13.225.142.105 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 13.225.142.105 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS16509 amazon.com inc
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: dogesol.space drosiakefalonia.com dualaffctn.com yalpcorp.com ultimatesoftwarecompany.com sariahnyc.com samakwimall.com wanderwealth.org xn–3j4bmf.com qs8vr76t696.online 4nhlqxvlz8a.online mt6040.top mt4129.top choeurfidele.com uja7nhe6nc5n.xyz joetonewrites.com 5nm5opihjxi.xyz ingforthemoonheap.com eutika.com spiritssync.com marketingmomday.com saludvida.lat gladdenmejica.com 8badf3006e2a499ca7e6db71c54f3b86.emt.cf.ww.aiv-cdn.net planprofessional.online x9oyr.top marketscheduler.com didimdegayrimenkul.com v1uqz4ntmzc.xyz ru5ash4z4cg.xyz 849m7hmqrtn.xyz lazywealthycoach.com wallet.dev.cere.io helenrobinsondesign.com empathyear.com hierroaventura.com expertshopilay.com cc9sk2sw0mg.xyz q7d6r15q48q.xyz y4ke.xyz yd2e3cm18bg.xyz ftbw.xyz haimtickets.store gabrielleelysephotography.com dongholux.com smoothieweightloss.life blockwar.io hoziersaltlakecity.store washingtonplada.com genie-script.com webeie.com townhall.co shirtforboy.us plazadefp.com legisupp.xyz 6837633.com kerassentialspurchase.com lilienexpress.com lovelydog.org spitzaufschmankerl.at rowingwaikato.com lsalignmentandtuneup.com zkpunks.net aihosthelper.com beta.widget.help.cloudtune.amazon.dev learnspanishlanguagequick.com mywebdoggy.com baronacaputmundi.com cartcellengine.com renewallook.com dyonhew8vksoc.amplifyapp.com lebensimpuls-messe.com artservi.com dni2.com cypherhumans.xyz pasoapaso-salon.com ultraleap.com auth.dhjtech.com joinme.click blominday.com ethstorage.io rjrbt.io lavraiemotivation.com anderenter.com textopia.com funcuist.com mauricestoof.com billhmom.com muflah.com futureproofreviews.com hayastan-challenge.com stevesmartpoetry.com comfofe.com lepanierdugourmet.com yourtrusted-solarsurvey.com espboards.dev glucofort-coms.com cybersafehaven.co.uk faraway.com lyriccheck.me budgetworkflow.com cultures.space soundtherapysolutions.com xiaoya362.com thatmamainpajamas.com rentbyboater.com releasin.com edipaym.com chloeisherwoodphotography.com rkixp.com redthreadhelp.com backyardflower.com widner.xyz sponsler.ink thehousesupport.com retouchtheworld.com pgchampion.com atten.app nosybeprojects.com witcogroup.com fbpromoters.com jeffersontechnologypark.com officecleaningflorida.com remolat.com funcuis.com dozeen.com misols.com spadfe.com childfamily.health jayedmarie.com cpluscapital.com wfreud.com zeservic.com clear-skies.me bloganics.com dispatchtickets.live jslmarketingandsales.com esendex.at textanywhere.de esendex.ch lamarduciel.com krozz.net estudionap.com illeniumtickets.store kjb-online.com vatingotherem.xyz marinevuillermet.com exelonbusinesssolutions.com thereliefsupport.com d3895gu5f8tdx5.cloudfront.net mutantfroggo.com profissionaisexponenciais.com.br kikbet40.com sekjongemall.com danaperinoandco.com arielsamone.com taqql.com gte.cc chainhounds.com ayongozi.com gativan.in kim-ah-joong.com incekumvilla.com mechoautotech.com mseascapes.com tahakhawaja.com bestmakemoney.us bloonday.com inshapfe.com thedavidhanks.com cinebazzar.com electnow.com.au 780inc.com www.sopbs.org frederick.win cooperativasalama.com nirness.com happybell-shiraito.com meekercharitable.org mondedelabible.com locezon.com getbmz.com growyfe.com pranavchary.com optus-ar.com

Open Ports Detected

443 80

Map

Whois Information

• NetRange: 13.200.0.0 - 13.239.255.255
• CIDR: 13.200.0.0/13, 13.224.0.0/12, 13.208.0.0/12
• NetName: AT-88-Z
• NetHandle: NET-13-200-0-0-1
• Parent: NET13 (NET-13-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Amazon Technologies Inc. (AT-88-Z)
• RegDate: 2019-10-01
• Updated: 2021-02-10
• Ref: https://rdap.arin.net/registry/ip/13.200.0.0
• OrgName: Amazon Technologies Inc.
• OrgId: AT-88-Z
• Address: 410 Terry Ave N.
• City: Seattle
• StateProv: WA
• PostalCode: 98109
• Country: US
• RegDate: 2011-12-08
• Updated: 2024-01-24
• Comment: All abuse reports MUST include:
• Comment: * src IP
• Comment: * dest IP (your IP)
• Comment: * dest port
• Comment: * Accurate date/timestamp and timezone of activity
• Comment: * Intensity/frequency (short log extracts)
• Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
• Ref: https://rdap.arin.net/registry/entity/AT-88-Z
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: abuse@amazonaws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• NetRange: 13.224.0.0 - 13.227.255.255
• CIDR: 13.224.0.0/14
• NetName: AMAZO-CF
• NetHandle: NET-13-224-0-0-2
• Parent: AT-88-Z (NET-13-200-0-0-1)
• NetType: Reallocated
• OriginAS:
• Organization: Amazon.com, Inc. (AMAZON-4)
• RegDate: 2020-05-19
• Updated: 2021-02-10
• Ref: https://rdap.arin.net/registry/ip/13.224.0.0
• OrgName: Amazon.com, Inc.
• OrgId: AMAZON-4
• Address: 1918 8th Ave
• City: SEATTLE
• StateProv: WA
• PostalCode: 98101-1244
• Country: US
• RegDate: 1995-01-23
• Updated: 2022-09-30
• Ref: https://rdap.arin.net/registry/entity/AMAZON-4
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: abuse@amazonaws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN

Links to attack logs

****** ****** ******