JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.138.202.172

3.138.202.172 was found in our database!

This IP was reported 68 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-138-202-172.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.138.202.172

Whois 3.138.202.172

IP Abuse Reports for 3.138.202.172:

This IP address has been reported a total of 68 times from 57 distinct sources. 3.138.202.172 was first reported on October 1st 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Birdo	2026-06-03 03:04:00 (1 day ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇩🇪 excill	2026-06-03 03:04:00 (1 day ago)	Honeypot mesh observed 1242 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇫🇷 geeek	2026-06-03 03:03:59 (1 day ago)	Port scanning: 445 TCP Blocked	Port Scan
🇺🇸 donarev419	2026-06-03 02:53:06 (1 day ago)	Connection to port 502 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:502 U ... show more Connection to port 502 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:502 User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; show less	Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-06-03 02:40:38 (1 day ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 9300 GET / User-Agent: visionheight.com/scan Mozi ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 9300 GET / User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 9300 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇺🇸 donarev419	2026-06-03 02:37:41 (1 day ago)	Connection to port 502 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:502 U ... show more Connection to port 502 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:502 User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; show less	Port Scan Hacking
🇲🇹 neilcaruana	2026-06-03 02:36:44 (1 day ago)	Sentinel detected an attack on port [9000]	Hacking
🇺🇸 drewf.ink	2026-06-03 02:26:39 (1 day ago)	[02:26] Port scanning. Port(s) scanned: TCP/502	Port Scan
🇯🇵 Execoop	2026-06-03 02:22:46 (1 day ago)	SSH honeypot \| Command Execution + Auth Attempts (Moderate) \| 8 auths (3 users), 7 cmds, 3.3m \| ext ... show more SSH honeypot \| Command Execution + Auth Attempts (Moderate) \| 8 auths (3 users), 7 cmds, 3.3m \| ext IPs: 126[.]0[.]0[.]0 show less	Hacking SSH
🇺🇸 donarev419	2026-06-03 02:19:47 (1 day ago)	Connection to port 3306 with data transfer. Data preview:	Port Scan Hacking
🇳🇱 i-turnradio.nl	2026-06-03 02:18:17 (1 day ago)	2026-06-03 04:18:17 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇳🇱 soverin	2026-06-03 02:16:51 (1 day ago)	Network scan on port 3306	Email Spam
🇩🇪 Luhte	2026-06-03 02:16:36 (1 day ago)	Unsolicited TCP connection from 3.138.202.172 to port 0 at 2026-06-03T02:16:36Z. Source IP completed ... show more Unsolicited TCP connection from 3.138.202.172 to port 0 at 2026-06-03T02:16:36Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇨🇦 Slackin' Jack	2026-06-03 02:16:33 (1 day ago)	Triggered honeypot on port 3306. (3.138.202.172)	Port Scan
🇺🇸 Bankbook8585	2026-06-03 02:15:54 (1 day ago)	T-Pot honeypot \| Dionaea honeypot: mysqld	Port Scan Hacking

Showing 16 to 30 of 68 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.38

🇬🇧 89.37.172.136

🇬🇧 213.166.84.37

🇩🇪 172.70.250.38

🇫🇮 147.185.133.170

🇨🇳 58.19.80.63

🇷🇴 2.57.122.238

🇩🇪 157.230.18.133

🇮🇩 115.85.80.12

🇨🇳 110.177.183.185

🇺🇸 52.25.203.109

🇺🇸 44.208.223.68

🇺🇸 44.190.250.112

🇧🇪 198.235.24.204

🇲🇽 186.96.145.241

🇺🇸 184.154.157.176

🇺🇸 107.167.34.125

🇷🇺 89.23.113.208

🇲🇾 47.254.238.61

🇺🇸 31.57.63.242