JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.207.222.251

18.207.222.251 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 16%: ?

16%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-18-207-222-251.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.207.222.251

Whois 18.207.222.251

IP Abuse Reports for 18.207.222.251:

This IP address has been reported a total of 3 times from 2 distinct sources. 18.207.222.251 was first reported on June 20th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-20 21:59:11 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-20	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-20 15:15:13 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 18.207.222.251 (ec2-18-207-222-251.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.207.222.251 (ec2-18-207-222-251.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 11:15:08.376893 2026] [security2:error] [pid 3419:tid 3419] [client 18.207.222.251:58760] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.glolady.com"] [uri "/.git/config"] [unique_id "ajaufGqXfVxo_7t_43Rl4QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 14:15:06 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 18.207.222.251 (ec2-18-207-222-251.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.207.222.251 (ec2-18-207-222-251.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 10:14:59.154624 2026] [security2:error] [pid 10380:tid 10380] [client 18.207.222.251:47812] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.norbertesser.com"] [uri "/.git/config"] [unique_id "ajagY7_oMeD5XMUgFXUsqwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.131.5.202

🇺🇸 198.46.168.51

🇨🇳 121.40.169.125

🇹🇼 116.59.11.86

🇺🇸 47.251.243.210

🇺🇸 44.227.168.230

🇺🇸 44.165.236.144

🇨🇭 209.99.185.239

🇳🇱 176.65.139.181

🇩🇪 152.53.22.186

🇺🇸 147.185.132.28

🇺🇸 141.11.88.102

🇺🇸 135.119.27.130

🇺🇸 97.211.104.169

🇱🇹 81.30.98.62

🇺🇸 73.36.177.174

🇱🇹 62.60.130.237

🇲🇾 47.250.81.6

🇺🇸 44.104.119.216

🇧🇪 198.235.24.255