JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.207.108.112

54.207.108.112 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	Amazon Data Services Brazil
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-207-108-112.sa-east-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.207.108.112

Whois 54.207.108.112

IP Abuse Reports for 54.207.108.112:

This IP address has been reported a total of 15 times from 13 distinct sources. 54.207.108.112 was first reported on January 23rd 2026, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇱 renxcore	2026-01-30 12:49:00 (4 months ago)	attacks on PHP URLs: GET /index.php?route=checkout/checkout HTTP/1.1	FTP Brute-Force SQL Injection Brute-Force Bad Web Bot Exploited Host
🇬🇧 openstrike.co.uk	2026-01-30 06:13:29 (4 months ago)	12 attacks on PHP URLs: GET /index.php?route=checkout/checkout HTTP/1.1	Web App Attack
🇳🇱 homeshowdomain.nl	2026-01-29 22:59:26 (4 months ago)	Auto-ban: >3000 req/min op 2026-01-29	Hacking Web App Attack SSH
🇨🇦 Not Fake	2026-01-29 15:23:16 (4 months ago)	$f2bV_matches	Web App Attack
🇬🇧 cybersteve99	2026-01-29 13:37:42 (4 months ago)	Too many 4xx Requests -	Brute-Force Web App Attack
🇸🇪 Lemmy	2026-01-29 08:19:04 (4 months ago)	apache-noscript	Web App Attack
Anonymous	2026-01-29 04:40:12 (4 months ago)	[29/Jan/2026:15:40:12 +1100] "GET /wp-json/wc/v3 HTTP/1.1" 301 294 "Mozilla/5.0 (Windows NT 10.0; Wi ... show more [29/Jan/2026:15:40:12 +1100] "GET /wp-json/wc/v3 HTTP/1.1" 301 294 "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" show less	Hacking Web App Attack
🇳🇿 Antinson	2026-01-29 03:36:41 (4 months ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇳🇱 i-turnradio.nl	2026-01-29 02:03:19 (4 months ago)	2026-01-29 03:03:19 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇺🇸 wteiken	2026-01-28 23:16:02 (4 months ago)	www.teiken.net:443 54.207.108.112:50640 - - [28/Jan/2026:18:15:58 -0500] "GET /index.php?route=check ... show more www.teiken.net:443 54.207.108.112:50640 - - [28/Jan/2026:18:15:58 -0500] "GET /index.php?route=checkout/cart HTTP/1.1" 404 511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" www.teiken.net:443 54.207.108.112:50640 - - [28/Jan/2026:18:15:59 -0500] "GET /index.php?route=account/register HTTP/1.1" 404 511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" www.teiken.net:443 54.207.108.112:50640 - - [28/Jan/2026:18:15:59 -0500] "GET /index.php?route=account/login HTTP/1.1" 404 511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" www.teiken.net:443 54.207.108.112:50640 - - [28/Jan/2026:18:15:59 -0500] "GET /index.php?route=checkout/checkout HTTP/1.1" 404 511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.3 ... show less	Web App Attack
🇺🇸 Hazael	2026-01-28 12:25:25 (4 months ago)	SNOOPING - intended to probe for or exploit website vulnerabilities. From: São Paulo, Brazil - Amazo ... show more SNOOPING - intended to probe for or exploit website vulnerabilities. From: São Paulo, Brazil - Amazon Technologies Inc. (AS16509 Amazon.com, Inc.) - Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 show less	Web App Attack
Anonymous	2026-01-28 06:57:16 (4 months ago)	PSCSERV WPSCAN 54.207.108.112	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-01-27 15:13:55 (4 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 54.207.108.112 (BR/Brazil/ec2-54-207- ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 54.207.108.112 (BR/Brazil/ec2-54-207-108-112.sa-east-1.compute.amazonaws.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-01-27 03:38:19 (4 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 54.207.108.112 (BR/Brazil/ec2-54-207- ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 54.207.108.112 (BR/Brazil/ec2-54-207-108-112.sa-east-1.compute.amazonaws.com): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-01-23 00:47:30 (4 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 54.207.108.112 (BR/Brazil/ec2-54-207- ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 54.207.108.112 (BR/Brazil/ec2-54-207-108-112.sa-east-1.compute.amazonaws.com): 1 in the last 3600 secs (0-196) show less	Hacking

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 168.76.131.178

🇩🇪 139.19.117.197

🇧🇷 138.255.157.62

🇭🇰 8.210.75.108

🇺🇸 2001:470:1:332::48

🇰🇷 218.144.90.41

🇩🇪 212.30.36.219

🇪🇬 197.46.146.182

🇺🇸 172.232.15.250

🇮🇳 163.223.254.67

🇨🇴 161.18.234.168

🇺🇸 107.173.37.138

🇺🇸 107.150.99.174

🇺🇸 74.125.181.152

🇺🇸 66.132.172.39

🇺🇸 64.62.156.152

🇲🇾 47.254.214.146

🇸🇪 31.59.160.12

🇬🇧 8.208.10.94

🇺🇸 3.233.44.186