JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.20.236.253

3.20.236.253 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 77%: ?

77%

ISP	Amazon Technologies Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-20-236-253.us-east-2.compute.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.20.236.253

Whois 3.20.236.253

IP Abuse Reports for 3.20.236.253:

This IP address has been reported a total of 14 times from 14 distinct sources. 3.20.236.253 was first reported on June 7th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 PENJAGA.AUM	2026-06-08 06:56:48 (1 day ago)	3.20.236.253 - Attack: Possible XSS attack, script tag	Web App Attack SQL Injection Spoofing
🇳🇿 Antinson	2026-06-08 00:06:24 (1 day ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇺🇸 natdem.org	2026-06-08 00:00:45 (1 day ago)	Web: Empty user agent + errors	Web App Attack Hacking
🇳🇴 tmiland	2026-06-07 23:52:11 (1 day ago)	Suricata Detected 189 attacks from 3.20.236.253.; ET SCAN MS Terminal Server Traffic on Non-standard ... show more Suricata Detected 189 attacks from 3.20.236.253.; ET SCAN MS Terminal Server Traffic on Non-standard Port; IP: 3.20.236.253; Ports: 62878; Direction: to_server; Trigger: SCAN; Category: Attempted Information Leak; Severity: 2 show less	Port Scan
🇫🇷 pm33	2026-06-07 23:52:01 (1 day ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇩🇪 Mykola Spesivtsev	2026-06-07 23:50:48 (1 day ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:visionheight.com/scan Mozill ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36 show less	Port Scan Web App Attack Bad Web Bot
🇮🇩 securejdprop	2026-06-07 23:50:42 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET SCAN MS Termina ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET SCAN MS Terminal Server Traffic on Non-standard Port). Ip 3.20.236.253 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-07 23:50:41.260761154 +0000 UTC show less	Hacking Web App Attack
🇯🇵 HeliJP	2026-06-07 23:45:51 (1 day ago)	2026-06-07T23:35:40Z - Recognized attacks\bad behavior from IP address 3.20.236.253 on port 443\80 ( ... show more 2026-06-07T23:35:40Z - Recognized attacks\bad behavior from IP address 3.20.236.253 on port 443\80 (4 daily hits): client denied by server configuration show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇦🇺 dyln	2026-06-07 23:42:40 (1 day ago)	Dyls honeypot brute-force: proto8 (5 total hits)	Brute-Force
🇺🇸 aks4226	2026-06-07 23:40:24 (1 day ago)	Attacking common web applications. (n01)	Web App Attack
🇩🇪 dispaisyenterprises	2026-06-07 23:39:58 (1 day ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 8087 GET / User-Agent: visionheight.com/scan Mozill ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 8087 GET / User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 8087 [3] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 gbzret4d	2026-06-07 23:39:52 (1 day ago)	Honeypot [uk-production01]: Unauthorized traffic (1 bytes of payload); 8087 [4] TCP	Port Scan
🇩🇪 femboy.cat	2026-06-07 23:37:11 (1 day ago)	Port scan to tcp/8087 from 3.20.236.253	Brute-Force
🇯🇵 mkaraki	2026-06-07 23:34:20 (1 day ago)	1780875259 # Service_probe # SIGNATURE_SEND # source_ip:3.20.236.253 # dst_port:80 ...	Port Scan

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 209.58.160.54

🇵🇱 194.180.49.145

🇺🇸 162.216.150.190

🇮🇳 103.100.7.217

🇨🇳 101.43.88.104

🇸🇬 152.42.217.112

🇨🇳 113.238.163.60

🇺🇸 66.132.224.22

🇺🇸 66.132.195.21

🇩🇪 50.3.85.38

🇳🇱 45.148.10.157

🇳🇱 45.148.10.152

🇳🇱 45.148.10.151

🇸🇪 2400:cb00:1032:1000:41d3:3af2:6037:926e

🇬🇧 188.240.59.3

🇻🇪 181.17.21.64

🇷🇺 176.97.38.43

🇺🇸 174.35.25.181

🇺🇸 162.216.150.18

🇨🇳 111.113.88.52