JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.222.140.72

18.222.140.72 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-18-222-140-72.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.222.140.72

Whois 18.222.140.72

IP Abuse Reports for 18.222.140.72:

This IP address has been reported a total of 24 times from 24 distinct sources. 18.222.140.72 was first reported on June 5th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 excill	2026-06-06 03:10:08 (4 days ago)	Honeypot mesh observed 461 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
Anonymous	2026-06-05 12:44:43 (5 days ago)	SIEM ALERT AUTO REPORT	Email Spam
🇺🇸 Deltron3030	2026-06-05 12:42:03 (5 days ago)	SSH brute-force attempt from 18.222.140.72 blocked by Houston-Ryzen-Dartnode.	Brute-Force SSH
🇩🇪 femboy.cat	2026-06-05 12:39:53 (5 days ago)	Port scan to tcp/500 from 18.222.140.72	Brute-Force
🇵🇱 sefinek.net	2026-06-05 12:39:38 (5 days ago)	Honeypot hit: Unauthorized traffic (1 bytes of payload); 8999 [2] TCP Reported by: https://github.co ... show more Honeypot hit: Unauthorized traffic (1 bytes of payload); 8999 [2] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 musicwolf83	2026-06-05 12:38:33 (5 days ago)	2026-06-05 06:38:25.077534954 2026-06-05T12:38:25.077Z ACCEPT host=::ffff:18.222.140.72 port=41266 ... show more 2026-06-05 06:38:25.077534954 2026-06-05T12:38:25.077Z ACCEPT host=::ffff:18.222.140.72 port=41266 fd=4 n=1/4096 ... show less	Brute-Force SSH
Anonymous	2026-06-05 12:38:26 (5 days ago)	Trying ports that it shouldn't be.	Port Scan Hacking Exploited Host
🇺🇸 FurrIX vIX	2026-06-05 12:38:24 (5 days ago)	[FurrIX NOC, Automated, PHY TWO]: Bonked into empty SSH door. Whatcha looking for in there, eh?!	Brute-Force SSH
🇩🇪 mittPS	2026-06-05 12:38:12 (5 days ago)	2026-06-05T14:38:11.526087+02:00 immelmann sshd[1122419]: error: kex_exchange_identification: client ... show more 2026-06-05T14:38:11.526087+02:00 immelmann sshd[1122419]: error: kex_exchange_identification: client sent invalid protocol identifier "" 2026-06-05T14:38:11.526129+02:00 immelmann sshd[1122419]: banner exchange: Connection from 18.222.140.72 port 53682: invalid format ... show less	Brute-Force SSH
🇦🇹 begou.dev	2026-06-05 12:33:29 (5 days ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/636	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-05 12:28:36 (5 days ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (1 bytes of payload); 8083 [2] TCP Reported by: J ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (1 bytes of payload); 8083 [2] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 gbzret4d	2026-06-05 12:27:53 (5 days ago)	Honeypot [uk-production01]: HTTP/1.1 request on 49000 GET / User-Agent: visionheight.com/scan Mozil ... show more Honeypot [uk-production01]: HTTP/1.1 request on 49000 GET / User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 49000 [1] TCP show less	Hacking Bad Web Bot
🇹🇷 Threat.live	2026-06-05 12:25:04 (5 days ago)	Suspicious Connection Attempts	Brute-Force
🇦🇺 Ticketebo Pty. Ltd.	2026-06-05 12:22:55 (5 days ago)	$f2bV_matches	Brute-Force
🇺🇸 PP-VTNK	2026-06-05 12:22:53 (5 days ago)	2026-06-05T15:22:52.561408+03:00 vatnik sshd[86224]: Connection closed by 18.222.140.72 port 65168 [ ... show more 2026-06-05T15:22:52.561408+03:00 vatnik sshd[86224]: Connection closed by 18.222.140.72 port 65168 [preauth] ... show less	Hacking Brute-Force SSH

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.67

🇷🇴 80.94.92.186

🇺🇸 74.207.252.39

🇳🇱 45.148.10.152

🇳🇱 45.148.10.67

🇺🇸 216.26.224.184

🇫🇷 176.191.43.176

🇺🇸 162.216.149.145

🇨🇳 111.55.96.78

🇮🇩 103.51.205.92

🇫🇷 91.231.89.87

🇭🇰 66.232.15.73

🇺🇸 64.62.156.62

🇨🇳 49.7.214.219

🇺🇦 46.149.191.249

🇺🇸 40.124.80.149

🇨🇳 36.134.211.170

🇫🇷 34.1.12.124

🇸🇬 23.97.62.128

🇰🇷 1.238.106.229