3.6.125.36 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Amazon Data Services India

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Jun 5 01:41:55 ny01 sshd[24611]: Failed password for root from 3.6.125.36 port 49664 ssh2 Jun 5 01:46:19 ny01 sshd[25196]: Failed password for root from 3.6.125.36 port 55514 ssh2	2020-06-05 14:31:50

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.6.125.36
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15767
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.6.125.36.			IN	A

;; AUTHORITY SECTION:
.			441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060500 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 05 14:31:47 CST 2020
;; MSG SIZE  rcvd: 114

Host info

36.125.6.3.in-addr.arpa domain name pointer ec2-3-6-125-36.ap-south-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
36.125.6.3.in-addr.arpa	name = ec2-3-6-125-36.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.233.251	attackspambots	From CCTV User Interface Log ...::ffff:192.241.233.251 - - [30/Aug/2020:08:44:37 +0000] "-" 400 179 ...	2020-08-31 04:27:43
93.139.23.15	attackbotsspam	SS5,WP GET /wp-login.php	2020-08-31 04:09:13
106.12.14.130	attack	Aug 30 20:37:16 web1 sshd\[28561\]: Invalid user mario from 106.12.14.130 Aug 30 20:37:16 web1 sshd\[28561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 Aug 30 20:37:18 web1 sshd\[28561\]: Failed password for invalid user mario from 106.12.14.130 port 38362 ssh2 Aug 30 20:40:15 web1 sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.130 user=root Aug 30 20:40:17 web1 sshd\[28827\]: Failed password for root from 106.12.14.130 port 52892 ssh2	2020-08-31 04:18:02
188.166.164.10	attackspam	Aug 30 19:57:43 hosting sshd[31288]: Invalid user user2 from 188.166.164.10 port 59158 ...	2020-08-31 03:55:28
78.27.145.51	attackspam	Aug 30 16:14:26 rotator sshd\[16635\]: Invalid user ftpuser1 from 78.27.145.51Aug 30 16:14:29 rotator sshd\[16635\]: Failed password for invalid user ftpuser1 from 78.27.145.51 port 55526 ssh2Aug 30 16:18:17 rotator sshd\[17457\]: Invalid user fn from 78.27.145.51Aug 30 16:18:18 rotator sshd\[17457\]: Failed password for invalid user fn from 78.27.145.51 port 33816 ssh2Aug 30 16:22:16 rotator sshd\[18246\]: Invalid user centos from 78.27.145.51Aug 30 16:22:17 rotator sshd\[18246\]: Failed password for invalid user centos from 78.27.145.51 port 40346 ssh2 ...	2020-08-31 04:02:07
139.186.73.248	attackbotsspam	Aug 30 14:26:27 haigwepa sshd[24253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.73.248 Aug 30 14:26:28 haigwepa sshd[24253]: Failed password for invalid user sumit from 139.186.73.248 port 40272 ssh2 ...	2020-08-31 04:11:44
119.29.216.238	attackspam	Aug 30 19:57:59 meumeu sshd[660255]: Invalid user stan from 119.29.216.238 port 33156 Aug 30 19:57:59 meumeu sshd[660255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.216.238 Aug 30 19:57:59 meumeu sshd[660255]: Invalid user stan from 119.29.216.238 port 33156 Aug 30 19:58:01 meumeu sshd[660255]: Failed password for invalid user stan from 119.29.216.238 port 33156 ssh2 Aug 30 19:58:49 meumeu sshd[660337]: Invalid user bld from 119.29.216.238 port 41596 Aug 30 19:58:49 meumeu sshd[660337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.216.238 Aug 30 19:58:49 meumeu sshd[660337]: Invalid user bld from 119.29.216.238 port 41596 Aug 30 19:58:51 meumeu sshd[660337]: Failed password for invalid user bld from 119.29.216.238 port 41596 ssh2 Aug 30 19:59:39 meumeu sshd[660360]: Invalid user alfonso from 119.29.216.238 port 50038 ...	2020-08-31 04:05:15
190.85.163.46	attackspambots	Aug 30 15:08:54 inter-technics sshd[11290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.163.46 user=root Aug 30 15:08:56 inter-technics sshd[11290]: Failed password for root from 190.85.163.46 port 43523 ssh2 Aug 30 15:13:00 inter-technics sshd[11781]: Invalid user denis from 190.85.163.46 port 45714 Aug 30 15:13:00 inter-technics sshd[11781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.163.46 Aug 30 15:13:00 inter-technics sshd[11781]: Invalid user denis from 190.85.163.46 port 45714 Aug 30 15:13:02 inter-technics sshd[11781]: Failed password for invalid user denis from 190.85.163.46 port 45714 ssh2 ...	2020-08-31 03:57:46
200.69.236.172	attack	Aug 30 18:08:01 buvik sshd[5240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.236.172 Aug 30 18:08:02 buvik sshd[5240]: Failed password for invalid user postgres from 200.69.236.172 port 35878 ssh2 Aug 30 18:12:38 buvik sshd[6030]: Invalid user oracle from 200.69.236.172 ...	2020-08-31 04:04:14
90.23.215.214	attackbotsspam	Aug 30 19:14:00 fhem-rasp sshd[19681]: Invalid user ym from 90.23.215.214 port 48546 ...	2020-08-31 03:54:06
152.136.137.227	attackspambots	Aug 30 21:28:27 v22019038103785759 sshd\[15861\]: Invalid user tgt from 152.136.137.227 port 51230 Aug 30 21:28:27 v22019038103785759 sshd\[15861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.137.227 Aug 30 21:28:29 v22019038103785759 sshd\[15861\]: Failed password for invalid user tgt from 152.136.137.227 port 51230 ssh2 Aug 30 21:37:24 v22019038103785759 sshd\[16790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.137.227 user=root Aug 30 21:37:25 v22019038103785759 sshd\[16790\]: Failed password for root from 152.136.137.227 port 60406 ssh2 ...	2020-08-31 03:52:47
41.46.34.163	attack	port scan and connect, tcp 23 (telnet)	2020-08-31 04:12:34
142.93.121.47	attackbots	firewall-block, port(s): 28391/tcp	2020-08-31 04:28:08
111.229.73.244	attackbotsspam	Aug 30 11:54:38 scw-tender-jepsen sshd[7962]: Failed password for root from 111.229.73.244 port 40544 ssh2 Aug 30 12:10:36 scw-tender-jepsen sshd[8448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.73.244	2020-08-31 04:12:04
171.225.251.79	attack	Unauthorised access (Aug 30) SRC=171.225.251.79 LEN=52 TTL=107 ID=12572 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-31 04:29:29

Recently Reported IPs

16.245.249.72	215.124.190.35	4.37.88.32	45.118.32.77
242.111.217.42	70.196.82.251	185.39.11.55	185.202.214.21
20.153.37.74	134.110.43.39	26.49.244.1	79.132.123.67
126.33.228.241	200.99.178.19	2.248.133.167	221.237.94.7
142.58.237.7	197.209.219.32	252.159.112.55	94.23.108.161