JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.210.2.63

54.210.2.63 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 96%: ?

96%

ISP	Amazon.com, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-210-2-63.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.210.2.63

Whois 54.210.2.63

IP Abuse Reports for 54.210.2.63:

This IP address has been reported a total of 18 times from 17 distinct sources. 54.210.2.63 was first reported on February 2nd 2023, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cwytech	2026-06-30 12:02:34 (1 hour ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇩🇪 Admins@FBN	2026-06-30 10:34:57 (3 hours ago)	IPS:drop <match> dstport=1224	Brute-Force Exploited Host
🇺🇸 sumnone	2026-06-30 09:35:33 (4 hours ago)	Port probing on unauthorized port 7443	Port Scan Hacking Exploited Host
🇹🇷 Threat.live	2026-06-30 09:10:03 (4 hours ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 www.winos.me	2026-06-30 04:14:03 (9 hours ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-29 22:39:32 (15 hours ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 31337 [1] TCP	Port Scan
🇧🇾 StatsMe	2026-06-29 22:38:27 (15 hours ago)	2026-06-29T08:55:32.663440+0300 ET SCAN Potential SSH Scan	SSH Port Scan Brute-Force
🇩🇪 ValtonTahiri	2026-06-29 21:04:59 (16 hours ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=54.210.2.63; proto=TCP; source_port=38594; target_port=31337; flags=SYN show less	Port Scan
🇨🇿 lp	2026-06-29 11:58:57 (1 day ago)	anomaly: tcp_port_scan, 501 > threshold 500, repeats 177601 times	Port Scan
🇦🇺 FireGuard Server	2026-06-29 11:50:10 (1 day ago)	Blocked by os-abuseipdb; 3 hits, proto=tcp, ports=1245	Port Scan Hacking
🇧🇾 sashan	2026-06-29 05:55:32 (1 day ago)	2026-06-29T08:55:32.078996+03:00 gate kernel: nftables: JAIL-SSH IN=wan OUT= MAC= SRC=54.210.2.63 DS ... show more 2026-06-29T08:55:32.078996+03:00 gate kernel: nftables: JAIL-SSH IN=wan OUT= MAC= SRC=54.210.2.63 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=118 ID=56030 DF PROTO=TCP SPT=20642 DPT=22 WINDOW=62727 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇵🇱 mkey	2026-06-29 05:40:02 (1 day ago)	Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS ... show more Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS=22 \| HITS=2 \| IPSET=ADD \| FIRST=2026-06-29 07:37:02 \| LAST=2026-06-29 07:37:02. Last seen 2026-06-29 07:37:02. show less	Port Scan
🇨🇭 blinx	2026-06-29 01:40:57 (1 day ago)	2026-06-29T03:40:56.091435+02:00 blinx-rpi4 endlessh[359]: 2026-06-29T01:40:56.091Z CLOSE host=::fff ... show more 2026-06-29T03:40:56.091435+02:00 blinx-rpi4 endlessh[359]: 2026-06-29T01:40:56.091Z CLOSE host=::ffff:54.210.2.63 port=24936 fd=4 time=70.071 bytes=123 ... show less	Brute-Force SSH
🇩🇪 wiredalter	2026-06-29 01:38:36 (1 day ago)	Blocked by UFW on dVPS [11443/tcp] Source Port: 54884 TTL: 119 Packet Length: 60 TOS: 0x00 Analyzed ... show more Blocked by UFW on dVPS [11443/tcp] Source Port: 54884 TTL: 119 Packet Length: 60 TOS: 0x00 Analyzed by https://ip.wiredalter.com show less	Port Scan Brute-Force
🇺🇸 Cyber Crusader	2026-06-28 16:22:06 (1 day ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 176.111.152.79

🇭🇰 152.32.189.59

🇮🇳 117.252.123.29

🇺🇸 66.132.224.15

🇺🇸 65.49.20.118

🇺🇸 205.210.31.93

🇨🇴 191.107.219.148

🇺🇸 172.252.95.141

🇻🇳 160.250.181.54

🇻🇳 157.10.45.70

🇰🇷 121.184.144.232

🇻🇳 103.200.25.198

🇱🇹 81.30.98.49

🇺🇸 65.49.20.119

🇻🇪 201.249.192.30

🇨🇴 201.184.50.251

🇧🇷 200.149.213.242

🇲🇽 186.96.158.180

🇺🇸 174.176.46.153

🇩🇪 161.35.199.74