AbuseIPDB » 3.129.148.13

3.129.148.13 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 69%: ?

69%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-129-148-13.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 3.129.148.13

Whois 3.129.148.13

IP Abuse Reports for 3.129.148.13:

This IP address has been reported a total of 36 times from 33 distinct sources. 3.129.148.13 was first reported on March 26th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
rshict	2025-04-06 15:08:41 (2 weeks ago)	Hacking, Brute-Force, Web App Attack	Hacking Brute-Force Web App Attack
Murazaki	2025-03-26 23:00:27 (1 month ago)	_ 3.129.148.13 - - [26/Mar/2025:16:21:47 +0100] "" 400 0 "-" "-" "-" ...	Hacking
Anonymous	2025-03-26 17:04:21 (1 month ago)	Mar 26 17:03:19 ubuntu1 sshd[1749860]: banner exchange: Connection from 3.129.148.13 port 43082: inv ... show moreMar 26 17:03:19 ubuntu1 sshd[1749860]: banner exchange: Connection from 3.129.148.13 port 43082: invalid format Mar 26 17:04:20 ubuntu1 sshd[1750991]: error: kex_exchange_identification: client sent invalid protocol identifier "" Mar 26 17:04:20 ubuntu1 sshd[1750991]: banner exchange: Connection from 3.129.148.13 port 43148: invalid format ... show less	Brute-Force SSH
Anonymous	2025-03-26 16:54:16 (1 month ago)	Reported from Nginx log analysis 11. Log: 3.129.148.13 - - [26/Mar/2025:xx:xx:xx 0100] "SSH-2.0-Go" ... show moreReported from Nginx log analysis 11. Log: 3.129.148.13 - - [26/Mar/2025:xx:xx:xx 0100] "SSH-2.0-Go" xxx xxx "-" "-" "-" "US United States -" "AS16509" "AMAZON-02" show less	Port Scan Brute-Force SSH
c y	2025-03-26 16:47:15 (1 month ago)	...	Web App Attack
drewf.ink	2025-03-26 16:38:26 (1 month ago)	[16:38] Port scanning. Port(s) scanned: TCP/3389	Port Scan
nyuuzyou	2025-03-26 16:38:25 (1 month ago)	{"action": "connection", "dest_ip": "194.62.248.73", "dest_port": "3389", "server": "rdp_server", "s ... show more{"action": "connection", "dest_ip": "194.62.248.73", "dest_port": "3389", "server": "rdp_server", "src_ip": "3.129.148.13", "src_port": "38488", "timestamp": "2025-03-26T16:38:15.341506"} show less	Port Scan Brute-Force
geeek	2025-03-26 16:36:31 (1 month ago)	Port scanning: 3389 TCP Blocked	Port Scan
Largnet SOC	2025-03-26 16:35:26 (1 month ago)	3.129.148.13 triggered Icarus honeypot on port 3389. Check us out on github.	Port Scan Hacking
Anonymous	2025-03-26 16:35:13 (1 month ago)	Hit honeypot r.	Port Scan Hacking Exploited Host
webnestify	2025-03-26 16:34:31 (1 month ago)	[Webnestify Honeypot - Singapore] Unauthorized connection attempt on port 3389.	Port Scan Hacking Brute-Force
Anonymous	2025-03-26 16:23:45 (1 month ago)	Portscan	Port Scan
BerHav	2025-03-26 16:17:46 (1 month ago)	7: port=888 Binarycommand starting with 0:	Port Scan IoT Targeted
drewf.ink	2025-03-26 16:04:02 (1 month ago)	[16:04] Port scanning. Port(s) scanned: TCP/8088	Port Scan
BerHav	2025-03-26 15:57:46 (1 month ago)	6: port=888 client is trying to connect by TLS, not allowed for this port.	Port Scan IoT Targeted

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩