City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 130.94.0.0 - 130.94.255.255
CIDR: 130.94.0.0/16
NetName: NTTA-130-94
NetHandle: NET-130-94-0-0-1
Parent: NET130 (NET-130-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: NTT America, Inc. (NTTAM-1)
RegDate: 1988-07-11
Updated: 2012-03-02
Comment:
Comment: Reassignment information for this block is
Comment: available at rwhois.gin.ntt.net port 4321
Ref: https://rdap.arin.net/registry/ip/130.94.0.0
OrgName: NTT America, Inc.
OrgId: NTTAM-1
Address: 15809 Bear Creek Pkwy
Address: Suite 320
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 2005-12-08
Updated: 2024-03-04
Ref: https://rdap.arin.net/registry/entity/NTTAM-1
ReferralServer: rwhois://rwhois.gin.ntt.net:4321
OrgAbuseHandle: NAAC-ARIN
OrgAbuseName: NTT America Abuse Contact
OrgAbusePhone: +1-877-688-6625
OrgAbuseEmail: abuse@ntt.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/NAAC-ARIN
OrgTechHandle: CANDE70-ARIN
OrgTechName: Candela, Massimo
OrgTechPhone: +1-214-915-1366
OrgTechEmail: massimo@ntt.net
OrgTechRef: https://rdap.arin.net/registry/entity/CANDE70-ARIN
OrgNOCHandle: NASC-ARIN
OrgNOCName: NTT America Support Contact
OrgNOCPhone: +1-877-688-6625
OrgNOCEmail: ce-support@gin.ntt.net
OrgNOCRef: https://rdap.arin.net/registry/entity/NASC-ARIN
OrgRoutingHandle: PEERI-ARIN
OrgRoutingName: Peering
OrgRoutingPhone: +1-877-688-6625
OrgRoutingEmail: peering@ntt.net
OrgRoutingRef: https://rdap.arin.net/registry/entity/PEERI-ARIN
OrgTechHandle: VIPAR-ARIN
OrgTechName: VIPAR
OrgTechPhone: +1-877-688-6625
OrgTechEmail: ipr@gin.ntt.net
OrgTechRef: https://rdap.arin.net/registry/entity/VIPAR-ARIN
RTechHandle: VIA4-ORG-ARIN
RTechName: VIPAR
RTechPhone: +1-877-688-6625
RTechEmail: ipr@gin.ntt.net
RTechRef: https://rdap.arin.net/registry/entity/VIA4-ORG-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to rwhois.gin.ntt.net:4321.
%rwhois V-1.5:0078b6:00 rwhois.gin.ntt.net (Vipar 0.1a. Comments to ipr@gin.ntt.net)
network:Class-Name:network
network:Auth-Area:130.94.128.0/17
network:ID:USV4-130-94-202-0.127.0.0.1/32
network:Handle:USV4-130-94-202-0
network:Network-Name:USV4-130-94-202-0
network:IP-Network:130.94.202.0/23
network:In-Addr-Server;I:GIN1-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN2-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN3-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN4-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN5-HST.127.0.0.1/32
network:IP-Network-Block:130.94.202.0 - 130.94.203.255
network:Org-Name:Zhilian Technology CO., LTD.
network:Street-Address:ORTON SOUTHGATE SUITE 100 12 MAN
network:City:PETERBOROUGH
network:State:
network:Postal-Code:E26UP
network:Country-Code:EN
network:Tech-Contact;I:ZLIDC.127.0.0.1/32
network:Created:2026-01-14 18:22:49.97425+00
network:Updated:2026-01-14 18:22:49.97425+00
network:Class-Name:network
network:Auth-Area:130.94.128.0/17
network:ID:NETBLK-USV4-130-94-128.127.0.0.1/32
network:Handle:NETBLK-USV4-130-94-128
network:Network-Name:USV4-130-94-128
network:IP-Network:130.94.128.0/17
network:In-Addr-Server;I:GIN1-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN2-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN3-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN4-HST.127.0.0.1/32
network:In-Addr-Server;I:GIN5-HST.127.0.0.1/32
network:IP-Network-Block:130.94.128.0 - 130.94.255.255
network:Org-Name:NTT DATA
network:Street-Address:8300 E Maplewood Ave. Suite 400
network:City:Greenwood Village
network:State:CO
network:Postal-Code:80111
network:Country-Code:US
network:Tech-Contact;I:GIN-BBV4.127.0.0.1/32
network:Created:2025-03-25 18:47:53.858816+00
network:Updated:2025-03-31 15:02:30.491891+00
%ok; <<>> DiG 9.10.3-P4-Ubuntu <<>> 130.94.203.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 769
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;130.94.203.238. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026012600 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 26 23:00:00 CST 2026
;; MSG SIZE rcvd: 107Host 238.203.94.130.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 238.203.94.130.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 157.230.235.233 | attackbotsspam | Jul 4 15:56:27 mail sshd\[9463\]: Failed password for invalid user admin from 157.230.235.233 port 45336 ssh2 Jul 4 16:12:06 mail sshd\[9682\]: Invalid user image from 157.230.235.233 port 36516 Jul 4 16:12:06 mail sshd\[9682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.235.233 ... |
2019-07-04 23:18:16 |
| 54.36.53.7 | attack | entzueckt.de 54.36.53.7 \[04/Jul/2019:15:14:56 +0200\] "POST /wp-login.php HTTP/1.1" 200 5626 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" entzueckt.de 54.36.53.7 \[04/Jul/2019:15:14:57 +0200\] "POST /wp-login.php HTTP/1.1" 200 5592 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-07-04 23:08:18 |
| 62.133.58.66 | attackbotsspam | Jul 4 15:34:09 mail postfix/smtpd\[16804\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 4 15:34:38 mail postfix/smtpd\[16917\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 4 16:07:26 mail postfix/smtpd\[17599\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 4 16:07:55 mail postfix/smtpd\[17599\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ |
2019-07-04 23:07:14 |
| 61.72.254.71 | attackspambots | Jul 4 15:11:46 MK-Soft-VM3 sshd\[10015\]: Invalid user amalia from 61.72.254.71 port 39968 Jul 4 15:11:46 MK-Soft-VM3 sshd\[10015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.72.254.71 Jul 4 15:11:48 MK-Soft-VM3 sshd\[10015\]: Failed password for invalid user amalia from 61.72.254.71 port 39968 ssh2 ... |
2019-07-04 23:16:56 |
| 117.232.67.154 | attack | Unauthorised access (Jul 4) SRC=117.232.67.154 LEN=52 PREC=0x20 TTL=109 ID=2689 DF TCP DPT=445 WINDOW=8192 SYN |
2019-07-04 23:19:35 |
| 54.37.205.162 | attack | Jul 4 14:54:06 thevastnessof sshd[4272]: Failed password for root from 54.37.205.162 port 43764 ssh2 ... |
2019-07-04 22:59:13 |
| 51.254.140.108 | attackbotsspam | detected by Fail2Ban |
2019-07-04 23:33:33 |
| 189.224.138.198 | attackspam | php WP PHPmyadamin ABUSE blocked for 12h |
2019-07-04 23:35:04 |
| 188.166.72.215 | attackbotsspam | 188.166.72.215 - - [04/Jul/2019:15:34:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.166.72.215 - - [04/Jul/2019:15:34:41 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.166.72.215 - - [04/Jul/2019:15:34:42 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.166.72.215 - - [04/Jul/2019:15:34:47 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.166.72.215 - - [04/Jul/2019:15:34:52 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 188.166.72.215 - - [04/Jul/2019:15:34:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-07-04 23:03:45 |
| 178.128.246.54 | attackbots | [ssh] SSH attack |
2019-07-04 23:25:03 |
| 51.75.205.122 | attackbots | Jul 4 15:14:43 server sshd[22624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.205.122 ... |
2019-07-04 23:15:03 |
| 5.135.105.44 | attack | WordPress login Brute force / Web App Attack on client site. |
2019-07-04 22:52:43 |
| 118.89.40.174 | attackbotsspam | Jul 4 16:33:01 ovpn sshd\[29204\]: Invalid user nagios from 118.89.40.174 Jul 4 16:33:01 ovpn sshd\[29204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.40.174 Jul 4 16:33:03 ovpn sshd\[29204\]: Failed password for invalid user nagios from 118.89.40.174 port 42174 ssh2 Jul 4 16:43:21 ovpn sshd\[31139\]: Invalid user nicolas from 118.89.40.174 Jul 4 16:43:21 ovpn sshd\[31139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.40.174 |
2019-07-04 23:22:14 |
| 190.98.228.54 | attackspambots | ssh failed login |
2019-07-04 23:20:31 |
| 23.129.64.210 | attackbots | Automatic report - Web App Attack |
2019-07-04 22:57:00 |