3.80.138.140 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon Data Services NoVa

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Email rejected due to spam filtering	2020-01-25 07:18:33

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.80.138.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65217
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.80.138.140.			IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012402 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 25 07:18:30 CST 2020
;; MSG SIZE  rcvd: 116

Host info

140.138.80.3.in-addr.arpa domain name pointer ec2-3-80-138-140.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.138.80.3.in-addr.arpa	name = ec2-3-80-138-140.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.10.115	attackbotsspam	Jul 13 17:36:43 mail sshd\[7187\]: Invalid user ubuntu from 139.59.10.115 port 51209 Jul 13 17:36:43 mail sshd\[7187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.10.115 Jul 13 17:36:45 mail sshd\[7187\]: Failed password for invalid user ubuntu from 139.59.10.115 port 51209 ssh2 Jul 13 17:43:48 mail sshd\[7307\]: Invalid user soma from 139.59.10.115 port 52048 Jul 13 17:43:48 mail sshd\[7307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.10.115 ...	2019-07-14 01:55:45
163.172.54.52	attack	www.geburtshaus-fulda.de 163.172.54.52 \[13/Jul/2019:17:13:26 +0200\] "POST /wp-login.php HTTP/1.1" 200 5786 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 163.172.54.52 \[13/Jul/2019:17:13:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 5790 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 163.172.54.52 \[13/Jul/2019:17:13:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 5785 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-14 02:13:26
177.92.23.222	attackspambots	3389BruteforceIDS	2019-07-14 01:29:12
37.59.34.66	attackspambots	Jul 13 19:33:37 legacy sshd[25207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.34.66 Jul 13 19:33:39 legacy sshd[25207]: Failed password for invalid user werner from 37.59.34.66 port 52380 ssh2 Jul 13 19:38:22 legacy sshd[25332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.34.66 ...	2019-07-14 01:53:10
60.71.182.224	attack	Unauthorised access (Jul 13) SRC=60.71.182.224 LEN=40 TTL=53 ID=43102 TCP DPT=23 WINDOW=50671 SYN	2019-07-14 02:07:58
183.99.92.197	attack	Automatic report - Port Scan Attack	2019-07-14 01:38:59
66.70.189.236	attackbots	Jul 13 18:06:44 localhost sshd\[3381\]: Invalid user rs from 66.70.189.236 port 33378 Jul 13 18:06:44 localhost sshd\[3381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.236 ...	2019-07-14 01:24:46
88.88.193.230	attack	Jul 13 17:52:45 bouncer sshd\[17879\]: Invalid user belea from 88.88.193.230 port 41709 Jul 13 17:52:45 bouncer sshd\[17879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.88.193.230 Jul 13 17:52:48 bouncer sshd\[17879\]: Failed password for invalid user belea from 88.88.193.230 port 41709 ssh2 ...	2019-07-14 01:20:22
182.219.172.224	attack	Feb 11 14:58:59 vtv3 sshd\[21785\]: Invalid user nm from 182.219.172.224 port 56524 Feb 11 14:58:59 vtv3 sshd\[21785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.219.172.224 Feb 11 14:59:02 vtv3 sshd\[21785\]: Failed password for invalid user nm from 182.219.172.224 port 56524 ssh2 Feb 11 15:05:09 vtv3 sshd\[23985\]: Invalid user tunel from 182.219.172.224 port 46694 Feb 11 15:05:09 vtv3 sshd\[23985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.219.172.224 Feb 12 20:21:58 vtv3 sshd\[30973\]: Invalid user tanja from 182.219.172.224 port 51882 Feb 12 20:21:58 vtv3 sshd\[30973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.219.172.224 Feb 12 20:22:00 vtv3 sshd\[30973\]: Failed password for invalid user tanja from 182.219.172.224 port 51882 ssh2 Feb 12 20:27:54 vtv3 sshd\[32516\]: Invalid user admin from 182.219.172.224 port 41952 Feb 12 20:27:54 vtv3 sshd\[32	2019-07-14 01:54:45
176.9.90.177	attack	DATE:2019-07-13 17:14:22, IP:176.9.90.177, PORT:ssh brute force auth on SSH service (patata)	2019-07-14 01:42:06
103.30.245.196	attackspambots	fail2ban honeypot	2019-07-14 01:53:38
112.85.42.178	attackspam	Jul 13 19:26:01 dev0-dcde-rnet sshd[10173]: Failed password for root from 112.85.42.178 port 60704 ssh2 Jul 13 19:26:17 dev0-dcde-rnet sshd[10173]: error: maximum authentication attempts exceeded for root from 112.85.42.178 port 60704 ssh2 [preauth] Jul 13 19:26:25 dev0-dcde-rnet sshd[10175]: Failed password for root from 112.85.42.178 port 9802 ssh2	2019-07-14 01:28:24
122.228.19.80	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-13 17:45:35,307 INFO [amun_request_handler] PortScan Detected on Port: 25 (122.228.19.80)	2019-07-14 01:57:23
132.232.1.62	attackbotsspam	Jul 13 23:32:57 vibhu-HP-Z238-Microtower-Workstation sshd\[29313\]: Invalid user admin from 132.232.1.62 Jul 13 23:32:57 vibhu-HP-Z238-Microtower-Workstation sshd\[29313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.62 Jul 13 23:32:59 vibhu-HP-Z238-Microtower-Workstation sshd\[29313\]: Failed password for invalid user admin from 132.232.1.62 port 39472 ssh2 Jul 13 23:40:12 vibhu-HP-Z238-Microtower-Workstation sshd\[29748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.62 user=root Jul 13 23:40:14 vibhu-HP-Z238-Microtower-Workstation sshd\[29748\]: Failed password for root from 132.232.1.62 port 36534 ssh2 ...	2019-07-14 02:12:58
91.225.200.240	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-13 13:38:18,871 INFO [shellcode_manager] (91.225.200.240) no match, writing hexdump (55b8f661b97540c4981fdcfa96e7f636 :2417348) - MS17010 (EternalBlue)	2019-07-14 02:07:38

Recently Reported IPs

176.114.224.102	94.158.154.20	68.11.244.23	186.39.63.106
109.230.223.21	94.53.184.169	190.216.251.19	112.192.197.89
81.30.193.114	122.51.101.136	103.197.240.135	192.210.148.210
178.222.221.193	77.232.146.122	49.233.185.68	170.51.95.141
49.145.106.34	190.145.25.49	185.163.124.198	120.133.236.138