JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.219.216.0

18.219.216.0 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-18-219-216-0.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.219.216.0

Whois 18.219.216.0

IP Abuse Reports for 18.219.216.0:

This IP address has been reported a total of 33 times from 29 distinct sources. 18.219.216.0 was first reported on June 18th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 gu-alvareza	2026-06-19 07:05:43 (2 days ago)	Spring.Boot.Actuator.Unauthorized.Access	Brute-Force
Anonymous	2026-06-19 05:11:19 (2 days ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇫🇷 service Informatique	2026-06-19 04:00:37 (2 days ago)	GET /wp-config	Web App Attack
🇬🇧 andypiper	2026-06-19 01:02:48 (2 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇷🇸 Scan	2026-06-19 00:30:14 (2 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 centurion	2026-06-19 00:12:22 (2 days ago)	Blocked by UFW on ns02 [2082/tcp] Source port: 34692 TTL: 58 Packet length: 60 TOS: 0x00 This repor ... show more Blocked by UFW on ns02 [2082/tcp] Source port: 34692 TTL: 58 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-18 22:43:22 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 18.219.216.0 (ec2-18-219-216-0.us-east-2.comput ... show more (mod_security) mod_security (id:210492) triggered by 18.219.216.0 (ec2-18-219-216-0.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 18:43:16.528972 2026] [security2:error] [pid 13713:tid 13713] [client 18.219.216.0:48348] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.214"] [uri "/.git/HEAD"] [unique_id "ajR0hPLLoQCllb9BHgUVDAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 22:37:31 (2 days ago)	Portscan: TCP/443, TCP/2096, TCP/2083 (2x), TCP/2082, TCP/80, TCP/2078 (2x), TCP/2086 (2x), TCP/2095 ... show more Portscan: TCP/443, TCP/2096, TCP/2083 (2x), TCP/2082, TCP/80, TCP/2078 (2x), TCP/2086 (2x), TCP/2095, TCP/2077 show less	Port Scan
🇨🇱 Denis Chavez	2026-06-18 22:32:56 (2 days ago)	Fail2Ban detected malicious activity on Nginx	Brute-Force SSH Web App Attack
🇮🇳 Mr.Singh	2026-06-18 21:30:18 (2 days ago)	NFT blocked 18.219.216.0 after 4 rejections on 19-Jun-2026.	Port Scan Brute-Force
🇩🇪 Enno	2026-06-18 20:06:45 (3 days ago)	P04::Fail2Ban: automated bot scanning / credential probing detected.	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-18 18:47:02 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 18.219.216.0 (ec2-18-219-216-0.us-east-2.comput ... show more (mod_security) mod_security (id:210492) triggered by 18.219.216.0 (ec2-18-219-216-0.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 14:46:55.258378 2026] [security2:error] [pid 25965:tid 25965] [client 18.219.216.0:49128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.150"] [uri "/.git/config"] [unique_id "ajQ9H0w7rbCo3k8PzmErKAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Moby	2026-06-18 18:24:22 (3 days ago)	18.219.216.0 - - [18/Jun/2026:13:24:19 -0500] "GET /.git/logs/HEAD HTTP/1.1" 404 984 "-" "Mozilla/5. ... show more 18.219.216.0 - - [18/Jun/2026:13:24:19 -0500] "GET /.git/logs/HEAD HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" "75.88.18.220" "75.88.18.220" 18.219.216.0 - - [18/Jun/2026:13:24:21 -0500] "GET /.git/refs/heads/main HTTP/1.1" 404 984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "75.88.18.220" "75.88.18.220" 18.219.216.0 - - [18/Jun/2026:13:24:21 -0500] "GET /.git/index HTTP/1.1" 404 984 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "75.88.18.220" "75.88.18.220" ... show less	Web App Attack
🇳🇱 ReyhZhao	2026-06-18 18:06:20 (3 days ago)	Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was ... show more Bunkerweb ModSecurity alert: Potential Remote Command Execution (RCE) detected. Unix shell code was identified within the request arguments, triggering a security rule designed to prevent application attacks. show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 17:56:56 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 18.219.216.0 (ec2-18-219-216-0.us-east-2.comput ... show more (mod_security) mod_security (id:210492) triggered by 18.219.216.0 (ec2-18-219-216-0.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 13:56:51.471534 2026] [security2:error] [pid 8764:tid 8764] [client 18.219.216.0:40410] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.113"] [uri "/.git/logs/HEAD"] [unique_id "ajQxYxQ-xA9mQpSmwtx6-QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 200.77.172.159

🇦🇷 181.104.43.225

🇩🇪 157.90.172.93

🇯🇵 126.159.39.191

🇲🇽 104.243.245.7

🇺🇸 98.92.209.180

🇷🇴 92.118.39.209

🇳🇱 45.148.10.151

🇳🇱 5.83.143.40

🇺🇸 165.154.36.192

🇺🇸 135.237.124.6

🇨🇳 27.24.141.95

🇧🇷 205.210.31.249

🇳🇱 195.178.110.2

🇺🇸 185.226.196.13

🇺🇸 173.18.106.54

🇨🇳 121.28.170.66

🇰🇷 112.216.129.27

🇺🇸 109.105.210.89

🇷🇴 80.94.92.145