JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.218.134.84

18.218.134.84 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 75%: ?

75%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-18-218-134-84.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.218.134.84

Whois 18.218.134.84

IP Abuse Reports for 18.218.134.84:

This IP address has been reported a total of 23 times from 16 distinct sources. 18.218.134.84 was first reported on June 17th 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Delta-shop	2026-06-27 05:15:34 (9 hours ago)	PrestaShop Security Module: Suspicious path detected (/.git)	Web App Attack
🇳🇱 Site.eu	2026-06-27 04:02:47 (10 hours ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-26 23:53:41 (14 hours ago)	18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /.gitignore HTTP/1.1" 403 124 "-" "Mozilla/5.0 ( ... show more 18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /.gitignore HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" 18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /.github/workflows/main.yml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36" 18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /config/application.yml.old HTTP/1.1" 403 183 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36" 18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /.git/HEAD HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" 18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /config.json HTTP/1.1" 403 124 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Safari/605.1.15" 18.218.134.84 - - [27/Jun/2026:01:53:39 +0200] "GET /.circleci/config.yml HTTP/1.1" 403 183 "-" "Mozilla/5.0 (X11; Linux x ... show less	Bad Web Bot Web App Attack
Anonymous	2026-06-26 22:53:58 (15 hours ago)	18.218.134.84 - - [26/Jun/2026:22:53:57 +0000] "GET /.env HTTP/1.1" 301 588 "-" "Mozilla/5.0 (X11; L ... show more 18.218.134.84 - - [26/Jun/2026:22:53:57 +0000] "GET /.env HTTP/1.1" 301 588 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 22:01:54 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.comp ... show more (mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 18:01:48.482676 2026] [security2:error] [pid 21736:tid 21736] [client 18.218.134.84:55222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fiyaplatform.com"] [uri "/.env"] [unique_id "aj72zJnnLeBVdi5qDdC-YwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 11:18:49 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.comp ... show more (mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 07:18:41.803598 2026] [security2:error] [pid 16640:tid 16640] [client 18.218.134.84:56306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tech-support.biz"] [uri "/.env"] [unique_id "aj5gEfpo3QZ2niyl55UI5gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 10:30:45 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.comp ... show more (mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 06:30:42.336339 2026] [security2:error] [pid 5194:tid 5194] [client 18.218.134.84:58600] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cybersoftware.org"] [uri "/.env"] [unique_id "aj5U0mPIasCohDO-eLajqgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-26 08:26:43 (1 day ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇧🇪 voormedia	2026-06-26 05:57:30 (1 day ago)	Accessed trap at '/.env'	Web App Attack
🇩🇪 piticu iuli	2026-06-26 04:38:29 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 18.218.134.84 (US/United States/ec2-18- ... show more (mod_security) mod_security triggered on hostname [redacted] 18.218.134.84 (US/United States/ec2-18-218-134-84.us-east-2.compute.amazonaws.com) show less	SQL Injection
🇺🇸 TPI-Abuse	2026-06-26 04:06:08 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.comp ... show more (mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 00:06:03.309849 2026] [security2:error] [pid 730:tid 730] [client 18.218.134.84:60518] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twccsolutions.com"] [uri "/.env"] [unique_id "aj36q2hHT9t_4MSR8phvXAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Oakley	2026-06-26 03:55:07 (1 day ago)	(confirmed_bot_sig) Confirmed bot	Hacking
Anonymous	2026-06-26 00:13:06 (1 day ago)	Sensitive Configuration File Disclosure.	Hacking
Anonymous	2026-06-26 00:02:40 (1 day ago)	SIEM ALERT AUTO REPORT	Email Spam
🇺🇸 TPI-Abuse	2026-06-25 23:15:21 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.comp ... show more (mod_security) mod_security (id:210492) triggered by 18.218.134.84 (ec2-18-218-134-84.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:15:16.275944 2026] [security2:error] [pid 4280:tid 4280] [client 18.218.134.84:52419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "groupof12.com"] [uri "/.env"] [unique_id "aj22hBEDqaHGAuscPy1SegAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.37.69.171

🇧🇷 189.36.215.193

🇧🇩 103.179.198.19

🇲🇾 103.179.70.194

🇪🇬 41.238.100.45

🇹🇼 202.39.153.245

🇬🇧 193.163.125.250

🇲🇽 189.224.27.8

🇧🇷 138.0.44.57

🇨🇳 111.53.8.101

🇳🇱 91.92.40.239

🇧🇾 81.30.98.142

🇳🇴 51.120.79.15

🇵🇰 39.34.202.193

🇲🇽 189.216.169.37

🇲🇽 189.192.244.76

🇲🇽 189.161.68.129

🇱🇻 81.30.98.62

🇧🇬 79.124.40.126

🇲🇽 189.149.43.133