JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.66.24.222

54.66.24.222 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 29%: ?

29%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-54-66-24-222.ap-southeast-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.66.24.222

Whois 54.66.24.222

IP Abuse Reports for 54.66.24.222:

This IP address has been reported a total of 8 times from 6 distinct sources. 54.66.24.222 was first reported on May 14th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-08 10:56:18 (1 week ago)	(WPLOGIN) WP Login Attack 54.66.24.222 (AU/Australia/ec2-54-66-24-222.ap-southeast-2.compute.amazona ... show more (WPLOGIN) WP Login Attack 54.66.24.222 (AU/Australia/ec2-54-66-24-222.ap-southeast-2.compute.amazonaws.com): 10 in the last 3600 secs; Ports: *; Direction: 1 show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-08 05:46:57 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 54.66.24.222 (ec2-54-66-24-222.ap-southeast-2.c ... show more (mod_security) mod_security (id:225170) triggered by 54.66.24.222 (ec2-54-66-24-222.ap-southeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:46:50.318177 2026] [security2:error] [pid 21584:tid 21584] [client 54.66.24.222:46014] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.cyqci.eu\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cyqci.eu"] [uri "/wp-json/wp/v2/users"] [unique_id "aiZXSqGMC4RAKWe18JTuQQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 14:22:48 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 54.66.24.222 (ec2-54-66-24-222.ap-southeast-2.c ... show more (mod_security) mod_security (id:225170) triggered by 54.66.24.222 (ec2-54-66-24-222.ap-southeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 10:22:43.814475 2026] [security2:error] [pid 31670:tid 31670] [client 54.66.24.222:50664] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.difusionens.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.difusionens.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aiV-s5IM90anU3lMUpEG-QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-06 23:23:08 (2 weeks ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 TPI-Abuse	2026-06-06 01:57:51 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 54.66.24.222 (ec2-54-66-24-222.ap-southeast-2.c ... show more (mod_security) mod_security (id:225170) triggered by 54.66.24.222 (ec2-54-66-24-222.ap-southeast-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 21:57:47.393339 2026] [security2:error] [pid 24494:tid 24494] [client 54.66.24.222:51762] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.peterjohnsonauthor.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.peterjohnsonauthor.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiN-m73K4LwPMRB6nnhC1gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 bigwavedave	2026-06-06 01:45:44 (2 weeks ago)	Wordpress Attack	Web App Attack
🇺🇸 mnsf	2026-05-14 22:05:49 (1 month ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
Anonymous	2026-05-14 17:31:45 (1 month ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 168.228.89.207

🇩🇪 159.65.112.25

🇻🇳 152.32.249.95

🇻🇳 123.21.26.223

🇹🇭 49.228.242.242

🇨🇳 14.103.115.162

🇸🇪 188.149.41.41

🇵🇹 188.83.131.4

🇮🇳 182.78.67.22

🇺🇸 152.163.119.68

🇺🇸 147.185.132.29

🇵🇰 119.156.99.196

🇳🇱 91.92.40.6

🇫🇷 85.217.140.40

🇺🇸 64.62.156.153

🇯🇵 58.98.197.137

🇰🇷 36.38.56.82

🇿🇦 197.185.134.202

🇩🇪 172.253.1.222

🇺🇸 160.79.106.35