Hi,
The IP 94.79.61.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 94.79.61.106:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '94.79.61.104 - 94.79.61.111'
% Abuse contact for '94.79.61.104 - 94.79.61.111' is 'netadm@comcor.ru'
inetnum: 94.79.61.104 - 94.79.61.111
netname: COMCOR-FARADEY
descr: Network for FARADEY
country: RU
admin-c: KAN76-RIPE
tech-c: KAN76-RIPE
status: ASSIGNED PA
mnt-by: AS8732-MNT
source: RIPE # Filtered
person: Kudryavyh Aleksandr Nikolaevich
address: Moscow, Golubinskaya ul., d.8
phone: +7 495 982-36-80
remarks: Ext. 138
mnt-by: AS8732-MNT
nic-hdl: KAN76-RIPE
source: RIPE # Filtered
% Information related to '94.79.0.0/18AS8732'
route: 94.79.0.0/18
descr: comcor.ru
origin: AS8732
mnt-by: AS8732-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
Hi, I just noticed similar attacks to my NAS - what do they mean? can it be an active attack, or can be part of a bot trying to send spam etc
ReplyDeleteHi there, I just received similar attaches in my NAS - any idea what they mean?
ReplyDeleteWhat is NAS?
ReplyDeleteNetwork attached storage
ReplyDelete