JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.227.18.173

54.227.18.173 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 22%: ?

22%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-227-18-173.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.227.18.173

Whois 54.227.18.173

IP Abuse Reports for 54.227.18.173:

This IP address has been reported a total of 114 times from 9 distinct sources. 54.227.18.173 was first reported on February 12th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Steve	2026-06-02 03:40:32 (2 weeks ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-27 02:40:37 (3 weeks ago)	Blocked by CSF 13 firewall - Rule: US/United States/ec2-54-227-18-173.compute-1.amazonaws.com	Web App Attack
🇬🇧 Steve	2026-05-17 13:33:24 (1 month ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
🇺🇸 mw	2026-05-15 00:00:24 (1 month ago)	POST /wp-admin/admin-ajax.php?action=wp01_generate_zip_archive HTTP/1.1	Web App Attack
Anonymous	2026-05-14 07:10:09 (1 month ago)	CVE-2025-68645 - ZIMBRA EXPLOIT - HTTP(Request)	Hacking
🇺🇸 mw	2026-05-13 00:00:27 (1 month ago)	POST /wp-admin/admin-ajax.php HTTP/1.1	Web App Attack
🇺🇸 mw	2026-05-11 00:00:19 (1 month ago)	POST /wp-admin/admin-ajax.php?action=wp01_generate_zip_archive HTTP/1.1	Web App Attack
🇺🇸 mw	2026-05-10 00:00:35 (1 month ago)	GET /wp-admin/profile.php HTTP/1.1	Web App Attack
🇺🇸 mw	2026-05-04 00:00:21 (1 month ago)	GET /__weave/file/tmp/weave/fs/../../../etc/passwd HTTP/1.1	Web App Attack
🇦🇺 MAGIC	2026-05-02 02:00:32 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 Steve	2026-04-30 18:01:33 (1 month ago)	Abuse of XMLRPC	Brute-Force Web App Attack
🇺🇸 mw	2026-04-30 00:00:11 (1 month ago)	GET /api/get-browser-snapshot?snapshot_path=/etc/passwd HTTP/1.1	Web App Attack
🇺🇸 mw	2026-04-26 00:00:51 (1 month ago)	GET /static/nbextensions/#23/../../../../../../../../../../etc/passwd HTTP/1.1	Web App Attack
🇺🇸 mw	2026-04-18 00:20:52 (2 months ago)	GET /model-versions/get-artifact?name=39z0yo4IrYiONB6tEePd4rSFMep&path=etc%2Fpasswd&version=1 HTTP/1 ... show more GET /model-versions/get-artifact?name=39z0yo4IrYiONB6tEePd4rSFMep&path=etc%2Fpasswd&version=1 HTTP/1.1 show less	Web App Attack
🇺🇸 mw	2026-04-15 00:00:50 (2 months ago)	GET /3/ImportFiles?path=%2Fetc%2Fpasswd HTTP/1.1	Web App Attack

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.169.49.86

🇸🇬 194.164.107.6

🇮🇩 118.99.114.224

🇮🇩 110.35.80.116

🇪🇸 93.93.115.224

🇫🇷 92.205.225.165

🇩🇪 89.36.76.140

🇩🇪 79.220.98.22

🇺🇸 65.49.1.113

🇧🇪 35.195.174.116

🇺🇸 2a00:1450:4864:20::632

🇺🇸 199.245.176.134

🇰🇷 115.178.75.243

🇰🇷 112.184.50.152

🇳🇱 45.148.10.147

🇺🇸 107.150.98.168

🇹🇭 202.29.224.230

🇧🇪 130.211.60.154

🇰🇷 121.132.27.238

🇹🇯 109.75.55.168