City: unknown
Region: unknown
Country: South Korea
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 158.44.0.0 - 158.45.255.255
CIDR: 158.44.0.0/15
NetName: APNIC-ERX-158-44-0-0
NetHandle: NET-158-44-0-0-1
Parent: NET158 (NET-158-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2003-10-15
Updated: 2009-10-08
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/158.44.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '158.44.0.0 - 158.44.255.255'
% Abuse contact for '158.44.0.0 - 158.44.255.255' is 'irt@nic.or.kr'
inetnum: 158.44.0.0 - 158.44.255.255
netname: TG-NETWORK
descr: Trigem Computer, Inc.
admin-c: IM766-AP
tech-c: IM766-AP
country: KR
status: ALLOCATED PORTABLE
mnt-by: MNT-KRNIC-AP
mnt-irt: IRT-KRNIC-KR
last-modified: 2017-01-24T04:42:09Z
source: APNIC
irt: IRT-KRNIC-KR
address: 9, Jinheung-gil, Naju-si, Jeollanam-do
e-mail: irt@nic.or.kr
abuse-mailbox: irt@nic.or.kr
admin-c: IM574-AP
tech-c: IM574-AP
auth: # Filtered
remarks: irt@nic.or.kr was validated on 2020-04-09
mnt-by: MNT-KRNIC-AP
last-modified: 2025-09-04T01:00:01Z
source: APNIC
person: IP Manager
address: Gyeonggi-do Danwon-gu, Ansan-si Neungan-ro
country: KR
phone: +82-31-489-3138
e-mail: it-tax@trigem.co.kr
nic-hdl: IM766-AP
mnt-by: MNT-KRNIC-AP
last-modified: 2022-11-15T06:46:02Z
source: APNIC
% Information related to '158.44.0.0 - 158.44.255.255'
inetnum: 158.44.0.0 - 158.44.255.255
netname: TG-NETWORK-KR
descr: Trigem Computer, Inc.
country: KR
admin-c: DJ161-KR
tech-c: JP161-KR
status: ALLOCATED PORTABLE
mnt-by: MNT-KRNIC-AP
mnt-irt: IRT-KRNIC-KR
changed: hostmaster@nic.or.kr 20240912
remarks: This information has been partially mirrored by APNIC from
remarks: KRNIC. To obtain more specific information, please use the
remarks: KRNIC whois server at whois.kisa.or.kr.
source: KRNIC
person: IP Manager
address: Gyeonggi-do Danwon-gu, Ansan-si Neungan-ro
address: 98-12
country: KR
phone: +82-31-489-3138
e-mail: it-tax@trigem.co.kr
nic-hdl: DJ161-KR
mnt-by: MNT-KRNIC-AP
changed: hostmaster@nic.or.kr 20240912
remarks: This information has been partially mirrored by APNIC from
remarks: KRNIC. To obtain more specific information, please use the
remarks: KRNIC whois server at whois.kisa.or.kr.
source: KRNIC
person: IP Manager
address: Gyeonggi-do Danwon-gu, Ansan-si Neungan-ro
address: 98-12
country: KR
phone: +82-31-489-3138
e-mail: it-tax@trigem.co.kr
nic-hdl: JP161-KR
mnt-by: MNT-KRNIC-AP
changed: hostmaster@nic.or.kr 20240912
remarks: This information has been partially mirrored by APNIC from
remarks: KRNIC. To obtain more specific information, please use the
remarks: KRNIC whois server at whois.kisa.or.kr.
source: KRNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.44.128.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22076
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;158.44.128.120. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025102401 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 25 06:00:33 CST 2025
;; MSG SIZE rcvd: 107Host 120.128.44.158.in-addr.arpa not found: 2(SERVFAIL)
server can't find 158.44.128.120.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 191.235.105.193 | attack | Jul 19 12:57:37 rancher-0 sshd[456157]: Invalid user qiu from 191.235.105.193 port 37734 Jul 19 12:57:39 rancher-0 sshd[456157]: Failed password for invalid user qiu from 191.235.105.193 port 37734 ssh2 ... |
2020-07-19 20:38:57 |
| 2604:2000:1107:c9f1:c4b8:bb5e:1a5c:f36e | attack | C1,WP GET /wp-login.php |
2020-07-19 20:17:38 |
| 195.54.160.228 | attack |
|
2020-07-19 20:48:22 |
| 165.22.94.219 | attack | Automatic report - Brute Force attack using this IP address |
2020-07-19 20:44:32 |
| 138.68.226.234 | attackbotsspam | Jul 19 13:31:52 h1745522 sshd[5139]: Invalid user firefart from 138.68.226.234 port 35490 Jul 19 13:31:52 h1745522 sshd[5139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.234 Jul 19 13:31:52 h1745522 sshd[5139]: Invalid user firefart from 138.68.226.234 port 35490 Jul 19 13:31:54 h1745522 sshd[5139]: Failed password for invalid user firefart from 138.68.226.234 port 35490 ssh2 Jul 19 13:36:06 h1745522 sshd[5328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.234 user=backup Jul 19 13:36:08 h1745522 sshd[5328]: Failed password for backup from 138.68.226.234 port 57370 ssh2 Jul 19 13:40:54 h1745522 sshd[5602]: Invalid user lam from 138.68.226.234 port 51018 Jul 19 13:40:54 h1745522 sshd[5602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.234 Jul 19 13:40:54 h1745522 sshd[5602]: Invalid user lam from 138.68.226.234 port 51018 Ju ... |
2020-07-19 20:45:44 |
| 123.24.47.127 | attackspam | 1595145022 - 07/19/2020 09:50:22 Host: 123.24.47.127/123.24.47.127 Port: 445 TCP Blocked |
2020-07-19 20:46:02 |
| 162.204.50.21 | attackbotsspam | Fail2Ban Ban Triggered (2) |
2020-07-19 20:41:18 |
| 157.245.155.13 | attackspambots | Jul 19 12:37:57 plex-server sshd[3773230]: Invalid user 123456 from 157.245.155.13 port 59320 Jul 19 12:37:57 plex-server sshd[3773230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 Jul 19 12:37:57 plex-server sshd[3773230]: Invalid user 123456 from 157.245.155.13 port 59320 Jul 19 12:37:59 plex-server sshd[3773230]: Failed password for invalid user 123456 from 157.245.155.13 port 59320 ssh2 Jul 19 12:41:31 plex-server sshd[3774383]: Invalid user ry from 157.245.155.13 port 52018 ... |
2020-07-19 20:44:49 |
| 165.22.126.84 | attackspambots | Unauthorized connection attempt detected from IP address 165.22.126.84 to port 8545 |
2020-07-19 20:45:16 |
| 75.119.216.13 | attackbots | 75.119.216.13 - - [19/Jul/2020:13:04:29 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 75.119.216.13 - - [19/Jul/2020:13:04:31 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 75.119.216.13 - - [19/Jul/2020:13:04:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-07-19 20:19:45 |
| 139.59.161.78 | attackspam | Automatic Fail2ban report - Trying login SSH |
2020-07-19 20:22:30 |
| 49.88.112.70 | attack | 2020-07-19T12:13:35.515897shield sshd\[13879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root 2020-07-19T12:13:37.360102shield sshd\[13879\]: Failed password for root from 49.88.112.70 port 12954 ssh2 2020-07-19T12:13:40.396101shield sshd\[13879\]: Failed password for root from 49.88.112.70 port 12954 ssh2 2020-07-19T12:13:42.847463shield sshd\[13879\]: Failed password for root from 49.88.112.70 port 12954 ssh2 2020-07-19T12:19:54.885583shield sshd\[14501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root |
2020-07-19 20:27:50 |
| 211.254.215.197 | attackbotsspam | Jul 19 10:21:12 ns392434 sshd[23164]: Invalid user oracle from 211.254.215.197 port 48696 Jul 19 10:21:12 ns392434 sshd[23164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.254.215.197 Jul 19 10:21:12 ns392434 sshd[23164]: Invalid user oracle from 211.254.215.197 port 48696 Jul 19 10:21:14 ns392434 sshd[23164]: Failed password for invalid user oracle from 211.254.215.197 port 48696 ssh2 Jul 19 10:38:36 ns392434 sshd[23607]: Invalid user ubuntu from 211.254.215.197 port 33990 Jul 19 10:38:36 ns392434 sshd[23607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.254.215.197 Jul 19 10:38:36 ns392434 sshd[23607]: Invalid user ubuntu from 211.254.215.197 port 33990 Jul 19 10:38:37 ns392434 sshd[23607]: Failed password for invalid user ubuntu from 211.254.215.197 port 33990 ssh2 Jul 19 10:42:59 ns392434 sshd[23813]: Invalid user testuser1 from 211.254.215.197 port 37466 |
2020-07-19 20:35:13 |
| 14.221.97.52 | attackbotsspam | Jul 19 13:58:26 [host] sshd[24173]: Invalid user x Jul 19 13:58:26 [host] sshd[24173]: pam_unix(sshd: Jul 19 13:58:28 [host] sshd[24173]: Failed passwor |
2020-07-19 20:24:07 |
| 198.154.99.175 | attack | Jul 19 14:06:35 amit sshd\[19745\]: Invalid user user from 198.154.99.175 Jul 19 14:06:35 amit sshd\[19745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.154.99.175 Jul 19 14:06:38 amit sshd\[19745\]: Failed password for invalid user user from 198.154.99.175 port 35776 ssh2 ... |
2020-07-19 20:09:41 |