3.94.138.106 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Data Services NoVa

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Nov 28 08:18:38 thevastnessof sshd[12173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.94.138.106 ...	2019-11-28 16:23:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.94.138.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14368
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.94.138.106.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112800 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 28 16:23:09 CST 2019
;; MSG SIZE  rcvd: 116

Host info

106.138.94.3.in-addr.arpa domain name pointer ec2-3-94-138-106.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.138.94.3.in-addr.arpa	name = ec2-3-94-138-106.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.29.116.157	attackspambots	UTC: 2019-11-26 port: 23/tcp	2019-11-27 23:04:07
196.52.43.97	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-27 23:28:59
83.103.98.211	attackspam	Nov 27 04:49:03 hanapaa sshd\[16512\]: Invalid user bugs from 83.103.98.211 Nov 27 04:49:03 hanapaa sshd\[16512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83-103-98-211.ip.fastwebnet.it Nov 27 04:49:06 hanapaa sshd\[16512\]: Failed password for invalid user bugs from 83.103.98.211 port 63355 ssh2 Nov 27 04:55:16 hanapaa sshd\[17002\]: Invalid user y from 83.103.98.211 Nov 27 04:55:16 hanapaa sshd\[17002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83-103-98-211.ip.fastwebnet.it	2019-11-27 23:04:41
157.55.39.242	attackbots	Automatic report - Banned IP Access	2019-11-27 23:36:50
222.186.175.161	attackbots	Nov 27 15:56:51 jane sshd[8959]: Failed password for root from 222.186.175.161 port 26356 ssh2 Nov 27 15:56:54 jane sshd[8959]: Failed password for root from 222.186.175.161 port 26356 ssh2 ...	2019-11-27 22:58:32
222.186.175.220	attack	Nov 27 16:15:58 mail sshd\[30494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root Nov 27 16:16:01 mail sshd\[30494\]: Failed password for root from 222.186.175.220 port 11204 ssh2 Nov 27 16:16:05 mail sshd\[30494\]: Failed password for root from 222.186.175.220 port 11204 ssh2 ...	2019-11-27 23:16:28
45.226.81.197	attackbots	Nov 27 20:17:09 vibhu-HP-Z238-Microtower-Workstation sshd\[16823\]: Invalid user admin from 45.226.81.197 Nov 27 20:17:09 vibhu-HP-Z238-Microtower-Workstation sshd\[16823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.226.81.197 Nov 27 20:17:12 vibhu-HP-Z238-Microtower-Workstation sshd\[16823\]: Failed password for invalid user admin from 45.226.81.197 port 57232 ssh2 Nov 27 20:24:48 vibhu-HP-Z238-Microtower-Workstation sshd\[17159\]: Invalid user pia from 45.226.81.197 Nov 27 20:24:48 vibhu-HP-Z238-Microtower-Workstation sshd\[17159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.226.81.197 ...	2019-11-27 23:31:56
218.92.0.145	attack	Nov 27 16:02:40 srv-ubuntu-dev3 sshd[78738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root Nov 27 16:02:42 srv-ubuntu-dev3 sshd[78738]: Failed password for root from 218.92.0.145 port 4277 ssh2 Nov 27 16:02:46 srv-ubuntu-dev3 sshd[78738]: Failed password for root from 218.92.0.145 port 4277 ssh2 Nov 27 16:02:40 srv-ubuntu-dev3 sshd[78738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root Nov 27 16:02:42 srv-ubuntu-dev3 sshd[78738]: Failed password for root from 218.92.0.145 port 4277 ssh2 Nov 27 16:02:46 srv-ubuntu-dev3 sshd[78738]: Failed password for root from 218.92.0.145 port 4277 ssh2 Nov 27 16:02:40 srv-ubuntu-dev3 sshd[78738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root Nov 27 16:02:42 srv-ubuntu-dev3 sshd[78738]: Failed password for root from 218.92.0.145 port 4277 ssh2 Nov 27 16:02:4 ...	2019-11-27 23:06:08
218.92.0.147	attackspambots	Nov 27 18:23:16 server sshd\[6159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.147 user=root Nov 27 18:23:18 server sshd\[6159\]: Failed password for root from 218.92.0.147 port 8330 ssh2 Nov 27 18:23:21 server sshd\[6159\]: Failed password for root from 218.92.0.147 port 8330 ssh2 Nov 27 18:23:25 server sshd\[6159\]: Failed password for root from 218.92.0.147 port 8330 ssh2 Nov 27 18:23:28 server sshd\[6159\]: Failed password for root from 218.92.0.147 port 8330 ssh2 ...	2019-11-27 23:25:54
196.64.59.9	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-27 23:13:27
207.6.1.11	attack	Nov 27 15:51:46 vps666546 sshd\[6269\]: Invalid user kitachn from 207.6.1.11 port 41877 Nov 27 15:51:46 vps666546 sshd\[6269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.6.1.11 Nov 27 15:51:49 vps666546 sshd\[6269\]: Failed password for invalid user kitachn from 207.6.1.11 port 41877 ssh2 Nov 27 15:55:05 vps666546 sshd\[6379\]: Invalid user dhanusha from 207.6.1.11 port 60428 Nov 27 15:55:05 vps666546 sshd\[6379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.6.1.11 ...	2019-11-27 23:12:56
46.233.28.137	attackspambots	Fail2Ban Ban Triggered	2019-11-27 23:00:12
164.77.119.18	attack	Nov 27 16:09:57 vps647732 sshd[30083]: Failed password for root from 164.77.119.18 port 43532 ssh2 ...	2019-11-27 23:24:58
189.171.50.188	attackspam	Nov 25 01:48:01 server6 sshd[17593]: reveeclipse mapping checking getaddrinfo for dsl-189-171-50-188-dyn.prod-infinhostnameum.com.mx [189.171.50.188] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 25 01:48:03 server6 sshd[17593]: Failed password for invalid user guest from 189.171.50.188 port 40576 ssh2 Nov 25 01:48:03 server6 sshd[17593]: Received disconnect from 189.171.50.188: 11: Bye Bye [preauth] Nov 25 02:04:54 server6 sshd[30210]: reveeclipse mapping checking getaddrinfo for dsl-189-171-50-188-dyn.prod-infinhostnameum.com.mx [189.171.50.188] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 25 02:04:54 server6 sshd[30210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.171.50.188 user=r.r Nov 25 02:04:56 server6 sshd[30210]: Failed password for r.r from 189.171.50.188 port 33626 ssh2 Nov 25 02:04:56 server6 sshd[30210]: Received disconnect from 189.171.50.188: 11: Bye Bye [preauth] Nov 25 02:08:22 server6 sshd[32723]: reveeclipse mapp........ -------------------------------	2019-11-27 23:41:43
54.37.159.12	attackspam	$f2bV_matches	2019-11-27 23:17:02

Recently Reported IPs

184.168.193.141	170.231.59.38	171.38.145.85	152.231.206.163
77.42.84.14	63.150.179.6	84.96.21.78	39.107.98.215
45.161.188.134	80.66.86.1	160.20.13.23	175.162.156.8
117.81.173.129	221.202.234.132	186.89.205.45	141.227.26.14
58.208.229.108	23.244.184.40	167.71.72.70	154.205.181.147