JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.206.41.129

54.206.41.129 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 31%: ?

31%

ISP	Amazon.com, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-206-41-129.ap-southeast-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.206.41.129

Whois 54.206.41.129

IP Abuse Reports for 54.206.41.129:

This IP address has been reported a total of 6 times from 5 distinct sources. 54.206.41.129 was first reported on March 28th 2023, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-25 22:31:38 (20 hours ago)		Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-25 12:24:39 (1 day ago)	🔥 VERY AGGRESSIVE SCANNER probed over 300 inexistent files and PHP scripts in less than an hour.	Hacking Web App Attack
🇨🇦 polycoda	2026-06-25 07:48:29 (1 day ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - ⚙️ Configuration File Access (Non Decay-Based ... show more AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based) - ⚙️ Configuration File Access (Non Decay-Based) show less	Hacking Bad Web Bot Web App Attack
🇩🇪 macrob	2026-06-25 06:51:22 (1 day ago)	2026/06/25 06:51:20 [error] 3958355#3958355: 329340503 access forbidden by rule, client: 54.206.41. ... show more 2026/06/25 06:51:20 [error] 3958355#3958355: 329340503 access forbidden by rule, client: 54.206.41.129, server: finami.com.ua, request: "GET /.git/config HTTP/1.1", host: "finami.com.ua" 2026/06/25 06:51:20 [error] 3958353#3958353: 329340515 access forbidden by rule, client: 54.206.41.129, server: finami.es, request: "GET /.git/config HTTP/2.0", host: "finami.es" 2026/06/25 06:51:21 [error] 3958356#3958356: 329338232 access forbidden by rule, client: 54.206.41.129, server: finami.mx, request: "GET /.git/config HTTP/2.0", host: "finami.mx" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 06:21:56 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 54.206.41.129 (ec2-54-206-41-129.ap-southeast-2 ... show more (mod_security) mod_security (id:210492) triggered by 54.206.41.129 (ec2-54-206-41-129.ap-southeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 02:21:52.414711 2026] [security2:error] [pid 23536:tid 23536] [client 54.206.41.129:50770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fina.pronio.com"] [uri "/.git/config"] [unique_id "ajzJAGdgO5VdfWEgbxauqAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2023-03-28 00:50:41 (3 years ago)	ThreatBook Intelligence: Zombie,IDC more details on https://threatbook.io/ip/54.206.41.129 2023-03-2 ... show more ThreatBook Intelligence: Zombie,IDC more details on https://threatbook.io/ip/54.206.41.129 2023-03-27 03:39:14 / show less	Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 166.77.36.7

🇻🇳 113.161.222.150

🇮🇹 93.150.81.249

🇸🇪 82.118.29.220

🇳🇱 45.148.10.152

🇺🇸 45.132.115.185

🇰🇷 14.63.196.175

🇺🇸 216.25.89.111

🇩🇪 141.95.34.214

🇷🇴 92.118.39.57

🇫🇷 51.68.107.144

🇩🇪 47.245.143.73

🇸🇬 47.84.109.187

🇻🇳 42.96.19.37

🇬🇧 35.203.211.252

🇺🇸 13.86.104.14

🇺🇸 192.227.210.218

🇲🇾 175.136.5.80

🇺🇸 151.245.231.208

🇨🇳 112.53.123.177