City: Chiyoda-Ku
Region: Tokyo
Country: Japan
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 168.78.0.0 - 168.79.255.255
CIDR: 168.78.0.0/15
NetName: APNIC-ERX-168-78-0-0
NetHandle: NET-168-78-0-0-1
Parent: NET168 (NET-168-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2003-08-20
Updated: 2009-10-08
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/168.78.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '168.0.0.0 - 168.255.255.255'
% Abuse contact for '168.0.0.0 - 168.255.255.255' is 'helpdesk@apnic.net'
inetnum: 168.0.0.0 - 168.255.255.255
netname: ERX-NETBLOCK
descr: Early registration addresses
remarks: ------------------------------------------------------
remarks: Important:
remarks:
remarks: Networks in this range were allocated by InterNIC
remarks: prior to the formation of Regional Internet
remarks: Registries (RIRs): AfriNIC, APNIC, ARIN, LACNIC and RIPE NCC.
remarks:
remarks: Address ranges from this historical space have now
remarks: been transferred to the appropriate RIR database.remarks:
remarks: If your search has returned this record, it means the
remarks: address range is not administered by APNIC.
remarks:
remarks: Instead, please search one of the following databases:
remarks:
remarks: - AfriNIC (Africa)
remarks: website: http://www.afrinic.net/
remarks: command line: whois.afrinic.net
remarks:
remarks: - ARIN (Northern America)
remarks: website: http://www.arin.net/
remarks: command line: whois.arin.net
remarks:
remarks: - LACNIC (Latin America and the Carribean)
remarks: website: http://www.lacnic.net/
remarks: command line: whois.lacnic.net
remarks:
remarks: - RIPE NCC (Europe)
remarks: website: http://www.ripe.net/
remarks: command line: whois.ripe.net
remarks:
remarks: For information on the Early Registration Transfer
remarks: (ERX) project, see:
remarks:
remarks: http://www.apnic.net/db/erx
remarks:
remarks: ------------------------------------------------------
country: AU
admin-c: IANA1-AP
tech-c: IANA1-AP
mnt-by: APNIC-HM
mnt-lower: APNIC-HM
status: ALLOCATED PORTABLE
last-modified: 2015-08-28T00:31:43Z
source: APNIC
mnt-irt: IRT-APNIC-AP
irt: IRT-APNIC-AP
address: Brisbane, Australia
e-mail: helpdesk@apnic.net
abuse-mailbox: helpdesk@apnic.net
admin-c: HM20-AP
tech-c: NO4-AP
remarks: APNIC is a Regional Internet Registry.
remarks: We do not operate the referring network and
remarks: are unable to investigate complaints of network abuse.
remarks: For information about IRT, see www.apnic.net/irt
remarks: helpdesk@apnic.net was validated on 2020-02-03
auth: # Filtered
mnt-by: APNIC-HM
last-modified: 2025-11-18T00:26:21Z
source: APNIC
role: Internet Assigned Numbers Authority
address: see http://www.iana.org.
admin-c: IANA1-AP
tech-c: IANA1-AP
nic-hdl: IANA1-AP
remarks: For more information on IANA services
remarks: go to IANA web site at http://www.iana.org.
mnt-by: MAINT-APNIC-AP
last-modified: 2018-06-22T22:34:30Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.79.5.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46995
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;168.79.5.152. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032300 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 20:04:05 CST 2026
;; MSG SIZE rcvd: 105Host 152.5.79.168.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 152.5.79.168.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 172.241.131.139 | spam | Absender: Beautiful wоmеn fоr sex in yоur tоwn UК: https://1borsa.com/adultdating20789 E-Mail: svt93@msn.com ------------------------------------------------------ The best girls for seх in your tоwn Саnadа: https://bogazicitente.com/bestadultdating593339 ------------------------------------------------------ Nur für den internen Gebrauch: Absender: Beautiful wоmеn fоr sex in yоur tоwn UК: https://1borsa.com/adultdating20789 E-Mail: svt93@msn.com Kontoname: Nicht angemeldet E-Mail Adresse: Nicht angemeldet IP Adresse: 172.241.131.139 - 172.241.131.139 Hostname: 172.241.131.139 Datum und Uhrzeit: Mon Dec 23 2019 8:18:00 CET |
2019-12-24 00:35:29 |
| 124.156.54.50 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 00:50:00 |
| 82.56.167.98 | attack | 5 attempts against mh-modsecurity-ban on air.magehost.pro |
2019-12-24 00:41:24 |
| 222.186.175.150 | attackbots | Dec 23 21:59:13 areeb-Workstation sshd[12721]: Failed password for root from 222.186.175.150 port 29314 ssh2 Dec 23 21:59:18 areeb-Workstation sshd[12721]: Failed password for root from 222.186.175.150 port 29314 ssh2 ... |
2019-12-24 00:48:16 |
| 167.99.217.194 | attackspambots | 2019-12-23T14:49:04.508042abusebot-7.cloudsearch.cf sshd[9666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.217.194 user=nobody 2019-12-23T14:49:05.751631abusebot-7.cloudsearch.cf sshd[9666]: Failed password for nobody from 167.99.217.194 port 34408 ssh2 2019-12-23T14:53:56.654002abusebot-7.cloudsearch.cf sshd[9715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.217.194 user=root 2019-12-23T14:53:58.650288abusebot-7.cloudsearch.cf sshd[9715]: Failed password for root from 167.99.217.194 port 37656 ssh2 2019-12-23T14:58:40.413779abusebot-7.cloudsearch.cf sshd[9724]: Invalid user hung from 167.99.217.194 port 40944 2019-12-23T14:58:40.418806abusebot-7.cloudsearch.cf sshd[9724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.217.194 2019-12-23T14:58:40.413779abusebot-7.cloudsearch.cf sshd[9724]: Invalid user hung from 167.99.217.194 port 409 ... |
2019-12-24 00:41:03 |
| 178.62.239.205 | attackbotsspam | Dec 23 20:46:55 gw1 sshd[28594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.239.205 Dec 23 20:46:57 gw1 sshd[28594]: Failed password for invalid user 0racl38 from 178.62.239.205 port 51714 ssh2 ... |
2019-12-24 00:55:48 |
| 81.241.235.191 | attackspam | Dec 23 16:31:57 localhost sshd\[73996\]: Invalid user marsandm from 81.241.235.191 port 59160 Dec 23 16:31:57 localhost sshd\[73996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.241.235.191 Dec 23 16:31:59 localhost sshd\[73996\]: Failed password for invalid user marsandm from 81.241.235.191 port 59160 ssh2 Dec 23 16:38:04 localhost sshd\[74089\]: Invalid user ftpuser from 81.241.235.191 port 35508 Dec 23 16:38:04 localhost sshd\[74089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.241.235.191 ... |
2019-12-24 00:49:14 |
| 200.75.4.195 | attack | Unauthorized connection attempt detected from IP address 200.75.4.195 to port 445 |
2019-12-24 00:35:28 |
| 46.33.225.84 | attackspam | Dec 23 16:58:32 MK-Soft-VM6 sshd[14052]: Failed password for root from 46.33.225.84 port 40374 ssh2 ... |
2019-12-24 01:01:21 |
| 107.170.235.19 | attackbotsspam | Dec 23 16:41:36 vpn01 sshd[18606]: Failed password for root from 107.170.235.19 port 52646 ssh2 ... |
2019-12-24 00:47:21 |
| 218.92.0.145 | attack | --- report --- Dec 23 13:14:47 sshd: Connection from 218.92.0.145 port 59900 |
2019-12-24 00:27:29 |
| 38.240.3.21 | attackspam | 2019-12-23T15:58:02.768122shield sshd\[8963\]: Invalid user apache from 38.240.3.21 port 51006 2019-12-23T15:58:02.773501shield sshd\[8963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.240.3.21 2019-12-23T15:58:05.090591shield sshd\[8963\]: Failed password for invalid user apache from 38.240.3.21 port 51006 ssh2 2019-12-23T16:03:23.997953shield sshd\[10376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.240.3.21 user=root 2019-12-23T16:03:26.049189shield sshd\[10376\]: Failed password for root from 38.240.3.21 port 55150 ssh2 |
2019-12-24 00:26:59 |
| 129.213.172.170 | attack | Jul 19 20:41:24 yesfletchmain sshd\[24968\]: Invalid user training from 129.213.172.170 port 28025 Jul 19 20:41:24 yesfletchmain sshd\[24968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.172.170 Jul 19 20:41:26 yesfletchmain sshd\[24968\]: Failed password for invalid user training from 129.213.172.170 port 28025 ssh2 Jul 19 20:50:31 yesfletchmain sshd\[25325\]: Invalid user william from 129.213.172.170 port 59951 Jul 19 20:50:31 yesfletchmain sshd\[25325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.172.170 ... |
2019-12-24 00:56:17 |
| 133.130.89.210 | attackspambots | Dec 23 17:00:20 DAAP sshd[21808]: Invalid user vcsa from 133.130.89.210 port 42124 Dec 23 17:00:20 DAAP sshd[21808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.89.210 Dec 23 17:00:20 DAAP sshd[21808]: Invalid user vcsa from 133.130.89.210 port 42124 Dec 23 17:00:21 DAAP sshd[21808]: Failed password for invalid user vcsa from 133.130.89.210 port 42124 ssh2 ... |
2019-12-24 00:57:38 |
| 42.118.105.160 | attackspambots | Dec 23 15:58:31 debian-2gb-nbg1-2 kernel: \[765856.937258\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=42.118.105.160 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=23427 PROTO=TCP SPT=51480 DPT=23 WINDOW=65320 RES=0x00 SYN URGP=0 |
2019-12-24 00:51:36 |