City: Sydney
Region: New South Wales
Country: Australia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 159.196.0.0 - 159.196.255.255
CIDR: 159.196.0.0/16
NetName: APNIC-ERX-159-196-0-0
NetHandle: NET-159-196-0-0-1
Parent: NET159 (NET-159-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2003-10-29
Updated: 2009-10-08
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/159.196.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '159.196.173.0 - 159.196.173.255'
% Abuse contact for '159.196.173.0 - 159.196.173.255' is 'abuse@aussiebroadband.com.au'
inetnum: 159.196.173.0 - 159.196.173.255
netname: AussieBroadband
descr: Aussie Broadband Ltd
country: AU
admin-c: AN3112-AP
tech-c: AN3112-AP
abuse-c: AW951-AP
remarks: Please send all spam and abuse reports to abuse@wideband.net.au
mnt-by: MAINT-AU-WIDEBAND1
mnt-irt: IRT-WIDEBAND-AU
status: ALLOCATED NON-PORTABLE
last-modified: 2025-02-07T02:28:05Z
source: APNIC
irt: IRT-WIDEBAND-AU
address: 3 Electra Ave
address: Morwell. VIC. 3840
e-mail: noc@aussiebb.com.au
abuse-mailbox: abuse@aussiebroadband.com.au
admin-c: AN3112-AP
tech-c: AN3112-AP
auth: # Filtered
remarks: noc@aussiebb.com.au was validated on 2025-10-09
remarks: abuse@aussiebroadband.com.au was validated on 2026-02-26
mnt-by: MAINT-AU-WIDEBAND1
last-modified: 2026-02-26T02:22:29Z
source: APNIC
role: ABUSE WIDEBANDAU
country: ZZ
address: 3 Electra Ave
address: Morwell. VIC. 3840
phone: +000000000
e-mail: noc@aussiebb.com.au
admin-c: AN3112-AP
tech-c: AN3112-AP
nic-hdl: AW951-AP
remarks: Generated from irt object IRT-WIDEBAND-AU
remarks: noc@aussiebb.com.au was validated on 2025-10-09
remarks: abuse@aussiebroadband.com.au was validated on 2026-02-26
abuse-mailbox: abuse@aussiebroadband.com.au
mnt-by: APNIC-ABUSE
last-modified: 2026-02-26T02:22:58Z
source: APNIC
person: AussieBB NOC
address: 3 Electra Ave
country: AU
phone: +61-3-51650000
e-mail: noc@aussiebb.com.au
nic-hdl: AN3112-AP
mnt-by: MAINT-AU-WIDEBAND1
last-modified: 2022-12-20T02:34:42Z
source: APNIC
% Information related to '159.196.172.0/23AS4764'
route: 159.196.172.0/23
origin: AS4764
descr: Wideband Networks Pty Ltd
3 Electra Ave
mnt-by: MAINT-AU-WIDEBAND1
last-modified: 2021-02-01T18:44:57Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.196.173.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;159.196.173.100. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041100 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 11 23:21:33 CST 2026
;; MSG SIZE rcvd: 108b'Host 100.173.196.159.in-addr.arpa. not found: 3(NXDOMAIN)
'Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 100.173.196.159.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.68.237.12 | attackbotsspam | $f2bV_matches |
2020-07-19 12:27:03 |
| 184.105.247.219 | attack | Tried our host z. |
2020-07-19 12:21:47 |
| 131.255.237.118 | attackbots | $f2bV_matches |
2020-07-19 12:31:24 |
| 142.93.127.195 | attackbots | $f2bV_matches |
2020-07-19 12:34:21 |
| 35.226.146.177 | attack | Icarus honeypot on github |
2020-07-19 12:27:42 |
| 176.149.136.104 | attackbotsspam | Jul 19 06:31:46 fhem-rasp sshd[19386]: Invalid user deploy from 176.149.136.104 port 54328 ... |
2020-07-19 12:52:20 |
| 142.93.49.104 | attackspam | Automatic report - XMLRPC Attack |
2020-07-19 12:45:38 |
| 188.166.109.87 | attackspam | 2020-07-19T04:12:34.852952shield sshd\[26915\]: Invalid user amd from 188.166.109.87 port 48596 2020-07-19T04:12:34.863037shield sshd\[26915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.109.87 2020-07-19T04:12:36.593301shield sshd\[26915\]: Failed password for invalid user amd from 188.166.109.87 port 48596 ssh2 2020-07-19T04:17:02.924718shield sshd\[27920\]: Invalid user satheesh from 188.166.109.87 port 37692 2020-07-19T04:17:02.933608shield sshd\[27920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.109.87 |
2020-07-19 12:24:15 |
| 2.50.170.230 | attack | " " |
2020-07-19 12:23:50 |
| 46.166.151.73 | attack | [2020-07-19 00:41:52] NOTICE[1277][C-00000d35] chan_sip.c: Call from '' (46.166.151.73:51507) to extension '011442037695397' rejected because extension not found in context 'public'. [2020-07-19 00:41:52] SECURITY[1295] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-19T00:41:52.432-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037695397",SessionID="0x7f1754188e58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.73/51507",ACLName="no_extension_match" [2020-07-19 00:42:38] NOTICE[1277][C-00000d38] chan_sip.c: Call from '' (46.166.151.73:59688) to extension '9011442037697512' rejected because extension not found in context 'public'. [2020-07-19 00:42:38] SECURITY[1295] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-19T00:42:38.722-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037697512",SessionID="0x7f1754188e58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ... |
2020-07-19 12:45:58 |
| 104.236.124.45 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2020-07-19 12:26:02 |
| 212.64.66.135 | attackbotsspam | Jul 19 06:42:56 eventyay sshd[23613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.66.135 Jul 19 06:42:59 eventyay sshd[23613]: Failed password for invalid user tsserver from 212.64.66.135 port 58528 ssh2 Jul 19 06:48:34 eventyay sshd[23943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.66.135 ... |
2020-07-19 12:48:49 |
| 18.185.127.149 | attackbots | Jul 19 01:36:48 ws22vmsma01 sshd[112362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.185.127.149 Jul 19 01:36:50 ws22vmsma01 sshd[112362]: Failed password for invalid user ftpuser from 18.185.127.149 port 45565 ssh2 ... |
2020-07-19 12:54:40 |
| 137.74.164.58 | attack | Jul 19 09:19:32 gw1 sshd[24914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.164.58 Jul 19 09:19:34 gw1 sshd[24914]: Failed password for invalid user web123 from 137.74.164.58 port 44356 ssh2 ... |
2020-07-19 12:19:39 |
| 18.222.102.182 | attack | xmlrpc attack |
2020-07-19 12:42:18 |