JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.144.240.130

3.144.240.130 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 100%: ?

100%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-144-240-130.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.144.240.130

Whois 3.144.240.130

IP Abuse Reports for 3.144.240.130:

This IP address has been reported a total of 31 times from 28 distinct sources. 3.144.240.130 was first reported on June 19th 2026, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-20 22:00:12 (19 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-19. show less	Web App Attack SSH Hacking
Anonymous	2026-06-20 05:16:10 (1 day ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇫🇷 service Informatique	2026-06-20 04:00:37 (1 day ago)	/___proxy_subdomain_whm/login	Web App Attack
🇫🇷 Teufel100	2026-06-19 12:37:56 (2 days ago)	ModSecurity rejected a query	Brute-Force Hacking Web App Attack
🇳🇱 0xffffffff	2026-06-19 11:17:41 (2 days ago)	[2026-06-19 14:17:36.391030] [authz_core:error] [pid 649500:tid 136825138833088] [client 3.144.240.1 ... show more [2026-06-19 14:17:36.391030] [authz_core:error] [pid 649500:tid 136825138833088] [client 3.144.240.130:53912] AH01630: client denied by server configuration: /var/www/html/.git , error_notes:wrong-host , URI:'/.git/config' [2026-06-19 14:17:37.825042] [authz_core:error] [pid 649500:tid 136825033189056] [client 3.144.240.130:53940] AH01630: client denied by server configuration: /var/www/html/.git , error_notes:wrong-host , URI:'/.git/refs/heads/master' [2026-06-19 14:17:38.335996] [authz_core:error] [pid 649500:tid 136825008010944] [client 3.144.240.130:53968] AH01630: client denied by server configuration: /var/www/html/.git , error_notes:wrong-host , URI:'/.git/refs/heads/main' [2026-06-19 14:17:38.579989] [authz_core:error] [pid 631338:tid 136824966047424] [client 3.144.240.130:53970] AH01630: client denied by server configuration: /var/www/html/.git , error_notes:wrong-host , URI:'/.git/index' [2026-06-19 14:17:39.012967] [authz_core:error] [pid 649500:tid 136824991225536] [client 3.144.240.130:53982] AH0 show less	Web App Attack Bad Web Bot
🇩🇪 maxpower	2026-06-19 10:57:23 (2 days ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 3.144.240.130 (US/United States/ec2-3-14 ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 3.144.240.130 (US/United States/ec2-3-144-240-130.us-east-2.compute.amazonaws.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 3.144.240.130 - - [19/Jun/2026:12:57:20 +0200] "GET /wp-config.php.bak HTTP/1.1" 403 548 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" "-" host=51.89.2.97 3.144.240.130 - - [19/Jun/2026:12:57:20 +0200] "GET /.aws/credentials HTTP/1.1" 404 10384 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "-" host=51.89.2.97 show less	Port Scan
Anonymous	2026-06-19 10:45:51 (2 days ago)	Bot detected scanning for vulnerable pages	Port Scan
🇩🇪 dispaisyenterprises	2026-06-19 10:03:51 (2 days ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2087 [3], 2082 [1] TCP Reported by ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2087 [3], 2082 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 cybersteve99	2026-06-19 09:52:46 (2 days ago)	Too many 4xx Requests -	Brute-Force Web App Attack
🇬🇧 D3monite	2026-06-19 09:47:44 (2 days ago)	Attempted Brute Force (whostmgrd)	Brute-Force
🇹🇭 Sawasdee	2026-06-19 09:21:05 (2 days ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
Anonymous	2026-06-19 09:11:14 (2 days ago)	Sensitive file access attempt	Hacking
🇺🇸 TPI-Abuse	2026-06-19 08:58:08 (2 days ago)	(mod_security) mod_security (id:949110) triggered by 3.144.240.130 (ec2-3-144-240-130.us-east-2.comp ... show more (mod_security) mod_security (id:949110) triggered by 3.144.240.130 (ec2-3-144-240-130.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 04:58:02.617598 2026] [security2:error] [pid 3817:tid 3817] [client 3.144.240.130:44868] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "192.64.150.240"] [uri "/.git/HEAD"] [unique_id "ajUEmhDoRMaidG44GUteogAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 HostFission	2026-06-19 08:35:25 (2 days ago)	PSAD port scan detected	Port Scan
🇺🇸 xmission.com	2026-06-19 08:18:36 (2 days ago)	Blocked by UFW (TCP on 2086) Source port: 34648 TTL: 58 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2086) Source port: 34648 TTL: 58 Packet length: 60 TOS: 0x00 This report (for 3.144.240.130) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.253.221.120

🇺🇸 135.237.125.155

🇸🇬 43.134.167.218

🇬🇧 2a00:23c8:d082:d201:8927:233e:abf1:1cb0

🇳🇱 176.65.139.181

🇺🇸 147.185.132.143

🇧🇩 103.183.62.3

🇺🇸 66.132.224.21

🇮🇳 27.123.111.118

🇺🇸 172.70.100.51

🇩🇪 167.94.146.48

🇨🇳 111.167.108.89

🇺🇸 108.162.216.131

🇲🇾 49.124.153.64

🇸🇬 47.128.36.109

🇺🇸 20.42.92.153

🇬🇧 194.74.196.10

🇺🇸 178.95.105.200

🇺🇦 154.6.41.163

🇸🇬 138.199.60.24