JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.18.106.28

3.18.106.28 was found in our database!

This IP was reported 366 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-18-106-28.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.18.106.28

Whois 3.18.106.28

IP Abuse Reports for 3.18.106.28:

This IP address has been reported a total of 366 times from 249 distinct sources. 3.18.106.28 was first reported on May 26th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-02 22:00:25 (1 week ago)	2026-05-31 00:00:55,222 fail2ban.actions [264721]: NOTICE [postfix] Ban 3.18.106.28 2026-05- ... show more 2026-05-31 00:00:55,222 fail2ban.actions [264721]: NOTICE [postfix] Ban 3.18.106.28 2026-05-31 00:00:55,222 fail2ban.actions [264721]: NOTICE [postfix] Ban 3.18.106.28 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇺🇸 NetGuard	2026-06-02 15:04:01 (1 week ago)	#honeypot #netguard247 #dionaea #networkexploit Captured by NetGuard 24/7 T-Pot honeypot (netguard24 ... show more #honeypot #netguard247 #dionaea #networkexploit Captured by NetGuard 24/7 T-Pot honeypot (netguard24-7.com). Timestamp: 2026-05-26T14:58:41.763+00:00 Attacker IP: 3.18.106.28 \| Port: 27017 \| Country: United States Honeypot: dionaea \| Attack: network_exploit Source: NetGuard 24/7 (netguard24-7.com) \| PhantomGrid Defense show less	Hacking SQL Injection Web App Attack
🇺🇦 llighthunter	2026-06-01 01:56:10 (1 week ago)	May 26 06:45:34 mail dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=3. ... show more May 26 06:45:34 mail dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=3.18.106.28, lip=192.168.1.80, TLS handshaking: SSL_accept() failed: error:1408F09C:SSL routines:ssl3_get_record:http request, session=<EznWU7BSZMkDEmoc> May 26 06:47:24 mail dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=3.18.106.28, lip=192.168.1.80, TLS handshaking: SSL_accept() failed: error:1408F09C:SSL routines:ssl3_get_record:http request, session=<qHpoWrBSro8DEmoc> May 26 06:48:52 mail dovecot: pop3-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=3.18.106.28, lip=192.168.1.80, TLS, session=<C9ShX7BSOncDEmoc> show less	Port Scan Hacking Spoofing
🇨🇭 m_vlasov	2026-05-31 04:49:07 (1 week ago)	SSH/Telnet honeypot: 0 login attempts, 2 sessions, 0 shell commands.	Port Scan
🇫🇷 SiyCah	2026-05-30 06:00:12 (1 week ago)	3.18.106.28 fell into Endlessh tarpit; 0/2 total connections are currently still open. Total time wa ... show more 3.18.106.28 fell into Endlessh tarpit; 0/2 total connections are currently still open. Total time wasted: 7s. Total bytes sent by tarpit: 427B. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking
🇺🇸 itabu	2026-05-29 10:00:53 (1 week ago)	Postfix brute-force attempt.	Brute-Force Email Spam
🇬🇧 AdrianT	2026-05-29 06:33:37 (1 week ago)	SMTP port scanning	Port Scan
🇺🇸 itabu	2026-05-28 10:00:33 (1 week ago)	Postfix brute-force attempt.	Brute-Force Email Spam
🇫🇷 SiyCah	2026-05-28 06:00:02 (1 week ago)	3.18.106.28 fell into Endlessh tarpit; 0/2 total connections are currently still open. Total time wa ... show more 3.18.106.28 fell into Endlessh tarpit; 0/2 total connections are currently still open. Total time wasted: 7s. Total bytes sent by tarpit: 427B. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking
🇸🇮 administrator	2026-05-27 22:02:44 (1 week ago)	2026-05-26 09:34:49,079 fail2ban.actions [1070]: NOTICE [postfix] Ban 3.18.106.28 2026-05-26 ... show more 2026-05-26 09:34:49,079 fail2ban.actions [1070]: NOTICE [postfix] Ban 3.18.106.28 2026-05-26 09:34:49,079 fail2ban.actions [1070]: NOTICE [postfix] Ban 3.18.106.28 2026-05-26 09:34:49,079 fail2ban.actions [1070]: NOTICE [postfix] Ban 3.18.106.28 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇮🇳 Parth Maniar	2026-05-27 18:28:33 (1 week ago)	This IP address carried out 7 port scanning attempts on 26-05-2026. For more information or to repor ... show more This IP address carried out 7 port scanning attempts on 26-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇺🇸 itabu	2026-05-27 10:00:14 (1 week ago)	Postfix brute-force attempt.	Brute-Force Email Spam
🇺🇸 rjdefrancisco	2026-05-27 07:05:35 (1 week ago)	Unwanted traffic detected by honeypot on May 26, 2026: port scans (2 port 22 scans).	Port Scan Brute-Force SSH
🇩🇪 EnthecSolutions	2026-05-27 06:00:38 (1 week ago)	Detected by Enthec Solutions. \| Attempts: 362 in 24h \| Target port: 2049	Port Scan Hacking
🇫🇷 SiyCah	2026-05-27 06:00:02 (1 week ago)	3.18.106.28 fell into Endlessh tarpit; 0/2 total connections are currently still open. Total time wa ... show more 3.18.106.28 fell into Endlessh tarpit; 0/2 total connections are currently still open. Total time wasted: 7s. Total bytes sent by tarpit: 427B. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking

Showing 1 to 15 of 366 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2602:fb54:99c::

🇺🇸 216.218.206.85

🇻🇪 190.75.253.181

🇳🇵 111.119.34.103

🇧🇬 95.87.248.223

🇩🇪 69.5.169.37

🇨🇳 60.16.197.3

🇳🇱 20.224.168.82

🇺🇸 20.55.223.182

🇩🇪 193.124.20.226

🇵🇱 193.25.251.142

🇺🇸 143.42.0.20

🇰🇷 121.142.87.218

🇵🇭 119.92.70.82

🇫🇷 92.205.57.72

🇵🇱 87.251.64.145

🇳🇱 85.11.167.7

🇩🇪 69.5.169.90

🇩🇪 69.5.169.88

🇺🇸 66.132.186.253