JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 54.90.195.104

54.90.195.104 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 4%: ?

ISP	Amazon Data Services Northern Virginia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-54-90-195-104.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 54.90.195.104

Whois 54.90.195.104

IP Abuse Reports for 54.90.195.104:

This IP address has been reported a total of 4 times from 3 distinct sources. 54.90.195.104 was first reported on May 6th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 14:49:45 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.90.195.104 (ec2-54-90-195-104.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 54.90.195.104 (ec2-54-90-195-104.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 10:49:41.938439 2026] [security2:error] [pid 32200:tid 32200] [client 54.90.195.104:59980] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.srossi.net"] [uri "/.git/config"] [unique_id "ajf6BcE1cBKgWBQjnr1SXAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 14:12:10 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 54.90.195.104 (ec2-54-90-195-104.compute-1.amaz ... show more (mod_security) mod_security (id:210492) triggered by 54.90.195.104 (ec2-54-90-195-104.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 10:12:06.968839 2026] [security2:error] [pid 7266:tid 7266] [client 54.90.195.104:39780] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.etoyfun.com"] [uri "/.git/config"] [unique_id "ajfxNtVHXpdAAG_GGPlzBQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 SaltySoftworks	2024-03-18 16:07:59 (2 years ago)	User agent spoofing Making suspicious HEAD requests by Amazon Technologies Inc.	DDoS Attack Web Spam Port Scan Hacking Spoofing Bad Web Bot Web App Attack
🇳🇱 maxxsense	2023-05-06 01:21:41 (3 years ago)	(CT) IP 54.90.195.104 (US/United States/ec2-54-90-195-104.compute-1.amazonaws.com) found to have 338 ... show more (CT) IP 54.90.195.104 (US/United States/ec2-54-90-195-104.compute-1.amazonaws.com) found to have 338 connections show less	DDoS Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 185.157.91.192

🇫🇷 146.70.194.238

🇸🇬 143.198.203.76

🇷🇸 109.207.35.187

🇸🇬 98.159.43.92

🇩🇪 91.92.33.248

🇺🇸 216.180.246.19

🇫🇷 213.199.45.139

🇺🇸 205.210.31.15

🇹🇼 198.235.24.65

🇩🇪 167.94.145.20

🇨🇳 119.114.56.62

🇩🇪 69.5.169.127

🇨🇳 36.135.94.148

🇬🇧 35.203.211.212

🇨🇳 223.70.149.210

🇪🇸 188.77.184.84

🇨🇳 113.56.35.44

🇺🇸 109.105.209.67

🇹🇷 85.105.255.56