JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.212.56.204

18.212.56.204 was found in our database!

This IP was reported 106 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-18-212-56-204.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.212.56.204

Whois 18.212.56.204

IP Abuse Reports for 18.212.56.204:

This IP address has been reported a total of 106 times from 71 distinct sources. 18.212.56.204 was first reported on May 14th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ValtonTahiri	2026-06-09 21:05:21 (5 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=18.212.56.204; proto=TCP; source_port=34958; target_port=31337; flags=SYN show less	Port Scan
🇺🇸 ISPLtd	2026-06-09 12:28:46 (5 days ago)	Jun 9 09:28:19 18.212.56.204 TCP SPT=64902 DPT=9200 SYN Jun 9 09:28:20 18.212.56.204 TCP SPT=64902 ... show more Jun 9 09:28:19 18.212.56.204 TCP SPT=64902 DPT=9200 SYN Jun 9 09:28:20 18.212.56.204 TCP SPT=64902 DPT=9200 SYN Jun 9 09:28:23 18.212.56.204 TCP SPT=64902 DPT=9200 ... show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-08 22:52:54 (6 days ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 13443 [1] TCP	Port Scan
Anonymous	2026-06-08 21:29:07 (6 days ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇺🇸 Choice Tech LLC	2026-06-08 19:05:08 (6 days ago)	Blocked by OPNsense firewall; 3 hits, proto=tcp, ports=12443	Port Scan Hacking
🇩🇪 Axel	2026-06-08 14:49:27 (6 days ago)	[2026-06-08 14:49:27 UTC] Honeypot IoT-targeted remote mgmt abuse connection attempt \| AXFRA HONEYPO ... show more [2026-06-08 14:49:27 UTC] Honeypot IoT-targeted remote mgmt abuse connection attempt \| AXFRA HONEYPOT show less	IoT Targeted
🇩🇪 Justin F. \| AS204464	2026-06-08 12:34:46 (6 days ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 1245 GET / User-Agent: Mozilla/5.0 (Windows NT 10 ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 1245 GET / User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 1245 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
Anonymous	2026-06-08 06:30:13 (6 days ago)	Triggered: repeated knocking on closed ports.	Port Scan
🇫🇷 ISPLtd	2026-06-08 05:39:55 (6 days ago)	Jun 8 02:39:51 18.212.56.204 TCP SPT=64794 DPT=8080 SYN Jun 8 02:39:52 18.212.56.204 TCP SPT=64794 ... show more Jun 8 02:39:51 18.212.56.204 TCP SPT=64794 DPT=8080 SYN Jun 8 02:39:52 18.212.56.204 TCP SPT=64794 DPT=8080 SYN Jun 8 02:39:54 18.212.56.204 TCP SPT=64794 DPT=8080 ... show less	Port Scan
🇩🇪 bescared	2026-06-08 03:29:07 (6 days ago)	F2B - Malicious activity detected. Excessive port scans. -8ff06ede-	Port Scan
🇦🇹 centurion	2026-06-08 03:29:06 (6 days ago)	Unauthorized attempt on git [13443/tcp] Source port: 53220 TTL: 119 Packet length: 60 TOS: 0x00 http ... show more Unauthorized attempt on git [13443/tcp] Source port: 53220 TTL: 119 Packet length: 60 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 Pingger Shikkoken	2026-06-08 03:29:05 (6 days ago)	2026-06-08T03:29:05+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-06-08T03:29:05+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=18.212.56.204 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=120 ID=31438 DF PROTO=TCP SPT=24514 DPT=13443 WINDOW=62727 RES=0x00 SYN URGP=0 2026-06-08T03:29:06+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=18.212.56.204 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=120 ID=31439 DF PROTO=TCP SPT=24514 DPT=13443 WINDOW=62727 RES=0x00 SYN URGP=0 2026-06-08T03:29:08+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=18.212.56.204 DST=152.53.50.28 LEN=60 TOS=0x00 PREC=0x00 TTL=120 ID=31440 DF PROTO=TCP SPT=24514 DPT=13443 WINDOW=62727 RES=0x00 SYN URGP=0 show less	Hacking
🇦🇺 FireGuard Server	2026-06-08 02:50:16 (6 days ago)	Blocked by OPNsense firewall; 3 hits, proto=tcp, ports=9200	Port Scan Hacking
🇯🇵 S.O.B.A. Dev.	2026-06-08 01:48:52 (6 days ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇳🇱 StopAbuse	2026-06-07 20:22:07 (1 week ago)	tcp/13443	Port Scan

Showing 1 to 15 of 106 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 223.27.18.80

🇸🇪 158.173.241.250

🇸🇪 158.173.241.184

🇸🇪 158.173.241.86

🇸🇪 158.173.241.46

🇺🇸 135.237.126.73

🇭🇰 103.81.168.2

🇸🇪 90.227.134.176

🇨🇦 68.183.193.242

🇨🇳 60.13.6.231

🇳🇱 45.148.10.141

🇸🇦 34.166.5.230

🇮🇩 34.101.96.36

🇰🇷 1.238.106.229

🇩🇪 213.209.159.235

🇭🇰 199.45.154.123

🇹🇼 198.235.24.82

🇬🇧 193.163.125.198

🇳🇱 176.65.149.64

🇰🇷 175.126.37.156