Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbots
Sep  4 03:05:03 hostnameis sshd[55001]: Invalid user ubuntu from 3.13.211.80
Sep  4 03:05:03 hostnameis sshd[55001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-3-13-211-80.us-east-2.compute.amazonaws.com 
Sep  4 03:05:05 hostnameis sshd[55001]: Failed password for invalid user ubuntu from 3.13.211.80 port 49964 ssh2
Sep  4 03:05:05 hostnameis sshd[55001]: Received disconnect from 3.13.211.80: 11: Bye Bye [preauth]
Sep  4 03:18:42 hostnameis sshd[55067]: Invalid user test from 3.13.211.80
Sep  4 03:18:42 hostnameis sshd[55067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-3-13-211-80.us-east-2.compute.amazonaws.com 
Sep  4 03:18:44 hostnameis sshd[55067]: Failed password for invalid user test from 3.13.211.80 port 41350 ssh2
Sep  4 03:18:44 hostnameis sshd[55067]: Received disconnect from 3.13.211.80: 11: Bye Bye [preauth]
Sep  4 03:22:23 hostnameis sshd[55107]: Invalid user in........
------------------------------
2019-09-04 15:17:14
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.13.211.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4574
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.13.211.80.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 04 15:17:09 CST 2019
;; MSG SIZE  rcvd: 115
Host info
80.211.13.3.in-addr.arpa domain name pointer ec2-3-13-211-80.us-east-2.compute.amazonaws.com.
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
80.211.13.3.in-addr.arpa	name = ec2-3-13-211-80.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
175.107.192.153 attackbots
[SMB remote code execution attempt: port tcp/445]
[scan/connect: 2 time(s)]
*(RWIN=1024)(07041030)
2019-07-04 15:41:46
64.17.30.238 attack
proto=tcp  .  spt=44375  .  dpt=25  .     (listed on Blocklist de  Jul 03)     (429)
2019-07-04 16:02:02
101.53.100.115 attackbotsspam
SMB Server BruteForce Attack
2019-07-04 15:45:20
186.96.125.115 attackbots
proto=tcp  .  spt=58085  .  dpt=25  .     (listed on Blocklist de  Jul 03)     (430)
2019-07-04 15:59:25
37.1.202.186 attackbotsspam
445/tcp 445/tcp 445/tcp...
[2019-06-24/07-04]5pkt,1pt.(tcp)
2019-07-04 15:53:39
193.169.252.142 attackspambots
Jul  4 07:08:04 mail postfix/smtpd\[4128\]: warning: unknown\[193.169.252.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Jul  4 07:42:41 mail postfix/smtpd\[5006\]: warning: unknown\[193.169.252.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Jul  4 08:00:00 mail postfix/smtpd\[5605\]: warning: unknown\[193.169.252.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Jul  4 08:17:15 mail postfix/smtpd\[5988\]: warning: unknown\[193.169.252.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
2019-07-04 15:30:35
106.12.120.89 attack
proto=tcp  .  spt=33148  .  dpt=25  .     (listed on 106.12.0.0/16    Dark List de Jul 04 03:55)     (427)
2019-07-04 16:04:58
209.141.41.103 attackbotsspam
Jul  4 08:15:09 cvbmail sshd\[1828\]: Invalid user mother from 209.141.41.103
Jul  4 08:15:09 cvbmail sshd\[1828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.103
Jul  4 08:15:11 cvbmail sshd\[1828\]: Failed password for invalid user mother from 209.141.41.103 port 33141 ssh2
2019-07-04 15:57:01
119.145.27.16 attackbotsspam
2019-07-02 22:16:59 server sshd[15999]: Failed password for invalid user nexus from 119.145.27.16 port 42091 ssh2
2019-07-04 06:24:12
103.254.94.91 attackspambots
proto=tcp  .  spt=59024  .  dpt=25  .     (listed on Blocklist de  Jul 03)     (435)
2019-07-04 15:46:25
157.51.100.43 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 12:28:17,653 INFO [amun_request_handler] PortScan Detected on Port: 445 (157.51.100.43)
2019-07-04 06:13:39
104.217.191.41 attack
Jul  4 08:14:54 vpn01 sshd\[14341\]: Invalid user benjamin from 104.217.191.41
Jul  4 08:14:54 vpn01 sshd\[14341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.217.191.41
Jul  4 08:14:56 vpn01 sshd\[14341\]: Failed password for invalid user benjamin from 104.217.191.41 port 36690 ssh2
2019-07-04 16:06:07
202.91.240.152 attack
proto=tcp  .  spt=37850  .  dpt=25  .     (listed on Blocklist de  Jul 03)     (431)
2019-07-04 15:57:29
198.108.67.91 attack
8237/tcp 6789/tcp 2067/tcp...
[2019-05-03/07-03]109pkt,98pt.(tcp)
2019-07-04 06:14:22
104.131.37.34 attack
Brute force attempt
2019-07-04 15:43:41

Recently Reported IPs

211.107.208.245 11.43.186.115 14.40.52.152 247.158.219.58
244.134.114.159 88.173.153.99 133.187.76.166 87.223.169.192
155.108.59.188 16.192.32.112 31.132.95.90 199.150.38.209
86.123.234.171 212.227.136.209 121.121.4.205 35.188.72.153
122.117.251.56 107.26.109.22 89.139.58.118 114.33.154.237