城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 13.200.0.0 - 13.239.255.255
CIDR: 13.208.0.0/12, 13.224.0.0/12, 13.200.0.0/13
NetName: AT-88-Z
NetHandle: NET-13-200-0-0-1
Parent: NET13 (NET-13-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2019-10-01
Updated: 2021-02-10
Ref: https://rdap.arin.net/registry/ip/13.200.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2026-04-17
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
OrgDNSHandle: DNS1131-ARIN
OrgDNSName: DNS
OrgDNSPhone: +1-202-555-0000
OrgDNSEmail: ipmanagement+dns@amazon.com
OrgDNSRef: https://rdap.arin.net/registry/entity/DNS1131-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
# end
# start
NetRange: 13.216.0.0 - 13.223.255.255
CIDR: 13.216.0.0/13
NetName: AMAZON-IAD
NetHandle: NET-13-216-0-0-1
Parent: AT-88-Z (NET-13-200-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Amazon Data Services Northern Virginia (ADSN-1)
RegDate: 2024-09-27
Updated: 2024-09-27
Ref: https://rdap.arin.net/registry/ip/13.216.0.0
OrgName: Amazon Data Services Northern Virginia
OrgId: ADSN-1
Address: 13200 Woodland Park Road
City: Herndon
StateProv: VA
PostalCode: 20171
Country: US
RegDate: 2018-04-25
Updated: 2025-08-14
Ref: https://rdap.arin.net/registry/entity/ADSN-1
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.220.91.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.220.91.9. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070302 1800 900 604800 86400
;; Query time: 740 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 04 10:00:34 CST 2026
;; MSG SIZE rcvd: 104
9.91.220.13.in-addr.arpa domain name pointer ec2-13-220-91-9.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
9.91.220.13.in-addr.arpa name = ec2-13-220-91-9.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 46.101.11.213 | attackspambots | Jul 16 00:10:51 * sshd[10259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.11.213 Jul 16 00:10:53 * sshd[10259]: Failed password for invalid user camila from 46.101.11.213 port 47312 ssh2 |
2019-07-16 06:11:43 |
| 58.227.2.130 | attackbotsspam | Jul 15 22:59:02 v22018076622670303 sshd\[452\]: Invalid user administrator from 58.227.2.130 port 46105 Jul 15 22:59:02 v22018076622670303 sshd\[452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.227.2.130 Jul 15 22:59:04 v22018076622670303 sshd\[452\]: Failed password for invalid user administrator from 58.227.2.130 port 46105 ssh2 ... |
2019-07-16 06:18:04 |
| 216.239.90.19 | attackbots | Jul 15 18:50:29 v22019058497090703 sshd[698]: Failed password for root from 216.239.90.19 port 48497 ssh2 Jul 15 18:50:31 v22019058497090703 sshd[698]: Failed password for root from 216.239.90.19 port 48497 ssh2 Jul 15 18:50:34 v22019058497090703 sshd[698]: Failed password for root from 216.239.90.19 port 48497 ssh2 Jul 15 18:50:42 v22019058497090703 sshd[698]: Failed password for root from 216.239.90.19 port 48497 ssh2 Jul 15 18:50:42 v22019058497090703 sshd[698]: error: maximum authentication attempts exceeded for root from 216.239.90.19 port 48497 ssh2 [preauth] ... |
2019-07-16 06:25:06 |
| 200.133.125.244 | attackspam | Jul 15 23:49:55 rpi sshd[18169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.125.244 Jul 15 23:49:56 rpi sshd[18169]: Failed password for invalid user gwen from 200.133.125.244 port 51450 ssh2 |
2019-07-16 06:09:07 |
| 170.130.187.42 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-07-16 06:21:43 |
| 174.127.241.94 | attackbotsspam | 2019-07-15T21:58:46.550419abusebot-3.cloudsearch.cf sshd\[1595\]: Invalid user webmaster from 174.127.241.94 port 59176 |
2019-07-16 05:59:33 |
| 77.42.111.118 | attack | Automatic report - Port Scan Attack |
2019-07-16 06:14:35 |
| 1.160.23.11 | attack | Automatic report - Port Scan Attack |
2019-07-16 05:52:50 |
| 196.29.164.164 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-07-16 05:49:02 |
| 92.63.196.7 | attack | RDP Bruteforce |
2019-07-16 06:32:12 |
| 135.23.94.207 | attackbots | Jul 16 01:06:52 srv-4 sshd\[5352\]: Invalid user www from 135.23.94.207 Jul 16 01:06:52 srv-4 sshd\[5352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=135.23.94.207 Jul 16 01:06:53 srv-4 sshd\[5352\]: Failed password for invalid user www from 135.23.94.207 port 46578 ssh2 ... |
2019-07-16 06:31:52 |
| 148.72.214.18 | attack | Jul 15 23:56:55 localhost sshd\[21040\]: Invalid user ke from 148.72.214.18 port 38242 Jul 15 23:56:55 localhost sshd\[21040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Jul 15 23:56:57 localhost sshd\[21040\]: Failed password for invalid user ke from 148.72.214.18 port 38242 ssh2 |
2019-07-16 06:07:01 |
| 103.233.156.58 | attackspam | Portscan or hack attempt detected by psad/fwsnort |
2019-07-16 06:00:45 |
| 156.213.32.82 | attackbots | DATE:2019-07-15 18:51:06, IP:156.213.32.82, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc) |
2019-07-16 06:20:19 |
| 200.188.19.23 | attackspam | 445/tcp 445/tcp 445/tcp... [2019-06-17/07-15]18pkt,1pt.(tcp) |
2019-07-16 06:04:58 |