城市(city): Sanaa
省份(region): Amanat Al Asimah
国家(country): Yemen
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 134.35.0.0 - 134.35.255.255
CIDR: 134.35.0.0/16
NetName: RIPE
NetHandle: NET-134-35-0-0-1
Parent: NET134 (NET-134-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2016-03-09
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/134.35.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.35.157.184
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;134.35.157.184. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070401 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 03:30:36 CST 2026
;; MSG SIZE rcvd: 107
Host 184.157.35.134.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 184.157.35.134.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 190.186.65.128 | attack | Brute force attempt |
2020-03-08 09:52:44 |
| 89.248.174.213 | attackspam | Mar 8 02:20:59 debian-2gb-nbg1-2 kernel: \[5889617.576882\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.174.213 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=37294 PROTO=TCP SPT=51501 DPT=55646 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-08 10:07:25 |
| 212.47.253.178 | attackspam | Mar 7 15:19:14 hanapaa sshd\[1766\]: Invalid user tomcat from 212.47.253.178 Mar 7 15:19:14 hanapaa sshd\[1766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-253-47-212.rev.cloud.scaleway.com Mar 7 15:19:16 hanapaa sshd\[1766\]: Failed password for invalid user tomcat from 212.47.253.178 port 48418 ssh2 Mar 7 15:27:43 hanapaa sshd\[2403\]: Invalid user chenyang from 212.47.253.178 Mar 7 15:27:43 hanapaa sshd\[2403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-253-47-212.rev.cloud.scaleway.com |
2020-03-08 09:52:06 |
| 178.33.12.237 | attackbotsspam | fail2ban |
2020-03-08 09:37:55 |
| 140.143.57.159 | attack | DATE:2020-03-07 23:05:03, IP:140.143.57.159, PORT:ssh SSH brute force auth (docker-dc) |
2020-03-08 09:31:24 |
| 180.100.243.210 | attackbotsspam | Invalid user hewenlong from 180.100.243.210 port 42460 |
2020-03-08 09:45:26 |
| 222.186.15.91 | attackspam | Mar 8 02:38:12 MK-Soft-Root1 sshd[8606]: Failed password for root from 222.186.15.91 port 42457 ssh2 Mar 8 02:38:14 MK-Soft-Root1 sshd[8606]: Failed password for root from 222.186.15.91 port 42457 ssh2 ... |
2020-03-08 09:48:51 |
| 45.63.74.243 | attackspam | Mar 8 03:12:09 host sshd[60644]: Invalid user admin from 45.63.74.243 port 61550 ... |
2020-03-08 10:13:06 |
| 31.145.194.195 | attackspambots | Automatic report - Banned IP Access |
2020-03-08 10:09:35 |
| 80.211.22.242 | attackspam | 3x Failed Password |
2020-03-08 09:43:17 |
| 181.57.208.226 | attackspambots | DATE:2020-03-07 23:04:19, IP:181.57.208.226, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc) |
2020-03-08 09:53:03 |
| 45.253.64.45 | attackbotsspam | SSHD brute force attack detected by fail2ban |
2020-03-08 09:33:33 |
| 104.248.58.71 | attack | Mar 7 19:10:53 Tower sshd[40091]: Connection from 104.248.58.71 port 45810 on 192.168.10.220 port 22 rdomain "" Mar 7 19:10:53 Tower sshd[40091]: Invalid user cpanelconnecttrack from 104.248.58.71 port 45810 Mar 7 19:10:53 Tower sshd[40091]: error: Could not get shadow information for NOUSER Mar 7 19:10:53 Tower sshd[40091]: Failed password for invalid user cpanelconnecttrack from 104.248.58.71 port 45810 ssh2 Mar 7 19:10:53 Tower sshd[40091]: Received disconnect from 104.248.58.71 port 45810:11: Bye Bye [preauth] Mar 7 19:10:53 Tower sshd[40091]: Disconnected from invalid user cpanelconnecttrack 104.248.58.71 port 45810 [preauth] |
2020-03-08 09:58:01 |
| 181.123.177.150 | attackspam | k+ssh-bruteforce |
2020-03-08 09:36:20 |
| 117.240.95.114 | attackbots | " " |
2020-03-08 10:08:28 |