Hi,
The IP 188.92.220.200 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 188.92.220.200:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '188.92.216.0 - 188.92.223.255'
% Abuse contact for '188.92.216.0 - 188.92.223.255' is 'kir@arbuz.ru'
inetnum: 188.92.216.0 - 188.92.223.255
netname: RU-ARBUZ-20090504
descr: ARBUZ Co.Ltd
country: RU
org: ORG-AC22-RIPE
admin-c: KGE-RIPE
tech-c: KGE-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: KGE-MNT
mnt-routes: KGE-MNT
source: RIPE # Filtered
organisation: ORG-AC22-RIPE
org-name: ARBUZ Co.Ltd
org-type: LIR
address: ARBUZ Co.Ltd
address: Kirill Ettenko
address: 19 Transportnaya str.
address: 685000
address: Magadan
address: RUSSIAN FEDERATION
phone: +74132622138
fax-no: +74132631023
admin-c: KGE-RIPE
mnt-ref: KGE-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: KGE10-RIPE
abuse-mailbox: kir@arbuz.ru
source: RIPE # Filtered
person: Kirill Ettenko
address: ARBUZ Co.Ltd
address: 19 Transportnaya str.
address: 685000
address: Magadan
address: Russian Federation
phone: +74132622138
fax-no: +74132631023
mnt-by: KGE-MNT
nic-hdl: KGE-RIPE
source: RIPE # Filtered
% Information related to '188.92.216.0/21AS15454'
route: 188.92.216.0/21
descr: ARBUZ LIR route
descr: ARBUZ Co. Ltd.
descr: 16 Pushkina str., #116-A
descr: 685000
descr: Magadan
descr: Russian Federation
descr: +74132622138
descr: +74132631023
descr: +74132628663
origin: AS15454
mnt-by: KGE-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
Wednesday 4 December 2013
[Fail2Ban] SSH: banned 203.183.25.74
Hi,
The IP 203.183.25.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 203.183.25.74:
[Querying whois.nic.ad.jp]
[whois.nic.ad.jp]
[ JPNIC database provides information regarding IP address and ASN. Its use ]
[ is restricted to network administration purposes. For further information, ]
[ use 'whois -h whois.nic.ad.jp help'. To only display English output, ]
[ add '/e' at the end of command, e.g. 'whois -h whois.nic.ad.jp xxx/e'. ]
Network Information:
a. [Network Number] 203.183.25.0/25
b. [Network Name] AT-LINKNET
g. [Organization] LINK, Inc.
m. [Administrative Contact] GO004JP
n. [Technical Contact] YI1082JP
p. [Nameserver]
[Assigned Date] 2008/10/22
[Return Date]
[Last Update] 2012/12/05 08:36:32(JST)
Less Specific Info.
----------
Yahoo Japan Corporation
[Allocation] 203.183.0.0-203.183.152.255
Yahoo Japan Corporation
SUBA-032-25 [Sub Allocation] 203.183.25.0/24
More Specific Info.
----------
No match!!
Regards,
Fail2Ban
The IP 203.183.25.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 203.183.25.74:
[Querying whois.nic.ad.jp]
[whois.nic.ad.jp]
[ JPNIC database provides information regarding IP address and ASN. Its use ]
[ is restricted to network administration purposes. For further information, ]
[ use 'whois -h whois.nic.ad.jp help'. To only display English output, ]
[ add '/e' at the end of command, e.g. 'whois -h whois.nic.ad.jp xxx/e'. ]
Network Information:
a. [Network Number] 203.183.25.0/25
b. [Network Name] AT-LINKNET
g. [Organization] LINK, Inc.
m. [Administrative Contact] GO004JP
n. [Technical Contact] YI1082JP
p. [Nameserver]
[Assigned Date] 2008/10/22
[Return Date]
[Last Update] 2012/12/05 08:36:32(JST)
Less Specific Info.
----------
Yahoo Japan Corporation
[Allocation] 203.183.0.0-203.183.152.255
Yahoo Japan Corporation
SUBA-032-25 [Sub Allocation] 203.183.25.0/24
More Specific Info.
----------
No match!!
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 202.154.31.70
Hi,
The IP 202.154.31.70 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.154.31.70:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.154.31.0 - 202.154.31.127'
inetnum: 202.154.31.0 - 202.154.31.127
netname: RADNET-NOC4-TELEHOUSING
country: ID
descr: NOC4 Telehousing
admin-c: RH243-AP
tech-c: RH243-AP
status: ASSIGNED NON-PORTABLE
changed: hostmaster@rad.net.id 20050124
mnt-by: MAINT-RAD-NET-AP
source: APNIC
person: Radnet Hostmaster
nic-hdl: RH243-AP
e-mail: hostmaster@rad.net.id
address: PT Rahajasa Media Internet - RADNET
address: Jl. Kemang Selatan I/16 Jakarta Selatan, Indonesia 12730
phone: +62-21-7182641
fax-no: +62-21-7182642
country: ID
changed: hostmaster@rad.net.id 20050120
mnt-by: MAINT-RAD-NET-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 202.154.31.70 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.154.31.70:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.154.31.0 - 202.154.31.127'
inetnum: 202.154.31.0 - 202.154.31.127
netname: RADNET-NOC4-TELEHOUSING
country: ID
descr: NOC4 Telehousing
admin-c: RH243-AP
tech-c: RH243-AP
status: ASSIGNED NON-PORTABLE
changed: hostmaster@rad.net.id 20050124
mnt-by: MAINT-RAD-NET-AP
source: APNIC
person: Radnet Hostmaster
nic-hdl: RH243-AP
e-mail: hostmaster@rad.net.id
address: PT Rahajasa Media Internet - RADNET
address: Jl. Kemang Selatan I/16 Jakarta Selatan, Indonesia 12730
phone: +62-21-7182641
fax-no: +62-21-7182642
country: ID
changed: hostmaster@rad.net.id 20050120
mnt-by: MAINT-RAD-NET-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
Tuesday 3 December 2013
[Fail2Ban] SSH: banned 92.63.96.106
Hi,
The IP 92.63.96.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 92.63.96.106:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.63.96.0 - 92.63.103.255'
% Abuse contact for '92.63.96.0 - 92.63.103.255' is 'abuse@ispsystem.com'
inetnum: 92.63.96.0 - 92.63.103.255
netname: THEFIRST-NET
org: ORG-FVDS1-RIPE
descr: TheFirst-RU clients (WebDC Msk)
country: RU
admin-c: AB11726-RIPE
tech-c: ST6386-RIPE
status: ASSIGNED PA
mnt-by: ISPSYSTEM-MNT
mnt-by: THEFIRST-MNT
mnt-irt: IRT-THEFIRST
source: RIPE # Filtered
organisation: ORG-FVDS1-RIPE
org-name: CJSC THE FIRST
org-type: OTHER
address: CJSC The First, Raduzhny 34a
address: PoBox64, Irkutsk, 664017
address: Russian Federation
abuse-mailbox: abuse@firstvds.ru
mnt-ref: THEFIRST-MNT
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Alexandr Brukhanov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: AB11726-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Stas Titov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: ST6386-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
% Information related to '92.63.96.0/21AS29182'
route: 92.63.96.0/21
descr: TheFirst-RU
origin: AS29182
mnt-by: THEFIRST-MNT
remarks: **************************************
remarks: * For spamming or other abuse issues *
remarks: * please send your requests to *
remarks: * abuse@firstvds.ru *
remarks: **************************************
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
The IP 92.63.96.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 92.63.96.106:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.63.96.0 - 92.63.103.255'
% Abuse contact for '92.63.96.0 - 92.63.103.255' is 'abuse@ispsystem.com'
inetnum: 92.63.96.0 - 92.63.103.255
netname: THEFIRST-NET
org: ORG-FVDS1-RIPE
descr: TheFirst-RU clients (WebDC Msk)
country: RU
admin-c: AB11726-RIPE
tech-c: ST6386-RIPE
status: ASSIGNED PA
mnt-by: ISPSYSTEM-MNT
mnt-by: THEFIRST-MNT
mnt-irt: IRT-THEFIRST
source: RIPE # Filtered
organisation: ORG-FVDS1-RIPE
org-name: CJSC THE FIRST
org-type: OTHER
address: CJSC The First, Raduzhny 34a
address: PoBox64, Irkutsk, 664017
address: Russian Federation
abuse-mailbox: abuse@firstvds.ru
mnt-ref: THEFIRST-MNT
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Alexandr Brukhanov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: AB11726-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Stas Titov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: ST6386-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
% Information related to '92.63.96.0/21AS29182'
route: 92.63.96.0/21
descr: TheFirst-RU
origin: AS29182
mnt-by: THEFIRST-MNT
remarks: **************************************
remarks: * For spamming or other abuse issues *
remarks: * please send your requests to *
remarks: * abuse@firstvds.ru *
remarks: **************************************
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 218.89.168.144
Hi,
The IP 218.89.168.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.89.168.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.88.0.0 - 218.89.255.255'
inetnum: 218.88.0.0 - 218.89.255.255
netname: CHINANET-SC
descr: CHINANET sichuan province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XS16-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SC
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20020408
changed: hm-changed@apnic.net 20040927
changed: hm-changed@apnic.net 20041126
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xiaodong Shi
nic-hdl: XS16-AP
e-mail: ipadmin@my-public.sc.cninfo.net
address: No.72,Wen Miao Qian Str.
address: Data Communication Bureau Of Sichuan Province
address: Chengdu
address: PR China
phone: +86-28-6190785
fax-no: +86-28-6190641
country: CN
changed: ipadmin@my-public.sc.cninfo.net 20030317
mnt-by: MAINT-CHINANET-SC
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 218.89.168.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.89.168.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.88.0.0 - 218.89.255.255'
inetnum: 218.88.0.0 - 218.89.255.255
netname: CHINANET-SC
descr: CHINANET sichuan province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XS16-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SC
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20020408
changed: hm-changed@apnic.net 20040927
changed: hm-changed@apnic.net 20041126
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xiaodong Shi
nic-hdl: XS16-AP
e-mail: ipadmin@my-public.sc.cninfo.net
address: No.72,Wen Miao Qian Str.
address: Data Communication Bureau Of Sichuan Province
address: Chengdu
address: PR China
phone: +86-28-6190785
fax-no: +86-28-6190641
country: CN
changed: ipadmin@my-public.sc.cninfo.net 20030317
mnt-by: MAINT-CHINANET-SC
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 95.39.18.178
Hi,
The IP 95.39.18.178 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 95.39.18.178:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '95.39.0.0 - 95.39.255.255'
% Abuse contact for '95.39.0.0 - 95.39.255.255' is 'abuse@ono.com'
inetnum: 95.39.0.0 - 95.39.255.255
netname: ES-ONO-20081215
descr: Cableuropa S.A.U.
org: ORG-OA4-RIPE
country: ES
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ONO-MNT
mnt-lower: MNT-PROV-AUNA
mnt-routes: ONO-MNT
mnt-domains: ONO-MNT
source: RIPE # Filtered
organisation: ORG-OA4-RIPE
org-name: Cableuropa S.A.U.
org-type: LIR
address: CABLEUROPA S.A.
address: bruno forterre
address: C/ Avila 35-42
address: 08005
address: Barcelona
address: SPAIN
phone: +34 911809300
fax-no: +34 935020509
admin-c: OIM1-RIPE
admin-c: DHC4-RIPE
admin-c: BF1361-RIPE
mnt-ref: ONO-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: OA1773-RIPE
source: RIPE # Filtered
role: ONO IP MANAGER
address: C/ Basauri, 5
address: Urbanizacion La Florida
address: E-28023 Aravaca, Madrid
address: SPAIN
phone: +34911809300
fax-no: +34911809245
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
nic-hdl: OIM1-RIPE
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS16338'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS16338
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS6739'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS6739
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
The IP 95.39.18.178 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 95.39.18.178:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '95.39.0.0 - 95.39.255.255'
% Abuse contact for '95.39.0.0 - 95.39.255.255' is 'abuse@ono.com'
inetnum: 95.39.0.0 - 95.39.255.255
netname: ES-ONO-20081215
descr: Cableuropa S.A.U.
org: ORG-OA4-RIPE
country: ES
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ONO-MNT
mnt-lower: MNT-PROV-AUNA
mnt-routes: ONO-MNT
mnt-domains: ONO-MNT
source: RIPE # Filtered
organisation: ORG-OA4-RIPE
org-name: Cableuropa S.A.U.
org-type: LIR
address: CABLEUROPA S.A.
address: bruno forterre
address: C/ Avila 35-42
address: 08005
address: Barcelona
address: SPAIN
phone: +34 911809300
fax-no: +34 935020509
admin-c: OIM1-RIPE
admin-c: DHC4-RIPE
admin-c: BF1361-RIPE
mnt-ref: ONO-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: OA1773-RIPE
source: RIPE # Filtered
role: ONO IP MANAGER
address: C/ Basauri, 5
address: Urbanizacion La Florida
address: E-28023 Aravaca, Madrid
address: SPAIN
phone: +34911809300
fax-no: +34911809245
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
nic-hdl: OIM1-RIPE
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS16338'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS16338
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS6739'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS6739
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 198.52.100.67
Hi,
The IP 198.52.100.67 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.52.100.67:
[Querying whois.arin.net]
[Redirected to rwhois.multacom.com:4321]
[Querying rwhois.multacom.com]
[Unable to connect to remote host]
Regards,
Fail2Ban
The IP 198.52.100.67 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.52.100.67:
[Querying whois.arin.net]
[Redirected to rwhois.multacom.com:4321]
[Querying rwhois.multacom.com]
[Unable to connect to remote host]
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 216.81.149.3
Hi,
The IP 216.81.149.3 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 216.81.149.3:
[Querying whois.arin.net]
[Redirected to rwhois.lh.net:4321]
[Querying rwhois.lh.net]
[rwhois.lh.net]
%rwhois V-1.5 rwhois.lightedge.com (rwhoisd 0.4.1)
network:id:LIGHTEDGE-MICRO-253649
network:class-name:network
network:network-name:LIGHTEDGE-MICRO-253649
network:ip-network:216.81.149.0/28
network:auth-area:216.81.128.0/17
network:org-name:H-Card
network:street-address:
network:city:
network:state:IL
network:postal-code:
network:country-code:US
network:tech-contact:m.defreece@hcardllc.com
network:created:20120417
network:updated:20131203
network:updated-by:support@lightedge.com
%ok
Regards,
Fail2Ban
The IP 216.81.149.3 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 216.81.149.3:
[Querying whois.arin.net]
[Redirected to rwhois.lh.net:4321]
[Querying rwhois.lh.net]
[rwhois.lh.net]
%rwhois V-1.5 rwhois.lightedge.com (rwhoisd 0.4.1)
network:id:LIGHTEDGE-MICRO-253649
network:class-name:network
network:network-name:LIGHTEDGE-MICRO-253649
network:ip-network:216.81.149.0/28
network:auth-area:216.81.128.0/17
network:org-name:H-Card
network:street-address:
network:city:
network:state:IL
network:postal-code:
network:country-code:US
network:tech-contact:m.defreece@hcardllc.com
network:created:20120417
network:updated:20131203
network:updated-by:support@lightedge.com
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 221.204.245.144
Hi,
The IP 221.204.245.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.204.245.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '221.204.0.0 - 221.205.255.255'
inetnum: 221.204.0.0 - 221.205.255.255
netname: UNICOM-SX
descr: China Unicom Shanxi Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: XH63-AP
remarks: service provider
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-SX
mnt-routes: MAINT-CNCGROUP-RR
status: ALLOCATED PORTABLE
remarks: This object can only be modified by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your organisation
remarks: account name in the subject line.
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20030702
changed: hm-changed@apnic.net 20060124
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
person: xuehong han
address: BingZhou North Road YouDian Front Street NO.2 ShanXi Data Communciation Bureau TaiYuan ShanXi China
country: CN
phone: +86-351-4091749
fax-no: +86-351-4088347
e-mail: hxh@public.ty.sx.cn
nic-hdl: XH63-AP
mnt-by: MAINT-CHINANET-SX
changed: hxh@public.ty.sx.cn 20010208
source: APNIC
% Information related to '221.204.0.0/15AS4837'
route: 221.204.0.0/15
descr: CNC Group CHINA169 Shanxi Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 221.204.245.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.204.245.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '221.204.0.0 - 221.205.255.255'
inetnum: 221.204.0.0 - 221.205.255.255
netname: UNICOM-SX
descr: China Unicom Shanxi Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: XH63-AP
remarks: service provider
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-SX
mnt-routes: MAINT-CNCGROUP-RR
status: ALLOCATED PORTABLE
remarks: This object can only be modified by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your organisation
remarks: account name in the subject line.
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20030702
changed: hm-changed@apnic.net 20060124
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
person: xuehong han
address: BingZhou North Road YouDian Front Street NO.2 ShanXi Data Communciation Bureau TaiYuan ShanXi China
country: CN
phone: +86-351-4091749
fax-no: +86-351-4088347
e-mail: hxh@public.ty.sx.cn
nic-hdl: XH63-AP
mnt-by: MAINT-CHINANET-SX
changed: hxh@public.ty.sx.cn 20010208
source: APNIC
% Information related to '221.204.0.0/15AS4837'
route: 221.204.0.0/15
descr: CNC Group CHINA169 Shanxi Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 61.139.54.71
Hi,
The IP 61.139.54.71 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.139.54.71:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.139.0.0 - 61.139.127.255'
inetnum: 61.139.0.0 - 61.139.127.255
netname: CHINANET-SC
descr: CHINANET Sichuan province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XS16-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SC
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20000601
changed: hm-changed@apnic.net 20040927
changed: hm-changed@apnic.net 20041126
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xiaodong Shi
nic-hdl: XS16-AP
e-mail: ipadmin@my-public.sc.cninfo.net
address: No.72,Wen Miao Qian Str.
address: Data Communication Bureau Of Sichuan Province
address: Chengdu
address: PR China
phone: +86-28-6190785
fax-no: +86-28-6190641
country: CN
changed: ipadmin@my-public.sc.cninfo.net 20030317
mnt-by: MAINT-CHINANET-SC
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 61.139.54.71 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.139.54.71:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.139.0.0 - 61.139.127.255'
inetnum: 61.139.0.0 - 61.139.127.255
netname: CHINANET-SC
descr: CHINANET Sichuan province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XS16-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SC
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20000601
changed: hm-changed@apnic.net 20040927
changed: hm-changed@apnic.net 20041126
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xiaodong Shi
nic-hdl: XS16-AP
e-mail: ipadmin@my-public.sc.cninfo.net
address: No.72,Wen Miao Qian Str.
address: Data Communication Bureau Of Sichuan Province
address: Chengdu
address: PR China
phone: +86-28-6190785
fax-no: +86-28-6190641
country: CN
changed: ipadmin@my-public.sc.cninfo.net 20030317
mnt-by: MAINT-CHINANET-SC
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 77.252.212.165
Hi,
The IP 77.252.212.165 has just been banned by Fail2Ban after
8 attempts against SSH.
Here are more information about 77.252.212.165:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '77.252.212.160 - 77.252.212.175'
% Abuse contact for '77.252.212.160 - 77.252.212.175' is 'abuse@inetia.pl'
inetnum: 77.252.212.160 - 77.252.212.175
netname: Matic-Warszawa
descr: Matic Sp. z o.o.
descr: Pulawska 300A
descr: Warszawa
remarks: ---------------------------------------
remarks: In case of abuse from our address range
remarks: please contact abuse@inetia.pl
remarks: ---------------------------------------
country: PL
admin-c: SM17460-RIPE
tech-c: NT1264-RIPE
status: ASSIGNED PA
mnt-by: AS12741-MNT
mnt-lower: AS12741-MNT
mnt-routes: AS12741-MNT
source: RIPE # Filtered
role: Netia Telekom S.A. Contact Role
address: Poleczki 13
address: 02-822 Warszawa
address: Poland
phone: +48(22)352 0000
fax-no: +48(22)352 2213
remarks: trouble: 24/7 phone number: +48(22)352 2233
admin-c: MO3780-RIPE
tech-c: KP2343-RIPE
tech-c: AK3224-RIPE
tech-c: RPOZ-RIPE
nic-hdl: NT1264-RIPE
remarks: ---------------------------------------
remarks: In case of abuse from our address range
remarks: please contact abuse@inetia.pl
remarks: ---------------------------------------
abuse-mailbox: abuse@inetia.pl
mnt-by: NETIA-MNT
source: RIPE # Filtered
person: Swietlik Mariusz
address: Pulawska 300A
address: Warszawa 02-819
address: Poland
phone: +48 22 5439000
nic-hdl: SM17460-RIPE
mnt-by: AS12741-MNT
source: RIPE # Filtered
% Information related to '77.252.0.0/14AS12741'
route: 77.252.0.0/14
descr: NETIA
descr: Netia SA
descr: Poleczki 13
descr: 02-822 Warszawa
descr: Poland
origin: AS12741
mnt-by: NETIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
The IP 77.252.212.165 has just been banned by Fail2Ban after
8 attempts against SSH.
Here are more information about 77.252.212.165:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '77.252.212.160 - 77.252.212.175'
% Abuse contact for '77.252.212.160 - 77.252.212.175' is 'abuse@inetia.pl'
inetnum: 77.252.212.160 - 77.252.212.175
netname: Matic-Warszawa
descr: Matic Sp. z o.o.
descr: Pulawska 300A
descr: Warszawa
remarks: ---------------------------------------
remarks: In case of abuse from our address range
remarks: please contact abuse@inetia.pl
remarks: ---------------------------------------
country: PL
admin-c: SM17460-RIPE
tech-c: NT1264-RIPE
status: ASSIGNED PA
mnt-by: AS12741-MNT
mnt-lower: AS12741-MNT
mnt-routes: AS12741-MNT
source: RIPE # Filtered
role: Netia Telekom S.A. Contact Role
address: Poleczki 13
address: 02-822 Warszawa
address: Poland
phone: +48(22)352 0000
fax-no: +48(22)352 2213
remarks: trouble: 24/7 phone number: +48(22)352 2233
admin-c: MO3780-RIPE
tech-c: KP2343-RIPE
tech-c: AK3224-RIPE
tech-c: RPOZ-RIPE
nic-hdl: NT1264-RIPE
remarks: ---------------------------------------
remarks: In case of abuse from our address range
remarks: please contact abuse@inetia.pl
remarks: ---------------------------------------
abuse-mailbox: abuse@inetia.pl
mnt-by: NETIA-MNT
source: RIPE # Filtered
person: Swietlik Mariusz
address: Pulawska 300A
address: Warszawa 02-819
address: Poland
phone: +48 22 5439000
nic-hdl: SM17460-RIPE
mnt-by: AS12741-MNT
source: RIPE # Filtered
% Information related to '77.252.0.0/14AS12741'
route: 77.252.0.0/14
descr: NETIA
descr: Netia SA
descr: Poleczki 13
descr: 02-822 Warszawa
descr: Poland
origin: AS12741
mnt-by: NETIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
Monday 2 December 2013
[Fail2Ban] SSH: banned 72.249.18.155
Hi,
The IP 72.249.18.155 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 72.249.18.155:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 72.249.18.155"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=72.249.18.155?showDetails=true&showARIN=false&ext=netref2
#
Colo4, LLC COLO4-BLK2 (NET-72-249-0-0-1) 72.249.0.0 - 72.249.191.255
Cedar Creek Software COLO4-CEDARCREEK-101206 (NET-72-249-18-128-1) 72.249.18.128 - 72.249.18.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 72.249.18.155 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 72.249.18.155:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 72.249.18.155"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=72.249.18.155?showDetails=true&showARIN=false&ext=netref2
#
Colo4, LLC COLO4-BLK2 (NET-72-249-0-0-1) 72.249.0.0 - 72.249.191.255
Cedar Creek Software COLO4-CEDARCREEK-101206 (NET-72-249-18-128-1) 72.249.18.128 - 72.249.18.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 210.51.10.158
Hi,
The IP 210.51.10.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 210.51.10.158:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '210.51.0.0 - 210.51.19.255'
inetnum: 210.51.0.0 - 210.51.19.255
netname: CNC-BJ-IDC
country: CN
descr: Beijing Tongtai IDC of China Netcom
admin-c: CH140-AP
tech-c: TJ35-AP
status: ALLOCATED NON-PORTABLE
changed: cncipaddr@china-netcom.com 20040227
mnt-by: MAINT-CN-ZM28
mnt-lower: MAINT-CN-BJIDC
source: APNIC
role: CNCIDC hostmaster
address: No.1,Beihuan Donglu,BDA,Beijing,China
country: CN
phone: +8610 6787 5599
fax-no: +8610 6787 8624
e-mail: cncipaddr@china-netcom.com
remarks: send spam and abuse reports to tech-group@china-netcom.com
remarks: Please include detailed information and times in UTC
admin-c: TJ35-AP
tech-c: TC254-AP
nic-hdl: Ch140-AP
notify: cncipaddr@china-netcom.com
mnt-by: MAINT-CN-ZM28
changed: hm-changed@apnic.net 20040226
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Tao Jiang
nic-hdl: TJ35-AP
e-mail: bjidc-ipaddr@cnc.cn
address: No.1,Beihuan Donglu, Beijing Economic
address: -TechnologicalDevelopment Area,Beijing
phone: +8610-67878534
fax-no: +8610-67878538
country: CN
changed: jiangtao@cnc.cn 20080221
mnt-by: MAINT-CN-BJIDC
source: APNIC
% Information related to '210.51.0.0/16AS9929'
route: 210.51.0.0/16
descr: CNC Group CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060330
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
The IP 210.51.10.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 210.51.10.158:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '210.51.0.0 - 210.51.19.255'
inetnum: 210.51.0.0 - 210.51.19.255
netname: CNC-BJ-IDC
country: CN
descr: Beijing Tongtai IDC of China Netcom
admin-c: CH140-AP
tech-c: TJ35-AP
status: ALLOCATED NON-PORTABLE
changed: cncipaddr@china-netcom.com 20040227
mnt-by: MAINT-CN-ZM28
mnt-lower: MAINT-CN-BJIDC
source: APNIC
role: CNCIDC hostmaster
address: No.1,Beihuan Donglu,BDA,Beijing,China
country: CN
phone: +8610 6787 5599
fax-no: +8610 6787 8624
e-mail: cncipaddr@china-netcom.com
remarks: send spam and abuse reports to tech-group@china-netcom.com
remarks: Please include detailed information and times in UTC
admin-c: TJ35-AP
tech-c: TC254-AP
nic-hdl: Ch140-AP
notify: cncipaddr@china-netcom.com
mnt-by: MAINT-CN-ZM28
changed: hm-changed@apnic.net 20040226
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Tao Jiang
nic-hdl: TJ35-AP
e-mail: bjidc-ipaddr@cnc.cn
address: No.1,Beihuan Donglu, Beijing Economic
address: -TechnologicalDevelopment Area,Beijing
phone: +8610-67878534
fax-no: +8610-67878538
country: CN
changed: jiangtao@cnc.cn 20080221
mnt-by: MAINT-CN-BJIDC
source: APNIC
% Information related to '210.51.0.0/16AS9929'
route: 210.51.0.0/16
descr: CNC Group CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060330
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 91.121.68.172
Hi,
The IP 91.121.68.172 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 91.121.68.172:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '91.121.64.0 - 91.121.127.255'
% No abuse contact registered for 91.121.64.0 - 91.121.127.255
inetnum: 91.121.64.0 - 91.121.127.255
netname: OVH
descr: OVH SAS
descr: Dedicated Servers
descr: http://www.ovh.com
country: FR
admin-c: OK217-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
source: RIPE # Filtered
role: OVH Technical Contact
address: OVH SAS
address: 2 rue Kellermann
address: 59100 Roubaix
address: France
admin-c: OK217-RIPE
tech-c: GM84-RIPE
nic-hdl: OTC2-RIPE
abuse-mailbox: abuse@ovh.net
mnt-by: OVH-MNT
source: RIPE # Filtered
person: Octave Klaba
address: OVH SAS
address: 2 rue Kellermann
address: 59100 Roubaix
address: France
phone: +33 9 74 53 13 23
nic-hdl: OK217-RIPE
abuse-mailbox: abuse@ovh.net
mnt-by: OVH-MNT
source: RIPE # Filtered
% Information related to '91.121.0.0/17AS16276'
route: 91.121.0.0/17
descr: OVH ISP
descr: Paris, France
origin: AS16276
mnt-by: OVH-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
The IP 91.121.68.172 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 91.121.68.172:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '91.121.64.0 - 91.121.127.255'
% No abuse contact registered for 91.121.64.0 - 91.121.127.255
inetnum: 91.121.64.0 - 91.121.127.255
netname: OVH
descr: OVH SAS
descr: Dedicated Servers
descr: http://www.ovh.com
country: FR
admin-c: OK217-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
source: RIPE # Filtered
role: OVH Technical Contact
address: OVH SAS
address: 2 rue Kellermann
address: 59100 Roubaix
address: France
admin-c: OK217-RIPE
tech-c: GM84-RIPE
nic-hdl: OTC2-RIPE
abuse-mailbox: abuse@ovh.net
mnt-by: OVH-MNT
source: RIPE # Filtered
person: Octave Klaba
address: OVH SAS
address: 2 rue Kellermann
address: 59100 Roubaix
address: France
phone: +33 9 74 53 13 23
nic-hdl: OK217-RIPE
abuse-mailbox: abuse@ovh.net
mnt-by: OVH-MNT
source: RIPE # Filtered
% Information related to '91.121.0.0/17AS16276'
route: 91.121.0.0/17
descr: OVH ISP
descr: Paris, France
origin: AS16276
mnt-by: OVH-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 183.60.176.28
Hi,
The IP 183.60.176.28 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 183.60.176.28:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '183.0.0.0 - 183.63.255.255'
inetnum: 183.0.0.0 - 183.63.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: IC83-AP
tech-c: IC83-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20091009
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: ipadm@189.cn
address: NO.1,RO.DONGYUANHENG,YUEXIUNAN,GUANGZHOU
phone: +86-20-83877223
fax-no: +86-20-83877223
country: CN
changed: ipadm@189.cn 20110418
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdnoc@189.cn
abuse-mailbox: abuse_gdnoc@189.cn
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 183.60.176.28 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 183.60.176.28:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '183.0.0.0 - 183.63.255.255'
inetnum: 183.0.0.0 - 183.63.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: IC83-AP
tech-c: IC83-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20091009
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: ipadm@189.cn
address: NO.1,RO.DONGYUANHENG,YUEXIUNAN,GUANGZHOU
phone: +86-20-83877223
fax-no: +86-20-83877223
country: CN
changed: ipadm@189.cn 20110418
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdnoc@189.cn
abuse-mailbox: abuse_gdnoc@189.cn
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
Sunday 1 December 2013
[Fail2Ban] SSH: banned 81.25.164.72
Hi,
The IP 81.25.164.72 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 81.25.164.72:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '81.25.164.0 - 81.25.164.255'
% No abuse contact registered for 81.25.164.0 - 81.25.164.255
inetnum: 81.25.164.0 - 81.25.164.255
netname: BROADBAND-WIRELESS-ACCESS-POOL
descr: Broadband wireless access pool
country: RU
admin-c: DG6984-RIPE
admin-c: KA2180-RIPE
tech-c: DG6984-RIPE
tech-c: KA2180-RIPE
status: ASSIGNED PA
mnt-by: BANCORP-MNT
source: RIPE # Filtered
person: Dmitry Golov
address: IFC "BanCorp" Electronic Banking & Financial
address: 44, Ovrajna
address: 420012, Kazan
phone: +7 8432 646061
fax-no: +7 8432 642058
nic-hdl: DG6984-RIPE
mnt-by: BANCORP-MNT
source: RIPE # Filtered
person: Kislitsyn Alexandre
address: IFC "BanCorp" Electronic Banking & Financial
address: 44, Ovrajna
address: 420012, Kazan
phone: +7 8432 646061
fax-no: +7 8432 642058
nic-hdl: KA2180-RIPE
mnt-by: BANCORP-MNT
source: RIPE # Filtered
% Information related to '81.25.164.0/24AS24846'
route: 81.25.164.0/24
descr: IFC "BanCorp"
origin: AS24846
mnt-by: BANCORP-MNT
mnt-routes: BANCORP-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
The IP 81.25.164.72 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 81.25.164.72:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '81.25.164.0 - 81.25.164.255'
% No abuse contact registered for 81.25.164.0 - 81.25.164.255
inetnum: 81.25.164.0 - 81.25.164.255
netname: BROADBAND-WIRELESS-ACCESS-POOL
descr: Broadband wireless access pool
country: RU
admin-c: DG6984-RIPE
admin-c: KA2180-RIPE
tech-c: DG6984-RIPE
tech-c: KA2180-RIPE
status: ASSIGNED PA
mnt-by: BANCORP-MNT
source: RIPE # Filtered
person: Dmitry Golov
address: IFC "BanCorp" Electronic Banking & Financial
address: 44, Ovrajna
address: 420012, Kazan
phone: +7 8432 646061
fax-no: +7 8432 642058
nic-hdl: DG6984-RIPE
mnt-by: BANCORP-MNT
source: RIPE # Filtered
person: Kislitsyn Alexandre
address: IFC "BanCorp" Electronic Banking & Financial
address: 44, Ovrajna
address: 420012, Kazan
phone: +7 8432 646061
fax-no: +7 8432 642058
nic-hdl: KA2180-RIPE
mnt-by: BANCORP-MNT
source: RIPE # Filtered
% Information related to '81.25.164.0/24AS24846'
route: 81.25.164.0/24
descr: IFC "BanCorp"
origin: AS24846
mnt-by: BANCORP-MNT
mnt-routes: BANCORP-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 222.189.239.124
Hi,
The IP 222.189.239.124 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.189.239.124:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.184.0.0 - 222.191.255.255'
inetnum: 222.184.0.0 - 222.191.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: This object can only modify by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your
remarks: organisation account name in the subject line.
changed: hm-changed@apnic.net 20040223
status: ALLOCATED PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
The IP 222.189.239.124 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.189.239.124:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.184.0.0 - 222.191.255.255'
inetnum: 222.184.0.0 - 222.191.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: This object can only modify by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your
remarks: organisation account name in the subject line.
changed: hm-changed@apnic.net 20040223
status: ALLOCATED PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 125.210.221.161
Hi,
The IP 125.210.221.161 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 125.210.221.161:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '125.210.0.0 - 125.210.255.255'
inetnum: 125.210.0.0 - 125.210.255.255
netname: WASU
descr: WASU TV & Communication Holding Co.,Ltd.
descr: 6/F, Jian Gong Building, NO.20 Wen San Road, Hangzhou
descr: Zhejiang province, P.R.China 310012
country: CN
admin-c: TF142-AP
tech-c: JM1005-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
status: ALLOCATED PORTABLE
changed: ipas@cnnic.cn 20100513
source: APNIC
person: Junjun Mao
nic-hdl: JM1005-AP
e-mail: maojj@chinahcn.com
address: No.9 ShuGuang Road,HangZhou City,ZheJiang Province
phone: +86-0571-28958888-8172
fax-no: +86-0571-85214455
country: CN
changed: ipas@cnnic.cn 20100513
mnt-by: MAINT-CNNIC-AP
source: APNIC
person: Tao Feng
nic-hdl: TF142-AP
e-mail: fengtao@chinahcn.com
address: No.9 ShuGuang Road,HangZhou City,ZheJiang Province
phone: +86-0571-28958888-8108
fax-no: +86-0571-85214455
country: CN
changed: ipas@cnnic.cn 20100513
mnt-by: MAINT-CNNIC-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 125.210.221.161 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 125.210.221.161:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '125.210.0.0 - 125.210.255.255'
inetnum: 125.210.0.0 - 125.210.255.255
netname: WASU
descr: WASU TV & Communication Holding Co.,Ltd.
descr: 6/F, Jian Gong Building, NO.20 Wen San Road, Hangzhou
descr: Zhejiang province, P.R.China 310012
country: CN
admin-c: TF142-AP
tech-c: JM1005-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
status: ALLOCATED PORTABLE
changed: ipas@cnnic.cn 20100513
source: APNIC
person: Junjun Mao
nic-hdl: JM1005-AP
e-mail: maojj@chinahcn.com
address: No.9 ShuGuang Road,HangZhou City,ZheJiang Province
phone: +86-0571-28958888-8172
fax-no: +86-0571-85214455
country: CN
changed: ipas@cnnic.cn 20100513
mnt-by: MAINT-CNNIC-AP
source: APNIC
person: Tao Feng
nic-hdl: TF142-AP
e-mail: fengtao@chinahcn.com
address: No.9 ShuGuang Road,HangZhou City,ZheJiang Province
phone: +86-0571-28958888-8108
fax-no: +86-0571-85214455
country: CN
changed: ipas@cnnic.cn 20100513
mnt-by: MAINT-CNNIC-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 212.232.33.244
Hi,
The IP 212.232.33.244 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 212.232.33.244:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '212.232.32.0 - 212.232.63.255'
% No abuse contact registered for 212.232.32.0 - 212.232.63.255
inetnum: 212.232.32.0 - 212.232.63.255
netname: RU-YARNET-20100519
descr: Yarnet Ltd
country: RU
org: ORG-YL6-RIPE
admin-c: EDVT-RIPE
tech-c: EDVT-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: YARNET-MNT
mnt-routes: YARNET-MNT
source: RIPE # Filtered
organisation: ORG-YL6-RIPE
org-name: Yarnet Ltd
org-type: LIR
address: Yarnet, Ltd Denis Tokarev Lisitsyna, 5 150049 Yaroslavl RUSSIAN FEDERATION
phone: +74852260106
fax-no: +74852269001
mnt-ref: YARNET-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-mailbox: abuse@yarnet.ru
source: RIPE # Filtered
person: Tokarev Den
address: Russia, Yaroslavl, Lisitsyna, 5
mnt-by: YARNET-MNT
phone: +7 4852 260106
fax-no: +7 4852 260607
nic-hdl: EDVT-RIPE
source: RIPE # Filtered
% Information related to '212.232.32.0/20AS197078'
route: 212.232.32.0/20
descr: Yarnet Ltd.
origin: AS197078
mnt-by: YARNET-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
The IP 212.232.33.244 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 212.232.33.244:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '212.232.32.0 - 212.232.63.255'
% No abuse contact registered for 212.232.32.0 - 212.232.63.255
inetnum: 212.232.32.0 - 212.232.63.255
netname: RU-YARNET-20100519
descr: Yarnet Ltd
country: RU
org: ORG-YL6-RIPE
admin-c: EDVT-RIPE
tech-c: EDVT-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: YARNET-MNT
mnt-routes: YARNET-MNT
source: RIPE # Filtered
organisation: ORG-YL6-RIPE
org-name: Yarnet Ltd
org-type: LIR
address: Yarnet, Ltd Denis Tokarev Lisitsyna, 5 150049 Yaroslavl RUSSIAN FEDERATION
phone: +74852260106
fax-no: +74852269001
mnt-ref: YARNET-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-mailbox: abuse@yarnet.ru
source: RIPE # Filtered
person: Tokarev Den
address: Russia, Yaroslavl, Lisitsyna, 5
mnt-by: YARNET-MNT
phone: +7 4852 260106
fax-no: +7 4852 260607
nic-hdl: EDVT-RIPE
source: RIPE # Filtered
% Information related to '212.232.32.0/20AS197078'
route: 212.232.32.0/20
descr: Yarnet Ltd.
origin: AS197078
mnt-by: YARNET-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 210.51.10.158
Hi,
The IP 210.51.10.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 210.51.10.158:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '210.51.0.0 - 210.51.19.255'
inetnum: 210.51.0.0 - 210.51.19.255
netname: CNC-BJ-IDC
country: CN
descr: Beijing Tongtai IDC of China Netcom
admin-c: CH140-AP
tech-c: TJ35-AP
status: ALLOCATED NON-PORTABLE
changed: cncipaddr@china-netcom.com 20040227
mnt-by: MAINT-CN-ZM28
mnt-lower: MAINT-CN-BJIDC
source: APNIC
role: CNCIDC hostmaster
address: No.1,Beihuan Donglu,BDA,Beijing,China
country: CN
phone: +8610 6787 5599
fax-no: +8610 6787 8624
e-mail: cncipaddr@china-netcom.com
remarks: send spam and abuse reports to tech-group@china-netcom.com
remarks: Please include detailed information and times in UTC
admin-c: TJ35-AP
tech-c: TC254-AP
nic-hdl: Ch140-AP
notify: cncipaddr@china-netcom.com
mnt-by: MAINT-CN-ZM28
changed: hm-changed@apnic.net 20040226
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Tao Jiang
nic-hdl: TJ35-AP
e-mail: bjidc-ipaddr@cnc.cn
address: No.1,Beihuan Donglu, Beijing Economic
address: -TechnologicalDevelopment Area,Beijing
phone: +8610-67878534
fax-no: +8610-67878538
country: CN
changed: jiangtao@cnc.cn 20080221
mnt-by: MAINT-CN-BJIDC
source: APNIC
% Information related to '210.51.0.0/16AS9929'
route: 210.51.0.0/16
descr: CNC Group CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060330
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 210.51.10.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 210.51.10.158:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '210.51.0.0 - 210.51.19.255'
inetnum: 210.51.0.0 - 210.51.19.255
netname: CNC-BJ-IDC
country: CN
descr: Beijing Tongtai IDC of China Netcom
admin-c: CH140-AP
tech-c: TJ35-AP
status: ALLOCATED NON-PORTABLE
changed: cncipaddr@china-netcom.com 20040227
mnt-by: MAINT-CN-ZM28
mnt-lower: MAINT-CN-BJIDC
source: APNIC
role: CNCIDC hostmaster
address: No.1,Beihuan Donglu,BDA,Beijing,China
country: CN
phone: +8610 6787 5599
fax-no: +8610 6787 8624
e-mail: cncipaddr@china-netcom.com
remarks: send spam and abuse reports to tech-group@china-netcom.com
remarks: Please include detailed information and times in UTC
admin-c: TJ35-AP
tech-c: TC254-AP
nic-hdl: Ch140-AP
notify: cncipaddr@china-netcom.com
mnt-by: MAINT-CN-ZM28
changed: hm-changed@apnic.net 20040226
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Tao Jiang
nic-hdl: TJ35-AP
e-mail: bjidc-ipaddr@cnc.cn
address: No.1,Beihuan Donglu, Beijing Economic
address: -TechnologicalDevelopment Area,Beijing
phone: +8610-67878534
fax-no: +8610-67878538
country: CN
changed: jiangtao@cnc.cn 20080221
mnt-by: MAINT-CN-BJIDC
source: APNIC
% Information related to '210.51.0.0/16AS9929'
route: 210.51.0.0/16
descr: CNC Group CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060330
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 119.63.65.149
Hi,
The IP 119.63.65.149 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 119.63.65.149:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '119.63.64.0 - 119.63.71.255'
inetnum: 119.63.64.0 - 119.63.71.255
netname: TH-2S1N
descr: Two S One N Co., Ltd.
descr: Internet Service Provider and IT Solutions
country: TH
admin-c: NT213-AP
tech-c: NT213-AP
status: ASSIGNED NON-PORTABLE
changed: 2s1n@bb.net.th 20080827
mnt-by: MAINT-BB-BROADBAND-TH
source: APNIC
person: NOC TwoS OneN
nic-hdl: NT213-AP
e-mail: 2s1n@bb.net.th
address: 199/16 Moo 4, Permsin Road,
address: KhawngKlongThanon, Saimai,
address: Bangkok
phone: +66-2153-2154
fax-no: +66-2994-1554
country: TH
changed: 2s1n@bb.net.th 20080827
mnt-by: MAINT-BB-BROADBAND-TH
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
The IP 119.63.65.149 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 119.63.65.149:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '119.63.64.0 - 119.63.71.255'
inetnum: 119.63.64.0 - 119.63.71.255
netname: TH-2S1N
descr: Two S One N Co., Ltd.
descr: Internet Service Provider and IT Solutions
country: TH
admin-c: NT213-AP
tech-c: NT213-AP
status: ASSIGNED NON-PORTABLE
changed: 2s1n@bb.net.th 20080827
mnt-by: MAINT-BB-BROADBAND-TH
source: APNIC
person: NOC TwoS OneN
nic-hdl: NT213-AP
e-mail: 2s1n@bb.net.th
address: 199/16 Moo 4, Permsin Road,
address: KhawngKlongThanon, Saimai,
address: Bangkok
phone: +66-2153-2154
fax-no: +66-2994-1554
country: TH
changed: 2s1n@bb.net.th 20080827
mnt-by: MAINT-BB-BROADBAND-TH
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 140.211.169.163
Hi,
The IP 140.211.169.163 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 140.211.169.163:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 140.211.169.163"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=140.211.169.163?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 140.211.0.0 - 140.211.255.255
CIDR: 140.211.0.0/16
OriginAS:
NetName: OSSHENET
NetHandle: NET-140-211-0-0-1
Parent: NET-140-0-0-0-0
NetType: Direct Assignment
RegDate: 1990-06-11
Updated: 2001-04-09
Ref: http://whois.arin.net/rest/net/NET-140-211-0-0-1
OrgName: Oregon State System of Higher Education
OrgId: OSSHE-1
Address: 1225 Kincaid, UO Campus
City: Eugene
StateProv: OR
PostalCode: 97403
Country: US
RegDate: 1990-06-11
Updated: 2011-09-24
Ref: http://whois.arin.net/rest/org/OSSHE-1
OrgTechHandle: CKN23-ARIN
OrgTechName: No, Contact Known
OrgTechPhone: +1-800-555-1234
OrgTechEmail: nobody@example.com
OrgTechRef: http://whois.arin.net/rest/poc/CKN23-ARIN
OrgAbuseHandle: DC80-ARIN
OrgAbuseName: Crowe, David
OrgAbusePhone: +1-541-346-6376
OrgAbuseEmail: crowed@nero.net
OrgAbuseRef: http://whois.arin.net/rest/poc/DC80-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 140.211.169.163 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 140.211.169.163:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 140.211.169.163"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=140.211.169.163?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 140.211.0.0 - 140.211.255.255
CIDR: 140.211.0.0/16
OriginAS:
NetName: OSSHENET
NetHandle: NET-140-211-0-0-1
Parent: NET-140-0-0-0-0
NetType: Direct Assignment
RegDate: 1990-06-11
Updated: 2001-04-09
Ref: http://whois.arin.net/rest/net/NET-140-211-0-0-1
OrgName: Oregon State System of Higher Education
OrgId: OSSHE-1
Address: 1225 Kincaid, UO Campus
City: Eugene
StateProv: OR
PostalCode: 97403
Country: US
RegDate: 1990-06-11
Updated: 2011-09-24
Ref: http://whois.arin.net/rest/org/OSSHE-1
OrgTechHandle: CKN23-ARIN
OrgTechName: No, Contact Known
OrgTechPhone: +1-800-555-1234
OrgTechEmail: nobody@example.com
OrgTechRef: http://whois.arin.net/rest/poc/CKN23-ARIN
OrgAbuseHandle: DC80-ARIN
OrgAbuseName: Crowe, David
OrgAbusePhone: +1-541-346-6376
OrgAbuseEmail: crowed@nero.net
OrgAbuseRef: http://whois.arin.net/rest/poc/DC80-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 184.107.168.50
Hi,
The IP 184.107.168.50 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 184.107.168.50:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 184.107.168.50"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=184.107.168.50?showDetails=true&showARIN=false&ext=netref2
#
Maison Vilar IWEB-NE-T037-430-977 (NET-184-107-168-48-1) 184.107.168.48 - 184.107.168.55
iWeb Technologies Inc. IWEB-BLK-07 (NET-184-107-0-0-1) 184.107.0.0 - 184.107.255.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 184.107.168.50 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 184.107.168.50:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 184.107.168.50"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=184.107.168.50?showDetails=true&showARIN=false&ext=netref2
#
Maison Vilar IWEB-NE-T037-430-977 (NET-184-107-168-48-1) 184.107.168.48 - 184.107.168.55
iWeb Technologies Inc. IWEB-BLK-07 (NET-184-107-0-0-1) 184.107.0.0 - 184.107.255.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 58.215.133.52
Hi,
The IP 58.215.133.52 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 58.215.133.52:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '58.208.0.0 - 58.223.255.255'
inetnum: 58.208.0.0 - 58.223.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20050624
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 58.215.133.52 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 58.215.133.52:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '58.208.0.0 - 58.223.255.255'
inetnum: 58.208.0.0 - 58.223.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20050624
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 181.40.119.74
Hi,
The IP 181.40.119.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 181.40.119.74:
[Querying whois.arin.net]
[Redirected to whois.lacnic.net]
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-12-01 15:57:26 (BRST -02:00)
inetnum: 181.40.0/17
status: reallocated
owner: Telecel S.A.
ownerid: PY-TESA-LACNIC
responsible: Santiago Enciso
address: Zavala Cue y Artillería, n/d, n/d
address: 0000 - Fernando de La Mora - Zona Sur -
country: PY
phone: +595 21 618 9000 [58 1400]
owner-c: SAE3
tech-c: SAE3
abuse-c: ROR30
created: 20120710
changed: 20120919
inetnum-up: 181.40/16
nic-hdl: ROR30
person: Rodrigo Riveros
e-mail: abuse@TIGO.COM.PY
address: Av. Artilleria y Zavalas Cue, 61890,
address: 1010 - Fernando de la Mora - CE
country: PY
phone: +595 21 6189000 []
created: 20120919
changed: 20120919
nic-hdl: SAE3
person: Santiago Enciso
e-mail: santiago.enciso@TIGO.NET.PY
address: Av. Zavalas Cue esq. Artilleria, ,
address: - Fernando de La Mora - CE
country: PY
phone: +595 21 6189000 [581339]
created: 20110103
changed: 20110103
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
The IP 181.40.119.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 181.40.119.74:
[Querying whois.arin.net]
[Redirected to whois.lacnic.net]
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-12-01 15:57:26 (BRST -02:00)
inetnum: 181.40.0/17
status: reallocated
owner: Telecel S.A.
ownerid: PY-TESA-LACNIC
responsible: Santiago Enciso
address: Zavala Cue y Artillería, n/d, n/d
address: 0000 - Fernando de La Mora - Zona Sur -
country: PY
phone: +595 21 618 9000 [58 1400]
owner-c: SAE3
tech-c: SAE3
abuse-c: ROR30
created: 20120710
changed: 20120919
inetnum-up: 181.40/16
nic-hdl: ROR30
person: Rodrigo Riveros
e-mail: abuse@TIGO.COM.PY
address: Av. Artilleria y Zavalas Cue, 61890,
address: 1010 - Fernando de la Mora - CE
country: PY
phone: +595 21 6189000 []
created: 20120919
changed: 20120919
nic-hdl: SAE3
person: Santiago Enciso
e-mail: santiago.enciso@TIGO.NET.PY
address: Av. Zavalas Cue esq. Artilleria, ,
address: - Fernando de La Mora - CE
country: PY
phone: +595 21 6189000 [581339]
created: 20110103
changed: 20110103
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 202.90.153.109
Hi,
The IP 202.90.153.109 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 202.90.153.109:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.90.128.0 - 202.90.159.255'
inetnum: 202.90.128.0 - 202.90.159.255
netname: DOST
descr: Department of Science and Technology
descr: Research and Academic Network
country: PH
admin-c: DFV1-AP
tech-c: DFV1-AP
tech-c: PO5-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-PH-DOST
status: ALLOCATED PORTABLE
mnt-irt: IRT-ASTI-PH
changed: hm-changed@apnic.net 20040224
source: APNIC
irt: IRT-ASTI-PH
address: Advanced Science and Technology Institute
address: ASTI Bldg., Technopark, C.P. Garcia Ave.,
address: U.P. Campus, Diliman, Quezon City
e-mail: ops@pregi.net
abuse-mailbox: ops@pregi.net
admin-c: DFV1-AP
tech-c: DFV1-AP
auth: # Filtered
mnt-by: MAINT-PH-DOST
changed: ops@pregi.net 20121114
source: APNIC
person: Denis F. Villorente
nic-hdl: DFV1-AP
e-mail: denis@asti.dost.gov.ph
address: Advanced Science and Technology Institute
address: ASTI Bldg., Technopark, C.P. Garcia Ave.,
address: U.P. Campus, Diliman, Quezon City
phone: +63-2-426-9755
fax-no: +63-2-426-9756
country: PH
changed: denis@asti.dost.gov.ph 20040220
mnt-by: MAINT-PH-DOST
source: APNIC
person: PREGINET Operations
nic-hdl: PO5-AP
e-mail: ops@pregi.net
address: Advanced Science and Technology Institute
address: ASTI Bldg., Technopark, C.P. Garcia Ave.,
address: U.P. Campus, Diliman, Quezon City
phone: +63-2-426-9760
fax-no: +63-2-426-9764
country: PH
changed: bani@asti.dost.gov.ph 20100202
mnt-by: MAINT-PH-DOST
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 202.90.153.109 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 202.90.153.109:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.90.128.0 - 202.90.159.255'
inetnum: 202.90.128.0 - 202.90.159.255
netname: DOST
descr: Department of Science and Technology
descr: Research and Academic Network
country: PH
admin-c: DFV1-AP
tech-c: DFV1-AP
tech-c: PO5-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-PH-DOST
status: ALLOCATED PORTABLE
mnt-irt: IRT-ASTI-PH
changed: hm-changed@apnic.net 20040224
source: APNIC
irt: IRT-ASTI-PH
address: Advanced Science and Technology Institute
address: ASTI Bldg., Technopark, C.P. Garcia Ave.,
address: U.P. Campus, Diliman, Quezon City
e-mail: ops@pregi.net
abuse-mailbox: ops@pregi.net
admin-c: DFV1-AP
tech-c: DFV1-AP
auth: # Filtered
mnt-by: MAINT-PH-DOST
changed: ops@pregi.net 20121114
source: APNIC
person: Denis F. Villorente
nic-hdl: DFV1-AP
e-mail: denis@asti.dost.gov.ph
address: Advanced Science and Technology Institute
address: ASTI Bldg., Technopark, C.P. Garcia Ave.,
address: U.P. Campus, Diliman, Quezon City
phone: +63-2-426-9755
fax-no: +63-2-426-9756
country: PH
changed: denis@asti.dost.gov.ph 20040220
mnt-by: MAINT-PH-DOST
source: APNIC
person: PREGINET Operations
nic-hdl: PO5-AP
e-mail: ops@pregi.net
address: Advanced Science and Technology Institute
address: ASTI Bldg., Technopark, C.P. Garcia Ave.,
address: U.P. Campus, Diliman, Quezon City
phone: +63-2-426-9760
fax-no: +63-2-426-9764
country: PH
changed: bani@asti.dost.gov.ph 20100202
mnt-by: MAINT-PH-DOST
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 222.45.87.22
Hi,
The IP 222.45.87.22 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.45.87.22:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.32.0.0 - 222.63.255.255'
inetnum: 222.32.0.0 - 222.63.255.255
netname: CTTNET
descr: China TieTong Telecommunications Corporation
descr: Jinze Mansion, 2 Guangningbo Street,
descr: Xicheng District, Beijing, China, 100032
country: CN
admin-c: WP188-AP
tech-c: LM273-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CN-CRTC
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090430
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: liu min
nic-hdl: LM273-AP
e-mail: crnet_mgr@chinatietong.com
address: 22F Yuetan Mansion, Xicheng District, Beijing, P.R.China
phone: +86-10-51848796
fax-no: +86-10-51842426
country: CN
changed: ipas@cnnic.net.cn 20120320
mnt-by: MAINT-CNNIC-AP
source: APNIC
person: Wang Pei
nic-hdl: WP188-AP
e-mail: crnet_mgr@chinatietong.com
address: Jinze Mansion, 2 Guangningbo Street,
address: Xicheng District, Beijing, China, 100032
phone: +21-51892106
fax-no: +21-51847802
country: CN
changed: ipas@cnnic.net.cn 20060926
mnt-by: MAINT-CNNIC-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 222.45.87.22 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.45.87.22:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.32.0.0 - 222.63.255.255'
inetnum: 222.32.0.0 - 222.63.255.255
netname: CTTNET
descr: China TieTong Telecommunications Corporation
descr: Jinze Mansion, 2 Guangningbo Street,
descr: Xicheng District, Beijing, China, 100032
country: CN
admin-c: WP188-AP
tech-c: LM273-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CN-CRTC
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090430
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: liu min
nic-hdl: LM273-AP
e-mail: crnet_mgr@chinatietong.com
address: 22F Yuetan Mansion, Xicheng District, Beijing, P.R.China
phone: +86-10-51848796
fax-no: +86-10-51842426
country: CN
changed: ipas@cnnic.net.cn 20120320
mnt-by: MAINT-CNNIC-AP
source: APNIC
person: Wang Pei
nic-hdl: WP188-AP
e-mail: crnet_mgr@chinatietong.com
address: Jinze Mansion, 2 Guangningbo Street,
address: Xicheng District, Beijing, China, 100032
phone: +21-51892106
fax-no: +21-51847802
country: CN
changed: ipas@cnnic.net.cn 20060926
mnt-by: MAINT-CNNIC-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 217.75.204.242
Hi,
The IP 217.75.204.242 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 217.75.204.242:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '217.75.204.0 - 217.75.204.255'
% No abuse contact registered for 217.75.204.0 - 217.75.204.255
inetnum: 217.75.204.0 - 217.75.204.255
netname: PTP_INFRASTRUCTURE_LINKS_Subnet_3
descr: Point To Point Infrastructure links subnet 3
country: BA
admin-c: SS17467-RIPE
tech-c: DS2823-RIPE
status: ASSIGNED PA
mnt-by: LOGOSOFT-MNT
mnt-lower: LOGOSOFT-MNT
mnt-routes: LOGOSOFT-MNT
source: RIPE # Filtered
person: Damir Saranovic
address: Igmanska 9
address: 71000 Sarajevo
address: BA
phone: + 387 33 931 998
fax-no: + 387 33 931 908
nic-hdl: DS2823-RIPE
source: RIPE # Filtered
person: Selmir Softic
address: Igmanska 9
address: 71000 Sarajevo
address: BA
phone: + 387 33 707 707
fax-no: + 387 33 707 708
nic-hdl: SS17467-RIPE
source: RIPE # Filtered
% Information related to '217.75.204.0/24AS16178'
route: 217.75.204.0/24
descr: BA-LOGOSOFT
origin: AS16178
mnt-by: LOGOSOFT-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS2)
Regards,
Fail2Ban
The IP 217.75.204.242 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 217.75.204.242:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '217.75.204.0 - 217.75.204.255'
% No abuse contact registered for 217.75.204.0 - 217.75.204.255
inetnum: 217.75.204.0 - 217.75.204.255
netname: PTP_INFRASTRUCTURE_LINKS_Subnet_3
descr: Point To Point Infrastructure links subnet 3
country: BA
admin-c: SS17467-RIPE
tech-c: DS2823-RIPE
status: ASSIGNED PA
mnt-by: LOGOSOFT-MNT
mnt-lower: LOGOSOFT-MNT
mnt-routes: LOGOSOFT-MNT
source: RIPE # Filtered
person: Damir Saranovic
address: Igmanska 9
address: 71000 Sarajevo
address: BA
phone: + 387 33 931 998
fax-no: + 387 33 931 908
nic-hdl: DS2823-RIPE
source: RIPE # Filtered
person: Selmir Softic
address: Igmanska 9
address: 71000 Sarajevo
address: BA
phone: + 387 33 707 707
fax-no: + 387 33 707 708
nic-hdl: SS17467-RIPE
source: RIPE # Filtered
% Information related to '217.75.204.0/24AS16178'
route: 217.75.204.0/24
descr: BA-LOGOSOFT
origin: AS16178
mnt-by: LOGOSOFT-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 58.215.133.52
Hi,
The IP 58.215.133.52 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 58.215.133.52:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '58.208.0.0 - 58.223.255.255'
inetnum: 58.208.0.0 - 58.223.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20050624
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 58.215.133.52 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 58.215.133.52:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '58.208.0.0 - 58.223.255.255'
inetnum: 58.208.0.0 - 58.223.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20050624
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 203.130.3.34
Hi,
The IP 203.130.3.34 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 203.130.3.34:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '203.130.3.0 - 203.130.3.255'
inetnum: 203.130.3.0 - 203.130.3.255
netname: Supernet
descr: Idirect Client
country: PK
admin-c: SN302-AP
tech-c: SN302-AP
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-PK-SUPER-PK
changed: hm-changed@apnic.net 20100107
mnt-irt: IRT-SUPER-PK
source: APNIC
irt: IRT-SUPER-PK
address: 10th Floor, Tower B,
address: World Trade Center, Clifton Block 5,
address: Karachi 75600, Pakistan.
e-mail: abuse@super.net.pk
abuse-mailbox: abuse@super.net.pk
admin-c: SN302-AP
tech-c: SN302-AP
auth: # Filtered
mnt-by: MAINT-PK-SUPER-PK
changed: abuse@super.net.pk 20101228
source: APNIC
person: SUPERNET NetBlockAdmin
nic-hdl: SN302-AP
e-mail: netblockadmin@super.net.pk
address: 10th Floor, Tower B,
address: World Trade Center, Clifton Block 5,
address: Karachi 75600, Pakistan.
phone: +92-21-587-1864
fax-no: +92-21-587-1869
country: PK
changed: hasghar@super.net.pk 20070606
mnt-by: MAINT-PK-SUPER-PK
changed: hm-changed@apnic.net 20070612
source: APNIC
% Information related to '203.130.0.0/22AS24435'
route: 203.130.0.0/22
descr: Supernet aggregated route object 1
origin: AS24435
country: PK
mnt-by: MAINT-PK-SUPER-PK
changed: tm@super.net.pk 20061005
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 203.130.3.34 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 203.130.3.34:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '203.130.3.0 - 203.130.3.255'
inetnum: 203.130.3.0 - 203.130.3.255
netname: Supernet
descr: Idirect Client
country: PK
admin-c: SN302-AP
tech-c: SN302-AP
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-PK-SUPER-PK
changed: hm-changed@apnic.net 20100107
mnt-irt: IRT-SUPER-PK
source: APNIC
irt: IRT-SUPER-PK
address: 10th Floor, Tower B,
address: World Trade Center, Clifton Block 5,
address: Karachi 75600, Pakistan.
e-mail: abuse@super.net.pk
abuse-mailbox: abuse@super.net.pk
admin-c: SN302-AP
tech-c: SN302-AP
auth: # Filtered
mnt-by: MAINT-PK-SUPER-PK
changed: abuse@super.net.pk 20101228
source: APNIC
person: SUPERNET NetBlockAdmin
nic-hdl: SN302-AP
e-mail: netblockadmin@super.net.pk
address: 10th Floor, Tower B,
address: World Trade Center, Clifton Block 5,
address: Karachi 75600, Pakistan.
phone: +92-21-587-1864
fax-no: +92-21-587-1869
country: PK
changed: hasghar@super.net.pk 20070606
mnt-by: MAINT-PK-SUPER-PK
changed: hm-changed@apnic.net 20070612
source: APNIC
% Information related to '203.130.0.0/22AS24435'
route: 203.130.0.0/22
descr: Supernet aggregated route object 1
origin: AS24435
country: PK
mnt-by: MAINT-PK-SUPER-PK
changed: tm@super.net.pk 20061005
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
Subscribe to:
Posts (Atom)