City: Sanaa
Region: Amanat Al Asimah
Country: Yemen
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 134.35.0.0 - 134.35.255.255
CIDR: 134.35.0.0/16
NetName: RIPE
NetHandle: NET-134-35-0-0-1
Parent: NET134 (NET-134-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2016-03-09
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/134.35.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.35.157.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36105
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;134.35.157.158. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041901 1800 900 604800 86400
;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 02:08:32 CST 2026
;; MSG SIZE rcvd: 107Host 158.157.35.134.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 158.157.35.134.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 128.199.136.129 | attack | Aug 3 22:06:35 MK-Soft-Root2 sshd\[12470\]: Invalid user teamspeak from 128.199.136.129 port 53428 Aug 3 22:06:35 MK-Soft-Root2 sshd\[12470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.136.129 Aug 3 22:06:37 MK-Soft-Root2 sshd\[12470\]: Failed password for invalid user teamspeak from 128.199.136.129 port 53428 ssh2 ... |
2019-08-04 04:55:32 |
| 204.48.19.178 | attack | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.19.178 user=root Failed password for root from 204.48.19.178 port 36128 ssh2 Invalid user mars from 204.48.19.178 port 34234 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.19.178 Failed password for invalid user mars from 204.48.19.178 port 34234 ssh2 |
2019-08-04 05:04:28 |
| 92.118.38.50 | attackbots | Aug 3 21:26:59 mail postfix/smtpd\[30901\]: warning: unknown\[92.118.38.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 3 21:27:41 mail postfix/smtpd\[30666\]: warning: unknown\[92.118.38.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 3 21:57:51 mail postfix/smtpd\[31974\]: warning: unknown\[92.118.38.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 3 21:58:38 mail postfix/smtpd\[30878\]: warning: unknown\[92.118.38.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ |
2019-08-04 04:58:48 |
| 89.46.196.34 | attackbots | Aug 3 20:45:08 lnxmail61 sshd[6207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.196.34 |
2019-08-04 05:17:18 |
| 176.78.86.243 | attack | Aug 2 19:35:32 www sshd[2025]: reveeclipse mapping checking getaddrinfo for dsl-86-243.bl26.telepac.pt [176.78.86.243] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 2 19:35:32 www sshd[2025]: Invalid user test1 from 176.78.86.243 Aug 2 19:35:32 www sshd[2025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.78.86.243 Aug 2 19:35:34 www sshd[2025]: Failed password for invalid user test1 from 176.78.86.243 port 42076 ssh2 Aug 2 19:35:34 www sshd[2025]: Received disconnect from 176.78.86.243: 11: Bye Bye [preauth] Aug 2 19:40:12 www sshd[2103]: reveeclipse mapping checking getaddrinfo for dsl-86-243.bl26.telepac.pt [176.78.86.243] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 2 19:40:12 www sshd[2103]: Invalid user verner from 176.78.86.243 Aug 2 19:40:12 www sshd[2103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.78.86.243 Aug 2 19:40:13 www sshd[2103]: Failed password for invalid u........ ------------------------------- |
2019-08-04 04:57:33 |
| 185.110.127.26 | attackbots | Aug 3 08:08:18 cac1d2 sshd\[11859\]: Invalid user guohui from 185.110.127.26 port 39701 Aug 3 08:08:18 cac1d2 sshd\[11859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.110.127.26 Aug 3 08:08:21 cac1d2 sshd\[11859\]: Failed password for invalid user guohui from 185.110.127.26 port 39701 ssh2 ... |
2019-08-04 05:07:41 |
| 58.136.151.23 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-08-04 05:10:01 |
| 104.140.188.42 | attackspam | Honeypot attack, port: 81, PTR: cbfd1.rederatural.com. |
2019-08-04 04:56:40 |
| 180.151.225.195 | attackbotsspam | Aug 3 17:01:15 TORMINT sshd\[30215\]: Invalid user tester from 180.151.225.195 Aug 3 17:01:15 TORMINT sshd\[30215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.151.225.195 Aug 3 17:01:17 TORMINT sshd\[30215\]: Failed password for invalid user tester from 180.151.225.195 port 34064 ssh2 ... |
2019-08-04 05:09:34 |
| 134.175.102.205 | attackbots | 12 attempts against mh-pma-try-ban on shade.magehost.pro |
2019-08-04 05:22:51 |
| 103.243.252.244 | attackbotsspam | Feb 26 23:22:20 motanud sshd\[30319\]: Invalid user bkp from 103.243.252.244 port 55578 Feb 26 23:22:20 motanud sshd\[30319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.252.244 Feb 26 23:22:22 motanud sshd\[30319\]: Failed password for invalid user bkp from 103.243.252.244 port 55578 ssh2 |
2019-08-04 05:05:40 |
| 92.222.71.125 | attackspambots | 2019-08-03T20:07:57.477722abusebot-7.cloudsearch.cf sshd\[17711\]: Invalid user akai from 92.222.71.125 port 43850 |
2019-08-04 04:49:10 |
| 209.235.67.49 | attack | Aug 3 18:07:19 dedicated sshd[7269]: Invalid user postgres from 209.235.67.49 port 37533 |
2019-08-04 05:06:02 |
| 206.189.145.251 | attackbotsspam | Aug 3 19:57:43 vps691689 sshd[7675]: Failed password for root from 206.189.145.251 port 60622 ssh2 Aug 3 20:02:50 vps691689 sshd[7753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.145.251 ... |
2019-08-04 05:20:57 |
| 196.182.18.34 | attack | 196.182.18.34 - - [03/Aug/2019:11:08:01 -0400] "GET /?page=/etc/passwd&action=view&manufacturerID=61&productID=9885&linkID=1673 HTTP/1.1" 200 16429 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-08-04 05:13:52 |