JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 18.225.221.49

18.225.221.49 was found in our database!

This IP was reported 45 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-18-225-221-49.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 18.225.221.49

Whois 18.225.221.49

IP Abuse Reports for 18.225.221.49:

This IP address has been reported a total of 45 times from 42 distinct sources. 18.225.221.49 was first reported on June 6th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 CYBER-SECURITY-MM	2026-06-21 05:01:45 (3 days ago)	Bloqueada por Fail2Ban jail postscreen por intento de spam SMTP	Web App Attack
🇫🇷 CYBER-SECURITY-MM	2026-06-14 05:01:47 (1 week ago)	Bloqueada por Fail2Ban jail postscreen por intento de spam SMTP	Web App Attack
🇨🇭 SOC [GOLINE SA]	2026-06-08 15:47:22 (2 weeks ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 18.225.221.49 (IPv4) \| Port: N/A \| Country: United States \| ISP: AT-88-Z \| rDNS: ec2-18-225-221-49.us-east-2.compute.amazonaws.com === TARGET === Host: lg.goline.ch \| IP: lg.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-06-08 17:47:21 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot
🇫🇷 CYBER-SECURITY-MM	2026-06-07 05:01:40 (2 weeks ago)	Bloqueada por Fail2Ban jail postscreen por intento de spam SMTP	Web App Attack
🇬🇧 blueskysystems	2026-06-06 20:00:02 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Web Spam
🇩🇪 snhosting	2026-06-06 19:56:03 (2 weeks ago)	2026-06-06T21:50:19.667960+02:00 www4 postfix/smtpd[934947]: improper command pipelining after CONNE ... show more 2026-06-06T21:50:19.667960+02:00 www4 postfix/smtpd[934947]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \n 2026-06-06T21:50:40.097085+02:00 www4 postfix/smtpd[934947]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 176.9.59.145:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Int 2026-06-06T21:51:13.137382+02:00 www4 postfix/smtpd[910918]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 176.9.59.145:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Int 2026-06-06T21:54:58.318182+02:00 www4 postfix/smtpd[910918]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \026\003\001\001\000\001\000\000\374\003\003Ma\203\225\205e+\030\313\274\a\260\215\r\213H\0 ... show less	Phishing Email Spam Brute-Force Web App Attack SSH
🇺🇸 ShadowWhisperer	2026-06-06 19:55:47 (2 weeks ago)	exploit - router (CVE-2018-14847) [cve, mikrotik, router, rce]	Port Scan
🇫🇷 Steve Brown	2026-06-06 19:55:44 (2 weeks ago)	2026-06-06T21:49:47.016126+02:00 frhb101616ds postfix/smtpd[24826]: improper command pipelining afte ... show more 2026-06-06T21:49:47.016126+02:00 frhb101616ds postfix/smtpd[24826]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \n 2026-06-06T21:50:07.497920+02:00 frhb101616ds postfix/smtpd[24826]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 185.246.87.130:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; I 2026-06-06T21:50:40.439226+02:00 frhb101616ds postfix/smtpd[24826]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 185.246.87.130:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; I 2026-06-06T21:54:25.462823+02:00 frhb101616ds postfix/smtpd[24841]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \026\003\001\001\000\001\000\000\374\003\003\177\241L\206\242\3 ... show less	Brute-Force
🇧🇷 modscleo4	2026-06-06 19:53:52 (2 weeks ago)	2026-06-06T16:48:22.381803-03:00 salada-de-fruta postfix/smtp/smtpd[3177384]: improper command pipel ... show more 2026-06-06T16:48:22.381803-03:00 salada-de-fruta postfix/smtp/smtpd[3177384]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \n 2026-06-06T16:48:43.340423-03:00 salada-de-fruta postfix/smtp/smtpd[3177384]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 170.0.20.87:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Inte 2026-06-06T16:49:15.694942-03:00 salada-de-fruta postfix/smtp/smtpd[3177384]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 170.0.20.87:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Inte 2026-06-06T16:52:57.788315-03:00 salada-de-fruta postfix/smtp/smtpd[3182187]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \026\003\001\001\000\00 ... show less	Brute-Force
🇩🇪 Mailguard-FRD	2026-06-06 19:53:32 (2 weeks ago)	Jun 6 21:53:31 [redacted] postfix/smtpd[86875]: lost connection after EHLO from ec2-18-225-221-49.u ... show more Jun 6 21:53:31 [redacted] postfix/smtpd[86875]: lost connection after EHLO from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49] ... show less	Email Spam Brute-Force
🇨🇴 ingentar	2026-06-06 19:53:31 (2 weeks ago)	Jun 6 14:48:53 mail postfix/smtpd[1014502]: improper command pipelining after CONNECT from ec2-18-2 ... show more Jun 6 14:48:53 mail postfix/smtpd[1014502]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \n Jun 6 14:49:14 mail postfix/smtpd[1014502]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 181.143.117.62:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; I Jun 6 14:49:47 mail postfix/smtpd[1014502]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 181.143.117.62:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; I Jun 6 14:53:30 mail postfix/smtpd[1014767]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \026\003\001\001\000\001\000\000\374\003\003A'j\035`\bJ\275j\331J\351(X\304\211"8\366^"\305\016\025\365\372\300\216\245j[` \353\270\242\350\nC\212\023\324V ... show less	Email Spam Brute-Force
🇨🇿 unhfree.net	2026-06-06 19:53:03 (2 weeks ago)	Jun 6 21:47:34 canopus postfix/smtpd[693549]: improper command pipelining after CONNECT from ec2-18 ... show more Jun 6 21:47:34 canopus postfix/smtpd[693549]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \n Jun 6 21:47:55 canopus postfix/smtpd[693549]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 185.51.248.4:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Int Jun 6 21:48:28 canopus postfix/smtpd[693549]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: GET / HTTP/1.1\r\nHost: 185.51.248.4:25\r\nUser-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Int Jun 6 21:52:08 canopus postfix/smtpd[693043]: improper command pipelining after CONNECT from ec2-18-225-221-49.us-east-2.compute.amazonaws.com[18.225.221.49]: \026\003\001\001\000\001\000\000\374\003\003\216K@y\323\224\370Eo\211\236G\315\266\254\320\251\370\017\026\303k\252>\n\000\253R{\336*\353 \277!A\34 ... show less	Brute-Force Exploited Host
Anonymous	2026-06-06 19:52:58 (2 weeks ago)	SPAM EMAIL 18.225.221.49 (ec2-18-225-221-49.us-east-2.compute.amazonaws.com)	Email Spam
🇫🇷 Kraften	2026-06-06 19:52:27 (2 weeks ago)	postfix ddos ...	DDoS Attack Brute-Force
🇬🇧 gbzret4d	2026-06-06 19:51:54 (2 weeks ago)	Honeypot [uk-production01]: HTTP/1.1 request on 8291 GET / User-Agent: visionheight.com/scan Mozill ... show more Honeypot [uk-production01]: HTTP/1.1 request on 8291 GET / User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 8291 [1] TCP show less	Hacking Bad Web Bot

Showing 1 to 15 of 45 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 139.170.72.159

🇮🇹 101.57.22.1

🇧🇷 2a09:bac5:aa6:24be::3a9:6a

🇳🇱 185.136.15.10

🇸🇬 172.217.97.24

🇨🇳 120.234.232.184

🇨🇳 106.12.144.153

🇸🇨 45.194.67.26

🇨🇳 36.106.79.55

🇹🇷 5.181.87.106

🇺🇸 195.184.76.133

🇺🇸 195.184.76.69

🇹🇷 194.62.118.180

🇦🇷 190.220.172.154

🇦🇷 181.44.117.67

🇧🇷 177.182.215.42

🇮🇷 151.234.117.115

🇮🇹 151.115.165.172

🇨🇳 139.170.72.49

🇯🇵 124.155.125.131