JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.81.31.187

54.81.31.187 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 0%: ?

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-81-31-187.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.81.31.187

Whois 54.81.31.187

IP Abuse Reports for 54.81.31.187:

This IP address has been reported a total of 69 times from 58 distinct sources. 54.81.31.187 was first reported on November 6th 2025, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 benii	2025-11-09 23:33:57 (7 months ago)	Fail2Ban detected activity recidive on web service	Hacking
🇧🇪 boxed-it	2025-11-08 15:23:34 (7 months ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇧🇪 boxed-it	2025-11-08 14:23:03 (7 months ago)	GET /.git/config (Tarpitted for 1d15h8m29s, wasted 8.06MB)	Web App Attack
🇨🇴 adalbertoreyes.org	2025-11-08 02:25:32 (7 months ago)	CategoryPortScan	Port Scan
🇳🇱 homeshowdomain.nl	2025-11-07 23:02:11 (7 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-11-06. show less	Hacking Web App Attack SSH
Anonymous	2025-11-07 05:18:09 (7 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇳🇱 jjnxpct	2025-11-07 04:45:11 (7 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.git/config (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .git/ found within REQUEST_FILENAME: /.git/config] show less	Hacking Web App Attack
Anonymous	2025-11-07 04:30:38 (7 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇬🇧 MrTumnus	2025-11-07 03:02:53 (7 months ago)		Web App Attack
🇩🇪 Interceptor_HQ	2025-11-07 02:57:03 (7 months ago)	request_uri: /.git/config -- automatic report --	Hacking Brute-Force
🇳🇱 thedreamer.nl	2025-11-07 02:56:38 (7 months ago)	54.81.31.187 - - [06/Nov/2025:22:28:22 +0100] "GET /.git/config HTTP/1.1" 200 1007 "-" "Mozilla/5.0 ... show more 54.81.31.187 - - [06/Nov/2025:22:28:22 +0100] "GET /.git/config HTTP/1.1" 200 1007 "-" "Mozilla/5.0 (Linux; Android 8.1.0; Moto G (5S)) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" "US" "Ashburn" "39.04690" "-77.49030" 54.81.31.187 - - [06/Nov/2025:22:41:08 +0100] "GET /.git/config HTTP/1.1" 200 1007 "-" "Mozilla/5.0 (Linux; Android 9; ONEPLUS A5000) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36" "US" "Ashburn" "39.04690" "-77.49030" 54.81.31.187 - - [07/Nov/2025:03:49:36 +0100] "GET /.git/config HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Linux; Android 9; SM-N950F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36" "US" "Ashburn" "39.04690" "-77.49030" 54.81.31.187 - - [07/Nov/2025:03:55:58 +0100] "GET /.git/config HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-J710FN) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" "US" "Ashburn" "39.04690" "-77. ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2025-11-07 02:56:08 (7 months ago)	trolling for resource vulnerabilities	Web App Attack
🇬🇧 gurnip	2025-11-07 02:50:24 (7 months ago)	Vulnerability probe of page /.git/config, not found on server.	Brute-Force Web App Attack
🇫🇷 adembaysal	2025-11-07 02:48:06 (7 months ago)	Domain : cms.bahukukyazilim.com Rule : config 2025-11-07 02:46:15 *hidden-privacy* GET /.git/con ... show more Domain : cms.bahukukyazilim.com Rule : config 2025-11-07 02:46:15 *hidden-privacy* GET /.git/config - 443 - 54.81.31.187 HTTP/1.1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.119 - cms.bahukukyazilim.com 404 8 64 0 277 1791 - - show less	Hacking SQL Injection
🇳🇱 i-turnradio.nl	2025-11-07 02:34:31 (7 months ago)	2025-11-07 @ 03:34:31 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack

Showing 1 to 15 of 69 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 185.191.171.15

🇨🇦 138.197.171.149

🇧🇩 103.199.110.49

🇸🇬 2a09:bac5:55fc:1028::19c:28c

🇺🇸 208.109.38.143

🇹🇳 197.5.145.150

🇺🇸 172.232.15.250

🇦🇷 138.117.14.170

🇳🇱 134.209.193.183

🇨🇭 104.244.78.33

🇩🇪 87.106.118.51

🇨🇦 85.217.149.3

🇺🇸 67.205.130.159

🇭🇰 45.207.196.123

🇺🇸 45.86.211.129

🇧🇷 45.4.148.39

🇮🇩 43.165.198.224

🇮🇩 36.93.249.106

🇬🇧 35.203.211.249

🇧🇷 205.210.31.180