JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.212.155.120

18.212.155.120 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 64%: ?

64%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-18-212-155-120.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.212.155.120

Whois 18.212.155.120

IP Abuse Reports for 18.212.155.120:

This IP address has been reported a total of 34 times from 17 distinct sources. 18.212.155.120 was first reported on June 5th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-08 21:59:14 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
🇫🇷 masterguru	2026-06-07 13:49:58 (2 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. (11 ... show more BAD BOT - Detected and Blocked.. Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. (1100000-135) show less	Bad Web Bot
🇩🇪 DEV-DNS	2026-06-07 13:12:48 (2 weeks ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇧🇪 taivas.nl	2026-06-07 04:32:20 (2 weeks ago)	Many_bad_calls	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 03:20:59 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 23:20:55.974807 2026] [security2:error] [pid 7755:tid 7755] [client 18.212.155.120:42460] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schrankhome.com"] [uri "/.git/config"] [unique_id "aiTjl-SERa5LYrxdXmPkwQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-07 03:00:11 (2 weeks ago)	Unauthorized access to webpage admin	Web App Attack
🇧🇪 taivas.nl	2026-06-07 02:32:10 (2 weeks ago)	Bad_requests	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-07 02:30:17 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 22:30:11.961053 2026] [security2:error] [pid 10834:tid 10987] [client 18.212.155.120:56350] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scribblism.com"] [uri "/.git/config"] [unique_id "aiTXs5ERcooeCrM1BrKt8QAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-06-07 02:00:31 (2 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇨🇭 backslash	2026-06-07 01:12:00 (2 weeks ago)	block ruleset bad bot: misc bad content F608233CC4C86EE814CE8DDDA9C4A0D3C79882F6	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-07 00:20:39 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:949110) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 20:20:31.471321 2026] [security2:error] [pid 2763:tid 2763] [client 18.212.155.120:35836] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "scrase.com"] [uri "/.git/config"] [unique_id "aiS5T4MrZLaOX9-Exc9DjQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 22:27:29 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 18:27:23.006079 2026] [security2:error] [pid 21410:tid 21410] [client 18.212.155.120:38328] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sb-adventures.com"] [uri "/.git/config"] [unique_id "aiSey1wmiB1FP0CJ2lQNLwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 18:05:48 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 14:05:44.077429 2026] [security2:error] [pid 2996:tid 2996] [client 18.212.155.120:54932] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saudigreenrecycling.com"] [uri "/.git/config"] [unique_id "aiRheNt1Fjs1SBNgKK6RhwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 13:51:42 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 09:51:38.313964 2026] [security2:error] [pid 31599:tid 31599] [client 18.212.155.120:34218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "smogsandiego.com"] [uri "/.git/config"] [unique_id "aiQl6vdwZsgO5TUftiiJMwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 10:49:18 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.am ... show more (mod_security) mod_security (id:210492) triggered by 18.212.155.120 (ec2-18-212-155-120.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 06:49:14.363882 2026] [security2:error] [pid 21395:tid 21395] [client 18.212.155.120:36808] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sailyourkayak.com"] [uri "/.git/config"] [unique_id "aiP7KoVWmuOnUmRXJig19AAAABg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.176

🇭🇰 162.159.98.213

🇮🇳 122.185.178.134

🇺🇸 66.132.186.249

🇮🇶 65.20.174.49

🇺🇸 64.62.197.52

🇱🇹 62.60.130.219

🇷🇺 62.16.41.154

🇹🇭 61.19.69.203

🇺🇸 40.114.79.135

🇺🇸 20.15.224.135

🇹🇼 198.235.24.54

🇵🇱 195.3.220.7

🇷🇴 141.98.83.240

🇳🇱 45.148.10.151

🇳🇱 45.148.10.141

🇧🇪 34.156.189.184

🇺🇸 4.157.250.195

🇹🇷 95.128.58.227

🇵🇭 61.245.12.236