城市(city): Columbus
省份(region): Ohio
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 3.128.0.0 - 3.255.255.255
CIDR: 3.128.0.0/9
NetName: AT-88-Z
NetHandle: NET-3-128-0-0-1
Parent: NET3 (NET-3-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2018-06-25
Updated: 2018-09-13
Ref: https://rdap.arin.net/registry/ip/3.128.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2026-04-17
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgDNSHandle: DNS1131-ARIN
OrgDNSName: DNS
OrgDNSPhone: +1-202-555-0000
OrgDNSEmail: ipmanagement+dns@amazon.com
OrgDNSRef: https://rdap.arin.net/registry/entity/DNS1131-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.138.190.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55912
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;3.138.190.115. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026052401 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 25 06:00:06 CST 2026
;; MSG SIZE rcvd: 106115.190.138.3.in-addr.arpa domain name pointer ec2-3-138-190-115.us-east-2.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
115.190.138.3.in-addr.arpa name = ec2-3-138-190-115.us-east-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 123.31.41.20 | attackbots | May 8 17:27:52 legacy sshd[12313]: Failed password for root from 123.31.41.20 port 31134 ssh2 May 8 17:33:21 legacy sshd[12496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.41.20 May 8 17:33:24 legacy sshd[12496]: Failed password for invalid user we from 123.31.41.20 port 13957 ssh2 ... |
2020-05-09 01:59:00 |
| 185.234.217.164 | attackbots | 2020-05-08T11:33:13.417200linuxbox-skyline auth[29589]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=hello rhost=185.234.217.164 ... |
2020-05-09 01:40:01 |
| 173.220.199.42 | attackbotsspam | Unauthorized connection attempt detected from IP address 173.220.199.42 to port 4567 [T] |
2020-05-09 02:17:48 |
| 185.176.27.34 | attackbots | 05/08/2020-13:24:58.396950 185.176.27.34 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-09 01:51:55 |
| 195.54.167.14 | attackbotsspam | May 8 19:23:54 debian-2gb-nbg1-2 kernel: \[11217513.989211\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=51086 PROTO=TCP SPT=56576 DPT=15337 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-09 01:41:48 |
| 69.10.62.30 | attack | trying to access non-authorized port |
2020-05-09 01:37:32 |
| 193.95.24.114 | attackbotsspam | $f2bV_matches |
2020-05-09 01:39:27 |
| 141.98.81.84 | attackbotsspam | 2020-05-08T17:43:03.729915abusebot-5.cloudsearch.cf sshd[24134]: Invalid user admin from 141.98.81.84 port 35515 2020-05-08T17:43:03.736157abusebot-5.cloudsearch.cf sshd[24134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.84 2020-05-08T17:43:03.729915abusebot-5.cloudsearch.cf sshd[24134]: Invalid user admin from 141.98.81.84 port 35515 2020-05-08T17:43:05.219231abusebot-5.cloudsearch.cf sshd[24134]: Failed password for invalid user admin from 141.98.81.84 port 35515 ssh2 2020-05-08T17:43:28.296688abusebot-5.cloudsearch.cf sshd[24151]: Invalid user Admin from 141.98.81.84 port 45031 2020-05-08T17:43:28.302252abusebot-5.cloudsearch.cf sshd[24151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.84 2020-05-08T17:43:28.296688abusebot-5.cloudsearch.cf sshd[24151]: Invalid user Admin from 141.98.81.84 port 45031 2020-05-08T17:43:30.216955abusebot-5.cloudsearch.cf sshd[24151]: Failed passwo ... |
2020-05-09 02:04:00 |
| 195.54.160.211 | attackbotsspam | 05/08/2020-13:37:19.483301 195.54.160.211 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-09 01:42:25 |
| 222.186.180.17 | attackbots | May 8 19:45:44 melroy-server sshd[11571]: Failed password for root from 222.186.180.17 port 13118 ssh2 May 8 19:45:50 melroy-server sshd[11571]: Failed password for root from 222.186.180.17 port 13118 ssh2 ... |
2020-05-09 01:47:36 |
| 95.216.88.167 | attack | 2020-05-09 01:59:25 | |
| 157.230.109.166 | attackbots | May 8 14:11:31 ns382633 sshd\[12826\]: Invalid user etluser from 157.230.109.166 port 34856 May 8 14:11:31 ns382633 sshd\[12826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 May 8 14:11:33 ns382633 sshd\[12826\]: Failed password for invalid user etluser from 157.230.109.166 port 34856 ssh2 May 8 14:20:24 ns382633 sshd\[14483\]: Invalid user pz from 157.230.109.166 port 53110 May 8 14:20:24 ns382633 sshd\[14483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 |
2020-05-09 01:49:21 |
| 221.226.43.62 | attack | May 8 10:21:27 ny01 sshd[26811]: Failed password for root from 221.226.43.62 port 44711 ssh2 May 8 10:26:39 ny01 sshd[27885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.226.43.62 May 8 10:26:41 ny01 sshd[27885]: Failed password for invalid user demo from 221.226.43.62 port 41252 ssh2 |
2020-05-09 01:45:58 |
| 176.197.101.202 | attackbots | Unauthorized connection attempt detected from IP address 176.197.101.202 to port 8181 [T] |
2020-05-09 02:15:14 |
| 66.115.173.165 | attack | scans |
2020-05-09 01:44:31 |