城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 13.200.0.0 - 13.239.255.255
CIDR: 13.224.0.0/12, 13.200.0.0/13, 13.208.0.0/12
NetName: AT-88-Z
NetHandle: NET-13-200-0-0-1
Parent: NET13 (NET-13-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2019-10-01
Updated: 2021-02-10
Ref: https://rdap.arin.net/registry/ip/13.200.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2024-01-24
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
# end
# start
NetRange: 13.216.0.0 - 13.223.255.255
CIDR: 13.216.0.0/13
NetName: AMAZON-IAD
NetHandle: NET-13-216-0-0-1
Parent: AT-88-Z (NET-13-200-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Amazon Data Services Northern Virginia (ADSN-1)
RegDate: 2024-09-27
Updated: 2024-09-27
Ref: https://rdap.arin.net/registry/ip/13.216.0.0
OrgName: Amazon Data Services Northern Virginia
OrgId: ADSN-1
Address: 13200 Woodland Park Road
City: Herndon
StateProv: VA
PostalCode: 20171
Country: US
RegDate: 2018-04-25
Updated: 2025-08-14
Ref: https://rdap.arin.net/registry/entity/ADSN-1
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.222.214.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63113
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.222.214.52. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101700 1800 900 604800 86400
;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 17 21:32:00 CST 2025
;; MSG SIZE rcvd: 10652.214.222.13.in-addr.arpa domain name pointer ec2-13-222-214-52.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
52.214.222.13.in-addr.arpa name = ec2-13-222-214-52.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 193.70.38.187 | attackbots | Aug 27 14:13:26 george sshd[25940]: Failed password for invalid user temp from 193.70.38.187 port 35538 ssh2 Aug 27 14:17:11 george sshd[25993]: Invalid user asterisk from 193.70.38.187 port 42286 Aug 27 14:17:11 george sshd[25993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.38.187 Aug 27 14:17:13 george sshd[25993]: Failed password for invalid user asterisk from 193.70.38.187 port 42286 ssh2 Aug 27 14:20:48 george sshd[26034]: Invalid user zimbra from 193.70.38.187 port 49034 ... |
2020-08-28 03:53:14 |
| 192.241.175.48 | attackspam | 2020-08-27T14:27:34.5657851495-001 sshd[21420]: Invalid user ftpuser from 192.241.175.48 port 58326 2020-08-27T14:27:36.9539981495-001 sshd[21420]: Failed password for invalid user ftpuser from 192.241.175.48 port 58326 ssh2 2020-08-27T14:31:45.7695931495-001 sshd[21642]: Invalid user priyam from 192.241.175.48 port 50780 2020-08-27T14:31:45.7725871495-001 sshd[21642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.175.48 2020-08-27T14:31:45.7695931495-001 sshd[21642]: Invalid user priyam from 192.241.175.48 port 50780 2020-08-27T14:31:47.6154731495-001 sshd[21642]: Failed password for invalid user priyam from 192.241.175.48 port 50780 ssh2 ... |
2020-08-28 04:03:43 |
| 106.13.233.4 | attackspambots | Aug 27 21:41:51 sip sshd[1440546]: Failed password for root from 106.13.233.4 port 39258 ssh2 Aug 27 21:46:24 sip sshd[1440603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.233.4 user=root Aug 27 21:46:25 sip sshd[1440603]: Failed password for root from 106.13.233.4 port 42986 ssh2 ... |
2020-08-28 03:49:13 |
| 88.91.13.216 | attack | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-27T16:53:25Z and 2020-08-27T17:03:59Z |
2020-08-28 03:59:22 |
| 111.229.242.119 | attackspam | bruteforce detected |
2020-08-28 03:40:31 |
| 138.36.81.253 | attack | Brute Force |
2020-08-28 03:40:56 |
| 182.137.62.255 | attack | spam (f2b h2) |
2020-08-28 03:55:35 |
| 5.249.145.245 | attackbotsspam | Aug 27 17:31:16 melroy-server sshd[19171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.245 Aug 27 17:31:18 melroy-server sshd[19171]: Failed password for invalid user comunica from 5.249.145.245 port 41822 ssh2 ... |
2020-08-28 04:15:27 |
| 178.128.217.135 | attackspambots | Aug 27 18:37:43 vps639187 sshd\[15568\]: Invalid user ubuntu from 178.128.217.135 port 53864 Aug 27 18:37:43 vps639187 sshd\[15568\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.135 Aug 27 18:37:45 vps639187 sshd\[15568\]: Failed password for invalid user ubuntu from 178.128.217.135 port 53864 ssh2 ... |
2020-08-28 03:43:02 |
| 45.119.84.159 | attack | Aug 27 14:56:24 andromeda postfix/smtpd\[4890\]: warning: unknown\[45.119.84.159\]: SASL LOGIN authentication failed: authentication failure Aug 27 14:56:25 andromeda postfix/smtpd\[52781\]: warning: unknown\[45.119.84.159\]: SASL LOGIN authentication failed: authentication failure Aug 27 14:56:27 andromeda postfix/smtpd\[10832\]: warning: unknown\[45.119.84.159\]: SASL LOGIN authentication failed: authentication failure Aug 27 14:56:28 andromeda postfix/smtpd\[10841\]: warning: unknown\[45.119.84.159\]: SASL LOGIN authentication failed: authentication failure Aug 27 14:56:29 andromeda postfix/smtpd\[10845\]: warning: unknown\[45.119.84.159\]: SASL LOGIN authentication failed: authentication failure |
2020-08-28 04:09:13 |
| 172.245.58.71 | attack | 74,45-06/06 [bc04/m105] PostRequest-Spammer scoring: maputo01_x2b |
2020-08-28 04:06:55 |
| 212.47.238.207 | attackbotsspam | SSH Brute-Force. Ports scanning. |
2020-08-28 03:50:49 |
| 106.54.105.176 | attackspambots | prod8 ... |
2020-08-28 03:56:08 |
| 221.144.178.231 | attack | Aug 27 14:56:54 sso sshd[19394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.144.178.231 Aug 27 14:56:56 sso sshd[19394]: Failed password for invalid user smart from 221.144.178.231 port 41556 ssh2 ... |
2020-08-28 03:51:38 |
| 49.233.171.219 | attackbotsspam | Aug 27 17:47:45 ns382633 sshd\[20945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.171.219 user=root Aug 27 17:47:48 ns382633 sshd\[20945\]: Failed password for root from 49.233.171.219 port 25509 ssh2 Aug 27 17:55:58 ns382633 sshd\[22697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.171.219 user=root Aug 27 17:56:00 ns382633 sshd\[22697\]: Failed password for root from 49.233.171.219 port 40372 ssh2 Aug 27 17:58:34 ns382633 sshd\[22959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.171.219 user=root |
2020-08-28 03:47:46 |