HideMyAss.com

Saturday, 28 September 2013

[Fail2Ban] SSH: banned 58.56.163.250

Hi,

The IP 58.56.163.250 has just been banned by Fail2Ban after
5 attempts against SSH.


Here are more information about 58.56.163.250:

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '58.56.0.0 - 58.59.127.255'

inetnum: 58.56.0.0 - 58.59.127.255
netname: CHINANET-SD
descr: CHINANET SHANDONG PROVINCE NETWORK
descr: Shandong Telecom Corporation
descr: No.999,Shunhua road,Jinan,Shandong
country: CN
admin-c: XR55-AP
tech-c: CH93-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-SD
mnt-routes: MAINT-CHINANET-SD
status: ALLOCATED PORTABLE
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-
changed: hm-changed@apnic.net 20050622
changed: hm-changed@apnic.net 20060605
source: APNIC

person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC

person: Xin Ruosheng
nic-hdl: XR55-AP
e-mail: ipreport@sdtele.com
address: No.999, road Shunhua, Jinan, Shandong province,China
phone: +86-531-83190000
fax-no: +86-531-83190000
country: CN
changed: ipreport@sdtele.com 20060905
mnt-by: MAINT-CHINANET-SD
source: APNIC

% This query was served by the APNIC Whois Service version 1.68 (WHOIS4)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 201.217.51.46

Hi,

The IP 201.217.51.46 has just been banned by Fail2Ban after
5 attempts against SSH.


Here are more information about 201.217.51.46:

[Querying whois.lacnic.net]
[whois.lacnic.net]

% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries

% LACNIC resource: whois.lacnic.net


% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-09-28 13:09:48 (BRT -03:00)

inetnum: 201.217.32/19
status: allocated
aut-num: N/A
owner: CO.PA.CO.
ownerid: PY-COPA-LACNIC
responsible: Hernán R. Franco M.
address: Teodoro S. Mongelós (edificio Morotí), -, piso 1 - A
address: - - Asunción (Paraguay) -
country: PY
phone: +59 52 12260 []
owner-c: RMG
tech-c: CSA5
abuse-c: CSA5
inetrev: 201.217.51/24
nserver: NS1.COPACO.COM.PY
nsstat: 20130923 AA
nslastaa: 20130923
nserver: NS2.COPACO.COM.PY
nsstat: 20130923 AA
nslastaa: 20130923
created: 20051215
changed: 20061009

nic-hdl: CSA5
person: COPACO S.A. IP ADMINISTRATOR
e-mail: ipadmin@COPACO.COM.PY
address: Mayor Bullo e/Pasaje Uruguay, 1565, 2do. Piso
address: 1098 - Asuncion -
country: PY
phone: +595 21 229555 []
created: 20061009
changed: 20091126

nic-hdl: RMG
person: Hernán R. Franco M.
e-mail: hfranco@COPACO.COM.PY
address: Mayor Bullo e/Pasaje Uruguay, 874,
address: 2042 - Asuncion -
country: PY
phone: +595 21 200611 []
created: 20031013
changed: 20130923

% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.


Regards,

Fail2Ban

[Fail2Ban] SSH: banned 209.62.25.90

Hi,

The IP 209.62.25.90 has just been banned by Fail2Ban after
5 attempts against SSH.


Here are more information about 209.62.25.90:

[Querying whois.arin.net]
[Redirected to rwhois.theplanet.com:4321]
[Querying rwhois.theplanet.com]
[rwhois.theplanet.com]
%rwhois V-1.5:003fff:00 rwhois.softlayer.com (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:NETBLK-THEPLANET-BLK-EV1-16
network:Auth-Area:209.62.0.0/17
network:Network-Name:TPIS-BLK-209-62-25-0
network:IP-Network:209.62.25.88/29
network:IP-Network-Block:209.62.25.88
- 209.62.25.95
network:Organization;I:Megri Soft Limited
network:Street-Address:N/A
network:City:Chandigarh
network:State:OT
network:Postal-Code:160047
network:Country-Code:IND
network:Tech-Contact;I:abuse@ev1servers.net
network:Admin-Contact;I:abuse@ev1servers.net
network:Created:20091006
network:Updated:20120524

network:Class-Name:network
network:ID:NETBLK-SOFTLAYER.209.62.0.0/17
network:Auth-Area:209.62.0.0/17
network:Network-Name:SOFTLAYER-209.62.0.0
network:IP-Network:209.62.25.0/24
network:IP-Network-Block:209.62.25.0-209.62.25.255

network:Organization;I:SoftLayer
network:Street-Address:4849 Alpha Road
network:City:Dallas
network:State:TX
network:Postal-Code:75244
network:Country-Code:US
network:Tech-Contact;I:sysadmins@softlayer.com
network:Abuse-Contact;I:abuse@softlayer.com
network:Admin-Contact;I:IPADM258-ARIN
network:Created:2011-02-17 15:26:29
network:Updated-By:ipadmin@softlayer.com

%ok

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 198.61.180.152

Hi,

The IP 198.61.180.152 has just been banned by Fail2Ban after
5 attempts against SSH.


Here are more information about 198.61.180.152:

[Querying whois.arin.net]
[whois.arin.net]

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#


#
# Query terms are ambiguous. The query is assumed to be:
# "n 198.61.180.152"
#
# Use "?" to get help.
#

#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=198.61.180.152?showDetails=true&showARIN=false&ext=netref2
#

Rackspace Cloud Servers RACKS-8-9350332768056438 (NET-198-61-180-0-1) 198.61.180.0 - 198.61.180.255
Rackspace Hosting RACKS-8-NET-10 (NET-198-61-128-0-1) 198.61.128.0 - 198.61.255.255



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#

Regards,

Fail2Ban