城市(city): Kumagaya
省份(region): Saitama
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 157.70.128.0 - 157.80.255.255
CIDR: 157.71.0.0/16, 157.70.128.0/17, 157.80.0.0/16, 157.72.0.0/13
NetName: APNIC-ERX-157-70-128-0
NetHandle: NET-157-70-128-0-1
Parent: NET157 (NET-157-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2004-04-07
Updated: 2024-01-30
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/157.70.128.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '157.73.0.0 - 157.73.255.255'
% Abuse contact for '157.73.0.0 - 157.73.255.255' is 'hostmaster@nic.ad.jp'
inetnum: 157.73.0.0 - 157.73.255.255
netname: JEIS-IPNET
country: JP
descr: JR East Information Systems Company
admin-c: ST69-AP
tech-c: ST69-AP
status: ASSIGNED PORTABLE
notify: odn-jpnic@odn.ad.jp
mnt-by: MAINT-JPNIC
mnt-irt: IRT-JPNIC-JP
last-modified: 2015-04-22T01:18:01Z
source: APNIC
irt: IRT-JPNIC-JP
address: Uchikanda OS Bldg 4F, 2-12-6 Uchi-Kanda
address: Chiyoda-ku, Tokyo 101-0047, japan
e-mail: hostmaster@nic.ad.jp
abuse-mailbox: hostmaster@nic.ad.jp
phone: +81-3-5297-2311
fax-no: +81-3-5297-2312
admin-c: JNIC1-AP
tech-c: JNIC1-AP
auth: # Filtered
remarks: hostmaster@nic.ad.jp was validated on 2024-11-27
mnt-by: MAINT-JPNIC
last-modified: 2025-09-04T01:00:00Z
source: APNIC
person: Shinji Tsubakino
address: 4-7-1 Hacchobori
Chuo-ku, Tokyo, 104-8508
country: JP
phone: +81-3-5540-8061
e-mail: shinji.tsubakino@japan-telecom.co.jp
nic-hdl: ST69-AP
remarks: ----------
remarks: imported from ARIN object:
remarks:
remarks: poc-handle: ST440-ARIN
remarks: is-role: N
remarks: last-name: Tsubakino
remarks: first-name: Shinji
remarks: street: 4-7-1 Hacchobori
Chuo-ku, Tokyo, 104-8508
remarks: country: JP
remarks: mailbox: shinji.tsubakino@japan-telecom.co.jp
remarks: bus-phone: +81-3-5540-8061
remarks: reg-date: 2000-12-04
remarks: changed: hostmaster@arin.poc 20030403
remarks: source: ARIN
remarks:
remarks: ----------
notify: shinji.tsubakino@japan-telecom.co.jp
mnt-by: MNT-ERX-JRESTJPINFSYSCOMP-NON-JP
last-modified: 2008-09-04T07:29:35Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.73.41.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3000
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;157.73.41.229. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026020400 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 04 16:52:57 CST 2026
;; MSG SIZE rcvd: 106Host 229.41.73.157.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 229.41.73.157.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 192.241.239.9 | attackbotsspam | " " |
2020-04-08 21:07:35 |
| 94.23.24.213 | attackbots | Port scanning @ 2020-04-08 14:08:21 |
2020-04-08 21:15:01 |
| 117.247.253.2 | attack | Apr 8 14:53:25 srv-ubuntu-dev3 sshd[3353]: Invalid user hadoop from 117.247.253.2 Apr 8 14:53:25 srv-ubuntu-dev3 sshd[3353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.253.2 Apr 8 14:53:25 srv-ubuntu-dev3 sshd[3353]: Invalid user hadoop from 117.247.253.2 Apr 8 14:53:26 srv-ubuntu-dev3 sshd[3353]: Failed password for invalid user hadoop from 117.247.253.2 port 56622 ssh2 Apr 8 14:58:18 srv-ubuntu-dev3 sshd[4075]: Invalid user user from 117.247.253.2 Apr 8 14:58:18 srv-ubuntu-dev3 sshd[4075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.253.2 Apr 8 14:58:18 srv-ubuntu-dev3 sshd[4075]: Invalid user user from 117.247.253.2 Apr 8 14:58:20 srv-ubuntu-dev3 sshd[4075]: Failed password for invalid user user from 117.247.253.2 port 38142 ssh2 Apr 8 15:03:09 srv-ubuntu-dev3 sshd[4917]: Invalid user cc from 117.247.253.2 ... |
2020-04-08 21:16:32 |
| 107.158.154.99 | attackbots | Trying ports that it shouldn't be. |
2020-04-08 21:44:11 |
| 89.22.186.216 | attackspam | (sshd) Failed SSH login from 89.22.186.216 (RU/Russia/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 8 14:42:59 ubnt-55d23 sshd[10369]: Invalid user oracle from 89.22.186.216 port 44472 Apr 8 14:43:01 ubnt-55d23 sshd[10369]: Failed password for invalid user oracle from 89.22.186.216 port 44472 ssh2 |
2020-04-08 21:32:15 |
| 178.62.118.53 | attackbots | Apr 8 17:53:51 gw1 sshd[25849]: Failed password for root from 178.62.118.53 port 35104 ssh2 ... |
2020-04-08 21:16:51 |
| 107.180.92.3 | attackbotsspam | Apr 8 15:18:09 haigwepa sshd[32070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.180.92.3 Apr 8 15:18:11 haigwepa sshd[32070]: Failed password for invalid user master from 107.180.92.3 port 33469 ssh2 ... |
2020-04-08 21:52:35 |
| 36.112.134.215 | attack | Apr 8 14:52:13 Ubuntu-1404-trusty-64-minimal sshd\[23263\]: Invalid user user from 36.112.134.215 Apr 8 14:52:13 Ubuntu-1404-trusty-64-minimal sshd\[23263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.112.134.215 Apr 8 14:52:15 Ubuntu-1404-trusty-64-minimal sshd\[23263\]: Failed password for invalid user user from 36.112.134.215 port 45592 ssh2 Apr 8 14:57:00 Ubuntu-1404-trusty-64-minimal sshd\[26905\]: Invalid user ubuntu from 36.112.134.215 Apr 8 14:57:00 Ubuntu-1404-trusty-64-minimal sshd\[26905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.112.134.215 |
2020-04-08 21:42:36 |
| 172.94.24.173 | attackbots | $f2bV_matches |
2020-04-08 21:34:32 |
| 37.49.226.140 | attackbots | DATE:2020-04-08 14:43:29, IP:37.49.226.140, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-04-08 21:09:44 |
| 46.229.168.139 | attackspambots | Malicious Traffic/Form Submission |
2020-04-08 21:53:22 |
| 49.49.242.109 | attackspam | 1586349776 - 04/08/2020 14:42:56 Host: 49.49.242.109/49.49.242.109 Port: 445 TCP Blocked |
2020-04-08 21:41:06 |
| 222.186.175.169 | attackspambots | Fail2Ban - SSH Bruteforce Attempt |
2020-04-08 21:49:36 |
| 45.133.99.7 | attack | Email spam @ 2020-04-08 14:05:22 |
2020-04-08 21:08:37 |
| 165.22.210.121 | attackbots | 165.22.210.121 - - [08/Apr/2020:14:42:53 +0200] "GET /wp-login.php HTTP/1.1" 200 6463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.210.121 - - [08/Apr/2020:14:43:00 +0200] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.210.121 - - [08/Apr/2020:14:43:07 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-04-08 21:29:50 |