Hi,
The IP 213.149.117.244 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 213.149.117.244:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '213.149.117.240 - 213.149.117.255'
inetnum: 213.149.117.240 - 213.149.117.255
netname: InternetCG
descr: Wireless Data Centar
country: me
admin-c: VR3145-RIPE
tech-c: VR3145-RIPE
status: assigned pa
mnt-by: AS8585-MNT
source: RIPE # Filtered
person: Vesna Radusinovic
address: Bul. Sv. Petra Cetinjskog br.3
phone: +38281432122
nic-hdl: VR3145-RIPE
mnt-by: AS8585-MNT
source: RIPE # Filtered
% Information related to '213.149.96.0/19AS8585'
route: 213.149.96.0/19
descr: Internet Crna Gora
origin: AS8585
mnt-by: AS8585-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
Tuesday 16 July 2013
[Fail2Ban] SSH: banned 190.6.166.84
Hi,
The IP 190.6.166.84 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 190.6.166.84:
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-07-16 23:41:20 (BRT -03:00)
inetnum: 190.6.160/20
status: allocated
aut-num: AS27845
abuse-c: CAG23
owner: Empresa de Recursos Tecnologicos S.A E.S.P
ownerid: CO-ERTE-LACNIC
responsible: Becerra, Leonardo
address: Av Vasquez Cobo, 23N-47, --,
address: 0572 - Cali - VA
country: CO
phone: +57 2 6202020 []
owner-c: ERT2
tech-c: CAG23
abuse-c: CAG23
inetrev: 190.6.160/21
nserver: NS1.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS2.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS3.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: FOX.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
created: 20060809
changed: 20080225
nic-hdl: CAG23
person: Carlos Andres Pulgarin Gomez
e-mail: cpulgarin@ERT.NET.CO
address: Av. Vasquez Cobo 23N-47, 57, 6202078
address: 00000 - Cali - VA
country: CO
phone: +57 2 6202020 [2078]
created: 20080225
changed: 20120411
nic-hdl: ERT2
person: ERT - Empresa de Recursos Tecnologicos
e-mail: lbecerra@ERT.NET.CO
address: Avenida Vasques Cobo Nro. 23 N 47, 23, Edificio Ant
address: 0572 - Cali - Va
country: CO
phone: +57 2 6202020 [2045]
created: 20060315
changed: 20090219
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
The IP 190.6.166.84 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 190.6.166.84:
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-07-16 23:41:20 (BRT -03:00)
inetnum: 190.6.160/20
status: allocated
aut-num: AS27845
abuse-c: CAG23
owner: Empresa de Recursos Tecnologicos S.A E.S.P
ownerid: CO-ERTE-LACNIC
responsible: Becerra, Leonardo
address: Av Vasquez Cobo, 23N-47, --,
address: 0572 - Cali - VA
country: CO
phone: +57 2 6202020 []
owner-c: ERT2
tech-c: CAG23
abuse-c: CAG23
inetrev: 190.6.160/21
nserver: NS1.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS2.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS3.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: FOX.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
created: 20060809
changed: 20080225
nic-hdl: CAG23
person: Carlos Andres Pulgarin Gomez
e-mail: cpulgarin@ERT.NET.CO
address: Av. Vasquez Cobo 23N-47, 57, 6202078
address: 00000 - Cali - VA
country: CO
phone: +57 2 6202020 [2078]
created: 20080225
changed: 20120411
nic-hdl: ERT2
person: ERT - Empresa de Recursos Tecnologicos
e-mail: lbecerra@ERT.NET.CO
address: Avenida Vasques Cobo Nro. 23 N 47, 23, Edificio Ant
address: 0572 - Cali - Va
country: CO
phone: +57 2 6202020 [2045]
created: 20060315
changed: 20090219
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 112.124.3.53
Hi,
The IP 112.124.3.53 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 112.124.3.53:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 112.124.0.0 - 112.127.255.255
netname: ALIBABA-CN-NET
descr: Alibaba (China) Technology Co., Ltd.
descr: No.699, Wangshang RD., Hangzhou, China
country: CN
admin-c: ZM678-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090122
status: ALLOCATED PORTABLE
source: APNIC
person: Shuo Yu
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: shuo.yus@alibaba-inc.com
e-mail: shuo.yus@aliyun-inc.com
nic-hdl: ZM678-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20110614
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: guoxin.gao@aliyun-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130705
source: APNIC
person: security trouble
e-mail: cloud-cc-sqcloud@list.alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen’er Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
changed: ipas@cnnic.cn 20130708
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: guowei.pangw@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130709
source: APNIC
Regards,
Fail2Ban
The IP 112.124.3.53 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 112.124.3.53:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 112.124.0.0 - 112.127.255.255
netname: ALIBABA-CN-NET
descr: Alibaba (China) Technology Co., Ltd.
descr: No.699, Wangshang RD., Hangzhou, China
country: CN
admin-c: ZM678-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090122
status: ALLOCATED PORTABLE
source: APNIC
person: Shuo Yu
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: shuo.yus@alibaba-inc.com
e-mail: shuo.yus@aliyun-inc.com
nic-hdl: ZM678-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20110614
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: guoxin.gao@aliyun-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130705
source: APNIC
person: security trouble
e-mail: cloud-cc-sqcloud@list.alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen’er Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
changed: ipas@cnnic.cn 20130708
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: guowei.pangw@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130709
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 59.66.31.144
Hi,
The IP 59.66.31.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 59.66.31.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-5]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 59.66.0.0 - 59.66.63.255
netname: TSINGHUA-CN
descr: ~{Ge;*4sQ'~}
descr: Tsinghua University
descr: Beijing 100084, China
country: CN
remarks: conn-id BJ000013
admin-c: THU-AP
tech-c: THU-AP
tech-c: CER-AP
remarks: origin AS4538
changed: hostmaster@net.edu.cn 20050112
mnt-by: MAINT-CERNET-AP
status: ASSIGNED NON-PORTABLE
source: APNIC
role: TUNET Netsupport
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4859
fax-no: +86-10-6278-5933
e-mail: tunet-ip@net.edu.cn
remarks: tunet-support@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: THU-AP
mnt-by: MAINT-CERNET-AP
changed: hm-changed@net.edu.cn 20021121
source: APNIC
changed: hm-changed@apnic.net 20111114
role: CERNET Helpdesk
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4049
fax-no: +86-10-6278-5933
e-mail: cernet-helpdesk-ip@net.edu.cn
remarks: abuse@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: CER-AP
remarks: Point of Contact for admin-c
mnt-by: MAINT-CERNET-AP
changed: cernet-helpdesk-ip@net.edu.cn 20010903
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
The IP 59.66.31.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 59.66.31.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-5]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 59.66.0.0 - 59.66.63.255
netname: TSINGHUA-CN
descr: ~{Ge;*4sQ'~}
descr: Tsinghua University
descr: Beijing 100084, China
country: CN
remarks: conn-id BJ000013
admin-c: THU-AP
tech-c: THU-AP
tech-c: CER-AP
remarks: origin AS4538
changed: hostmaster@net.edu.cn 20050112
mnt-by: MAINT-CERNET-AP
status: ASSIGNED NON-PORTABLE
source: APNIC
role: TUNET Netsupport
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4859
fax-no: +86-10-6278-5933
e-mail: tunet-ip@net.edu.cn
remarks: tunet-support@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: THU-AP
mnt-by: MAINT-CERNET-AP
changed: hm-changed@net.edu.cn 20021121
source: APNIC
changed: hm-changed@apnic.net 20111114
role: CERNET Helpdesk
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4049
fax-no: +86-10-6278-5933
e-mail: cernet-helpdesk-ip@net.edu.cn
remarks: abuse@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: CER-AP
remarks: Point of Contact for admin-c
mnt-by: MAINT-CERNET-AP
changed: cernet-helpdesk-ip@net.edu.cn 20010903
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 178.92.251.31
Hi,
The IP 178.92.251.31 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 178.92.251.31:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '178.92.0.0 - 178.92.255.255'
inetnum: 178.92.0.0 - 178.92.255.255
netname: UKRTELNET-ADSL
descr: NCC#2011011865 Approved IP assignment
country: ua
remarks: E-mail for SPAM and abuse postmaster@ukrtel.net
admin-c: ARM42-RIPE
tech-c: ARM42-RIPE
status: ASSIGNED PA
mnt-by: AS6849-MNT
source: RIPE # Filtered
person: Remiga Alexander
address: JSC UKRTELECOM
address: 18, Shevchenko blvd
address: Ukraine, Kiev
phone: +380 (44) 230-9024
nic-hdl: ARM42-RIPE
mnt-by: AS6849-MNT
source: RIPE # Filtered
% Information related to '178.92.192.0/18AS6849'
route: 178.92.192.0/18
descr: AGGREGATE BLOCK FOR UKRTELECOM
origin: AS6849
mnt-by: AS6849-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
The IP 178.92.251.31 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 178.92.251.31:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '178.92.0.0 - 178.92.255.255'
inetnum: 178.92.0.0 - 178.92.255.255
netname: UKRTELNET-ADSL
descr: NCC#2011011865 Approved IP assignment
country: ua
remarks: E-mail for SPAM and abuse postmaster@ukrtel.net
admin-c: ARM42-RIPE
tech-c: ARM42-RIPE
status: ASSIGNED PA
mnt-by: AS6849-MNT
source: RIPE # Filtered
person: Remiga Alexander
address: JSC UKRTELECOM
address: 18, Shevchenko blvd
address: Ukraine, Kiev
phone: +380 (44) 230-9024
nic-hdl: ARM42-RIPE
mnt-by: AS6849-MNT
source: RIPE # Filtered
% Information related to '178.92.192.0/18AS6849'
route: 178.92.192.0/18
descr: AGGREGATE BLOCK FOR UKRTELECOM
origin: AS6849
mnt-by: AS6849-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
Subscribe to:
Posts (Atom)