.232

54.204.240.232 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon.com, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-204-240-232.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.204.240.232

Whois 54.204.240.232

IP Abuse Reports for 54.204.240.232:

This IP address has been reported a total of 70 times from 59 distinct sources. 54.204.240.232 was first reported on May 28th 2026, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-05 18:59:09 (10 hours ago)	tcp/56001 (2 or more attempts)	Port Scan
🇩🇰 swrlly	2026-06-05 08:11:26 (21 hours ago)	1 unauthorized webserver connection	Web App Attack
🇩🇰 SaltySoftworks	2026-06-05 08:11:25 (21 hours ago)	Connecting to IP instead of domain name by Amazon Technologies Inc.	Hacking Web App Attack DDoS Attack Web Spam Bad Web Bot
🇺🇸 Szymekk	2026-06-05 07:59:16 (21 hours ago)	Fail2Ban: SSH brute force attempt [srv05]	Brute-Force SSH
🇬🇧 anycast_ac	2026-06-05 07:19:52 (22 hours ago)	[WebProtection] L4/L7 attack source · L4-8443-NONCLUSTER-DROP · 5 hits/window	Port Scan
🇩🇪 Mailguard-FRD	2026-06-05 06:50:03 (22 hours ago)	1780642202 - 06/05/2026 08:50:02 Host: 54.204.240.232/54.204.240.232 Port: 3389 TCP Blocked ...	Port Scan
🇩🇪 zupan	2026-06-04 20:55:31 (1 day ago)	Blocked by UFW on vps [8443/tcp] \| SPT: 26986 \| TTL: 114 \| LEN: 60 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on vps [8443/tcp] \| SPT: 26986 \| TTL: 114 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇪🇪 Selckie	2026-06-04 20:19:31 (1 day ago)	fail2ban: NGINX unusual impact	Web App Attack
🇺🇸 knock	2026-06-04 05:34:24 (2 days ago)	Knock-Knock honeypot brute-force: proto8 (1 total hits)	Brute-Force
🇨🇿 lp	2026-06-04 03:02:08 (2 days ago)	anomaly: tcp_port_scan, 501 > threshold 500, repeats 178856 times	Port Scan
🇰🇷 winter	2026-06-04 02:56:18 (2 days ago)	Connection attemp from 54.204.240.232 to port 22	Brute-Force SSH
🇺🇸 m2jest1c	2026-06-04 01:38:20 (2 days ago)	2026-06-03T21:38:19.515243 rhel-20gb-ash-1 sshd[2993414]: Connection closed by 54.204.240.232 port 3 ... show more 2026-06-03T21:38:19.515243 rhel-20gb-ash-1 sshd[2993414]: Connection closed by 54.204.240.232 port 37318 [preauth] ... show less	Brute-Force SSH
🇬🇧 Deveroonie	2026-06-04 01:38:08 (2 days ago)	2026-06-04T01:38:08.381754+00:00 instance-20241105-1951 sshd[1992386]: Connection closed by 54.204.2 ... show more 2026-06-04T01:38:08.381754+00:00 instance-20241105-1951 sshd[1992386]: Connection closed by 54.204.240.232 port 40704 [preauth] ... show less	Hacking Brute-Force SSH
🇧🇬 pa4080	2026-06-03 16:30:42 (2 days ago)	Detected by ModSecurity. Host header is an IP address, Request URI: /	Hacking Web App Attack
🇫🇷 evvsk	2026-06-03 15:27:53 (2 days ago)	8080/tcp	Port Scan

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.190.35.163

🇺🇸 78.153.155.152

🇺🇸 64.31.25.250

🇬🇧 35.203.210.36

🇩🇪 212.132.111.47

🇺🇸 198.74.56.135

🇺🇸 172.253.83.91

🇮🇳 135.235.138.43

🇻🇳 117.5.239.3

🇭🇰 103.229.125.106

🇰🇪 102.210.149.236

🇷🇴 92.118.39.236

🇨🇦 85.217.149.60

🇮🇹 83.224.152.242

🇷🇴 80.94.92.182

🇺🇸 66.132.195.17

🇳🇱 45.198.224.138

🇲🇽 45.188.167.2

🇺🇸 20.29.57.244

🇬🇧 213.171.208.232