城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 13.200.0.0 - 13.239.255.255
CIDR: 13.208.0.0/12, 13.200.0.0/13, 13.224.0.0/12
NetName: AT-88-Z
NetHandle: NET-13-200-0-0-1
Parent: NET13 (NET-13-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2019-10-01
Updated: 2021-02-10
Ref: https://rdap.arin.net/registry/ip/13.200.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2024-01-24
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
# end
# start
NetRange: 13.216.0.0 - 13.223.255.255
CIDR: 13.216.0.0/13
NetName: AMAZON-IAD
NetHandle: NET-13-216-0-0-1
Parent: AT-88-Z (NET-13-200-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Amazon Data Services Northern Virginia (ADSN-1)
RegDate: 2024-09-27
Updated: 2024-09-27
Ref: https://rdap.arin.net/registry/ip/13.216.0.0
OrgName: Amazon Data Services Northern Virginia
OrgId: ADSN-1
Address: 13200 Woodland Park Road
City: Herndon
StateProv: VA
PostalCode: 20171
Country: US
RegDate: 2018-04-25
Updated: 2025-08-14
Ref: https://rdap.arin.net/registry/entity/ADSN-1
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.222.38.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38818
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.222.38.67. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041602 1800 900 604800 86400
;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 05:30:43 CST 2026
;; MSG SIZE rcvd: 10567.38.222.13.in-addr.arpa domain name pointer ec2-13-222-38-67.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
67.38.222.13.in-addr.arpa name = ec2-13-222-38-67.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 211.197.7.1 | attackspambots | (sshd) Failed SSH login from 211.197.7.1 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 19 11:32:28 s1 sshd[23592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.197.7.1 user=root Mar 19 11:32:30 s1 sshd[23592]: Failed password for root from 211.197.7.1 port 54971 ssh2 Mar 19 11:38:19 s1 sshd[23781]: Invalid user user from 211.197.7.1 port 64132 Mar 19 11:38:21 s1 sshd[23781]: Failed password for invalid user user from 211.197.7.1 port 64132 ssh2 Mar 19 11:42:05 s1 sshd[23949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.197.7.1 user=root |
2020-03-19 19:46:25 |
| 107.13.186.21 | attackbotsspam | (sshd) Failed SSH login from 107.13.186.21 (US/United States/mta-107-13-186-21.nc.rr.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 19 13:03:45 ubnt-55d23 sshd[30544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.13.186.21 user=root Mar 19 13:03:47 ubnt-55d23 sshd[30544]: Failed password for root from 107.13.186.21 port 40296 ssh2 |
2020-03-19 20:18:38 |
| 222.186.15.246 | attackbotsspam | Mar 19 10:56:48 v22018053744266470 sshd[12924]: Failed password for root from 222.186.15.246 port 13846 ssh2 Mar 19 10:57:42 v22018053744266470 sshd[12980]: Failed password for root from 222.186.15.246 port 34237 ssh2 ... |
2020-03-19 19:38:48 |
| 121.15.2.178 | attackbotsspam | Mar 19 07:23:36 ws24vmsma01 sshd[112188]: Failed password for root from 121.15.2.178 port 53894 ssh2 ... |
2020-03-19 19:53:42 |
| 86.105.52.90 | attackspambots | Mar 19 10:34:13 mail sshd[22054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.105.52.90 user=postfix Mar 19 10:34:14 mail sshd[22054]: Failed password for postfix from 86.105.52.90 port 42274 ssh2 Mar 19 10:45:34 mail sshd[23506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.105.52.90 user=root Mar 19 10:45:35 mail sshd[23506]: Failed password for root from 86.105.52.90 port 53398 ssh2 Mar 19 10:52:21 mail sshd[25243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.105.52.90 user=root Mar 19 10:52:22 mail sshd[25243]: Failed password for root from 86.105.52.90 port 46428 ssh2 ... |
2020-03-19 19:36:17 |
| 84.185.233.251 | attackspam | Mar 15 20:25:44 hostnameproxy sshd[28570]: Invalid user cadmin from 84.185.233.251 port 30726 Mar 15 20:25:44 hostnameproxy sshd[28570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.185.233.251 Mar 15 20:25:46 hostnameproxy sshd[28570]: Failed password for invalid user cadmin from 84.185.233.251 port 30726 ssh2 Mar 15 20:28:47 hostnameproxy sshd[28632]: Invalid user robot from 84.185.233.251 port 21647 Mar 15 20:28:47 hostnameproxy sshd[28632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.185.233.251 Mar 15 20:28:49 hostnameproxy sshd[28632]: Failed password for invalid user robot from 84.185.233.251 port 21647 ssh2 Mar 15 20:31:47 hostnameproxy sshd[28702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.185.233.251 user=r.r Mar 15 20:31:49 hostnameproxy sshd[28702]: Failed password for r.r from 84.185.233.251 port 23217 ssh2 Mar 15 20:........ ------------------------------ |
2020-03-19 19:59:50 |
| 96.114.71.146 | attackbots | Invalid user fork1 from 96.114.71.146 port 40538 |
2020-03-19 19:33:54 |
| 195.154.112.212 | attack | 2020-03-19T11:35:33.879262abusebot-5.cloudsearch.cf sshd[2715]: Invalid user lrmagento from 195.154.112.212 port 36850 2020-03-19T11:35:33.887557abusebot-5.cloudsearch.cf sshd[2715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-112-212.rev.poneytelecom.eu 2020-03-19T11:35:33.879262abusebot-5.cloudsearch.cf sshd[2715]: Invalid user lrmagento from 195.154.112.212 port 36850 2020-03-19T11:35:35.534503abusebot-5.cloudsearch.cf sshd[2715]: Failed password for invalid user lrmagento from 195.154.112.212 port 36850 ssh2 2020-03-19T11:43:56.495032abusebot-5.cloudsearch.cf sshd[2837]: Invalid user airbot from 195.154.112.212 port 57654 2020-03-19T11:43:56.500493abusebot-5.cloudsearch.cf sshd[2837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-112-212.rev.poneytelecom.eu 2020-03-19T11:43:56.495032abusebot-5.cloudsearch.cf sshd[2837]: Invalid user airbot from 195.154.112.212 port 57654 2020-03-19 ... |
2020-03-19 19:54:17 |
| 222.186.175.151 | attackbotsspam | Mar 19 13:12:52 nextcloud sshd\[21886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Mar 19 13:12:54 nextcloud sshd\[21886\]: Failed password for root from 222.186.175.151 port 62502 ssh2 Mar 19 13:12:58 nextcloud sshd\[21886\]: Failed password for root from 222.186.175.151 port 62502 ssh2 |
2020-03-19 20:19:58 |
| 119.96.175.244 | attack | Mar 19 12:32:47 sd-53420 sshd\[14480\]: User root from 119.96.175.244 not allowed because none of user's groups are listed in AllowGroups Mar 19 12:32:47 sd-53420 sshd\[14480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.175.244 user=root Mar 19 12:32:49 sd-53420 sshd\[14480\]: Failed password for invalid user root from 119.96.175.244 port 58936 ssh2 Mar 19 12:41:09 sd-53420 sshd\[17119\]: User root from 119.96.175.244 not allowed because none of user's groups are listed in AllowGroups Mar 19 12:41:09 sd-53420 sshd\[17119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.175.244 user=root ... |
2020-03-19 19:51:33 |
| 206.174.214.90 | attack | leo_www |
2020-03-19 19:59:10 |
| 122.155.174.36 | attack | Mar 18 23:48:42 ny01 sshd[15425]: Failed password for root from 122.155.174.36 port 54630 ssh2 Mar 18 23:51:03 ny01 sshd[16352]: Failed password for root from 122.155.174.36 port 35898 ssh2 |
2020-03-19 19:34:57 |
| 101.231.154.154 | attackbotsspam | Mar 19 11:58:37 ns382633 sshd\[14426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.154.154 user=root Mar 19 11:58:39 ns382633 sshd\[14426\]: Failed password for root from 101.231.154.154 port 4388 ssh2 Mar 19 12:10:16 ns382633 sshd\[16956\]: Invalid user justin from 101.231.154.154 port 4391 Mar 19 12:10:16 ns382633 sshd\[16956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.154.154 Mar 19 12:10:18 ns382633 sshd\[16956\]: Failed password for invalid user justin from 101.231.154.154 port 4391 ssh2 |
2020-03-19 20:05:05 |
| 162.243.130.244 | attack | Port 109 scan denied |
2020-03-19 20:01:10 |
| 47.74.49.75 | attackspam | SSH login attempts. |
2020-03-19 19:58:23 |