JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.219.125.4

54.219.125.4 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	Amazon.com, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-219-125-4.us-west-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.219.125.4

Whois 54.219.125.4

IP Abuse Reports for 54.219.125.4:

This IP address has been reported a total of 21 times from 18 distinct sources. 54.219.125.4 was first reported on October 7th 2024, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bazter.pro	2025-12-12 14:31:57 (6 months ago)	Auto-Ban [2025-12-08T05:47:59.401268]: Suspicious + RateLimit [Paths: 253]	Web App Attack
🇺🇸 bazter.pro	2025-12-08 03:47:59 (6 months ago)	Suspicious + RateLimit [Paths: 253]	Web App Attack
🇮🇹 alph44	2025-11-30 16:23:30 (6 months ago)	(mod_security) mod_security (id:949110) triggered by 54.219.125.4 (US/United States/ec2-54-219-125-4 ... show more (mod_security) mod_security (id:949110) triggered by 54.219.125.4 (US/United States/ec2-54-219-125-4.us-west-1.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: show less	Web App Attack
🇩🇪 janbro	2024-10-08 14:51:56 (1 year ago)	Oct 8 16:51:37 hera sshd[2843986]: Failed password for root from 54.219.125.4 port 44960 ssh2 Oct ... show more Oct 8 16:51:37 hera sshd[2843986]: Failed password for root from 54.219.125.4 port 44960 ssh2 Oct 8 16:51:53 hera sshd[2844149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.219.125.4 user=root Oct 8 16:51:55 hera sshd[2844149]: Failed password for root from 54.219.125.4 port 58454 ssh2 ... show less	Brute-Force SSH
🇺🇸 RAP	2024-10-08 13:50:16 (1 year ago)	2024-10-08 13:50:16 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇩🇪 akcurate.de	2024-10-08 13:04:50 (1 year ago)	2024-10-08T15:04:45.139335 mail2.akcurate.de sshd[76805]: Connection closed by authenticating user r ... show more 2024-10-08T15:04:45.139335 mail2.akcurate.de sshd[76805]: Connection closed by authenticating user root 54.219.125.4 port 60380 [preauth] 2024-10-08T15:04:47.157801 mail2.akcurate.de sshd[76807]: Connection closed by authenticating user root 54.219.125.4 port 60396 [preauth] 2024-10-08T15:04:49.123257 mail2.akcurate.de sshd[76809]: Connection closed by authenticating user root 54.219.125.4 port 60408 [preauth] ... show less	Brute-Force SSH
🇺🇸 MPL	2024-10-08 11:40:45 (1 year ago)	tcp/22 (8 or more attempts)	Port Scan
🇨🇿 lp	2024-10-08 07:51:08 (1 year ago)	SSH Brute force: 14 attempts were recorded from 54.219.125.4 2024-10-08T09:25:36+02:00 Connection cl ... show more SSH Brute force: 14 attempts were recorded from 54.219.125.4 2024-10-08T09:25:36+02:00 Connection closed by authenticating user root 54.219.125.4 port 46074 [preauth] 2024-10-08T09:25:37+02:00 Connection closed by authenticating user root 54.219.125.4 port 46076 [preauth] 2024-10-08T09:25:41+02:00 Connection closed by authenticating user root 54.219.125.4 port 46092 [preauth] 2024-10-08T09:25:42+02:00 Connection closed by authenticating user root 54.219.125.4 port 41150 [preauth] 2024-10-08T09:25:46+02:00 Connection closed by authenticating user root 54.219.125.4 port 41158 [preauth] 2024-10-08T09:25:48+02:00 Connection closed by authenticating user root 54.219.125.4 port 41166 [preauth] 2024-10-08T09:25:49+02:00 Connection closed by authenticating user root 54.219.125.4 port 34986 [preauth] 2024-10-08T09:25:53+02:00 Connection closed by authenticating user root 54.219.125.4 port 35000 [ show less	Brute-Force SSH
🇺🇸 RAP	2024-10-08 07:38:20 (1 year ago)	2024-10-08 07:38:20 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇯🇵 VXG-NET	2024-10-08 06:11:46 (1 year ago)	port=22, indicator_type=brute-force	Brute-Force
🇳🇱 SchorelWeb	2024-10-08 05:24:33 (1 year ago)	Cluster member (Omitted) (US/United States/-) said, DENY 54.219.125.4, Reason:[(sshd) Failed SSH log ... show more Cluster member (Omitted) (US/United States/-) said, DENY 54.219.125.4, Reason:[(sshd) Failed SSH login from 54.219.125.4 (US/United States/-): 2 in the last (Omitted)] show less	Brute-Force SSH
🇵🇱 strefapi_com	2024-10-08 04:15:59 (1 year ago)	Oct 8 06:15:50 mail sshd[777022]: Failed password for root from 54.219.125.4 port 57592 ssh2 Oct 8 ... show more Oct 8 06:15:50 mail sshd[777022]: Failed password for root from 54.219.125.4 port 57592 ssh2 Oct 8 06:15:51 mail sshd[777025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.219.125.4 user=root Oct 8 06:15:54 mail sshd[777025]: Failed password for root from 54.219.125.4 port 51542 ssh2 Oct 8 06:15:56 mail sshd[777030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.219.125.4 user=root Oct 8 06:15:58 mail sshd[777030]: Failed password for root from 54.219.125.4 port 51556 ssh2 ... show less	Brute-Force SSH
🇮🇹 RaffOne	2024-10-08 03:32:58 (1 year ago)	SSH - Attempt to login using invalid or illegal credential	Brute-Force SSH
🇫🇷 inpec.fr	2024-10-08 03:13:28 (1 year ago)	$f2bV_matches	Brute-Force
🇮🇹 Dario B.	2024-10-08 03:13:10 (1 year ago)	DATE:2024-10-08 05:13:10, IP:54.219.125.4, PORT:ssh SSH brute force auth on honeypot server (epe-hon ... show more DATE:2024-10-08 05:13:10, IP:54.219.125.4, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq) show less	Brute-Force SSH

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.212.200.188

🇳🇬 152.32.141.154

🇿🇦 102.33.36.254

🇹🇷 88.248.250.119

🇮🇪 52.212.151.212

🇦🇷 45.181.167.120

🇸🇬 43.156.12.237

🇰🇷 222.97.11.71

🇫🇮 147.185.133.50

🇸🇬 128.199.182.55

🇨🇳 112.86.225.156

🇷🇺 87.250.224.252

🇭🇷 86.32.225.77

🇧🇾 81.30.98.142

🇬🇷 79.129.109.87

🇹🇷 78.189.19.159

🇰🇷 220.84.137.99

🇸🇰 213.81.217.5

🇧🇷 189.17.134.242

🇬🇭 154.160.0.152