Hi,
The IP 153.128.40.27 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 153.128.40.27:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 153.128.0.0 - 153.253.255.255
netname: OCN
descr: NTT Communications Corporation
descr: 1-6 Uchisaiwai-cho 1-chome Chiyoda-ku, Tokyo 100-8019 Japan
country: JP
admin-c: JNIC1-AP
tech-c: JNIC1-AP
status: ALLOCATED PORTABLE
remarks: Email address for spam or abuse complaints :abuse@ocn.ad.jp
mnt-by: MAINT-JPNIC
mnt-lower: MAINT-JPNIC
mnt-irt: IRT-JPNIC-JP
changed: hm-changed@apnic.net 20120919
source: APNIC
role: Japan Network Information Center
address: Urbannet-Kanda Bldg 4F
address: 3-6-2 Uchi-Kanda
address: Chiyoda-ku, Tokyo 101-0047,Japan
country: JP
phone: +81-3-5297-2311
fax-no: +81-3-5297-2312
e-mail: hostmaster@nic.ad.jp
admin-c: JI13-AP
tech-c: JE53-AP
nic-hdl: JNIC1-AP
mnt-by: MAINT-JPNIC
changed: hm-changed@apnic.net 20041222
changed: hm-changed@apnic.net 20050324
changed: ip-apnic@nic.ad.jp 20051027
changed: ip-apnic@nic.ad.jp 20120828
source: APNIC
inetnum: 153.128.0.0 - 153.128.63.255
netname: OCN
descr: Open Computer Network
country: JP
admin-c: AY1361JP
tech-c: KK551JP
tech-c: TT10660JP
tech-c: TT15086JP
remarks: This information has been partially mirrored by APNIC from
remarks: JPNIC. To obtain more specific information, please use the
remarks: JPNIC WHOIS Gateway at
remarks: http://www.nic.ad.jp/en/db/whois/en-gateway.html or
remarks: whois.nic.ad.jp for WHOIS client. (The WHOIS client
remarks: defaults to Japanese output, use the /e switch for English
remarks: output)
changed: apnic-ftp@nic.ad.jp 20110329
changed: apnic-ftp@nic.ad.jp 20130424
source: JPNIC
Regards,
Fail2Ban
Friday, 19 July 2013
[Fail2Ban] SSH: banned 118.192.9.79
Hi,
The IP 118.192.9.79 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 118.192.9.79:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 118.192.0.0 - 118.192.255.255
netname: SANXIN
descr: Beijing Sanxin Shidai Co.Ltd
descr: 1513 Xinjishu building Beijing link west road,
descr: Haidian District, Beijing, PRC
country: CN
admin-c: SJ1535-AP
tech-c: AUTO1-SK
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-NET-AP
mnt-irt: IRT-NET-AP
changed: ip@cnisp.org.cn 20121010
source: APNIC
route: 118.192.0.0/16
descr: China Unicom Hebei Province network
descr: Addresses from CNNIC
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20110322
source: APNIC
person: Shi Jianmin
nic-hdl: SJ1535-AP
address: 65th Haidian xinjishu building 1513
address: Beijing Haidian District North four link west road
country: CN
phone: +86-10-82888393
fax-no: +86-10-82610575-15131
e-mail: antepc@sina.com
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20090513
source: APNIC
person: Shi Kai
nic-hdl: AUTO1-SK
address: 65th Haidian xinjishu building 1513
address: Beijing Haidian District North four link west road
country: CN
phone: +86-10-52789029
fax-no: +86-10-52789032
e-mail: sailor0156@hotmail.com
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20090513
source: APNIC
Regards,
Fail2Ban
The IP 118.192.9.79 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 118.192.9.79:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 118.192.0.0 - 118.192.255.255
netname: SANXIN
descr: Beijing Sanxin Shidai Co.Ltd
descr: 1513 Xinjishu building Beijing link west road,
descr: Haidian District, Beijing, PRC
country: CN
admin-c: SJ1535-AP
tech-c: AUTO1-SK
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-NET-AP
mnt-irt: IRT-NET-AP
changed: ip@cnisp.org.cn 20121010
source: APNIC
route: 118.192.0.0/16
descr: China Unicom Hebei Province network
descr: Addresses from CNNIC
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20110322
source: APNIC
person: Shi Jianmin
nic-hdl: SJ1535-AP
address: 65th Haidian xinjishu building 1513
address: Beijing Haidian District North four link west road
country: CN
phone: +86-10-82888393
fax-no: +86-10-82610575-15131
e-mail: antepc@sina.com
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20090513
source: APNIC
person: Shi Kai
nic-hdl: AUTO1-SK
address: 65th Haidian xinjishu building 1513
address: Beijing Haidian District North four link west road
country: CN
phone: +86-10-52789029
fax-no: +86-10-52789032
e-mail: sailor0156@hotmail.com
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20090513
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 219.144.17.74
Hi,
The IP 219.144.17.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 219.144.17.74:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-1]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 219.144.0.0 - 219.145.255.255
netname: CHINANET-SN
descr: CHINANET shanxi(SN) province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: XC10-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SHAANXI
status: ASSIGNED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20020702
changed: hm-changed@apnic.net 20040927
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xianghong Cao
address: Shaanxi province data communication Bureau
address: 8# guangde Road west development zone
address: Xi'an city, Shanxi province 710075
country: CN
phone: +8629-837-1049
fax-no: +8629-837-1049
e-mail: IPADM@PUBLIC.XA.SN.CN
nic-hdl: XC10-AP
mnt-by: MAINT-CHINANET-SHAANXI
changed: IPADM@PUBLIC.XA.SN.CN 20011203
source: APNIC
Regards,
Fail2Ban
The IP 219.144.17.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 219.144.17.74:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-1]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 219.144.0.0 - 219.145.255.255
netname: CHINANET-SN
descr: CHINANET shanxi(SN) province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: XC10-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SHAANXI
status: ASSIGNED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20020702
changed: hm-changed@apnic.net 20040927
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xianghong Cao
address: Shaanxi province data communication Bureau
address: 8# guangde Road west development zone
address: Xi'an city, Shanxi province 710075
country: CN
phone: +8629-837-1049
fax-no: +8629-837-1049
e-mail: IPADM@PUBLIC.XA.SN.CN
nic-hdl: XC10-AP
mnt-by: MAINT-CHINANET-SHAANXI
changed: IPADM@PUBLIC.XA.SN.CN 20011203
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 62.75.236.14
Hi,
The IP 62.75.236.14 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 62.75.236.14:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '62.75.236.0 - 62.75.236.63'
% Abuse contact for '62.75.236.0 - 62.75.236.63' is 'abuse@plusserver.de'
inetnum: 62.75.236.0 - 62.75.236.63
descr: BSB-SERVICE Dedicated Server Hosting
netname: BSB-SERVICE-1
country: DE
org: ORG-BSBS1-RIPE
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
remarks: rev-srv: ptr1.intergenia.de
remarks: rev-srv: ptr2.intergenia.de
status: ASSIGNED PA
remarks: Abuse-Contact: abuse@ip-pool.com
mnt-by: BSB-SERVICE-MNT
source: RIPE # Filtered
organisation: ORG-BSBS1-RIPE
org-name: B S B - Service GmbH
org-type: OTHER
descr: Internet-Hoster
remarks: BSB Service GmbH is part of intergenia AG
address: Daimlerstr.9-11
address: 50354 Huerth
address: Germany
phone: +49 2233 612-0
fax-no: +49 2233 612-144
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
mnt-ref: INTERGENIA-MNT
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
role: NMC PlusServer AG
address: PlusServer AG
address: Daimlerstr. 9-11
address: 50354 Huerth
phone: +49 1801 119991
fax-no: +49 2233 612-53500
abuse-mailbox: abuse@plusserver.de
remarks:
remarks: ********************************************************
remarks: * PLEASE READ CAREFULLY: *
remarks: * and choose the right addresses for contacting our *
remarks: * staff. *
remarks: * This will fasten up processing your request ! *
remarks: ********************************************************
remarks: * ABUSE-Complaints are only handled at: *
remarks: * ABUSE@plusserver.de *
remarks: ********************************************************
remarks: * Auskunftsersuchen gemaess TKG werden nur unter *
remarks: * Fax: +49 2233 612 5150 *
remarks: * bearbeitet! *
remarks: ********************************************************
remarks: * Informational Contact: info@plusserver.de *
remarks: * or http://www.plusserver.de *
remarks: ********************************************************
remarks:
remarks: ********************************************************
remarks: * If you have a routing-related request you *
remarks: * may contact us at : *
remarks: * Fax: +49 2233 612 53500 *
remarks: * Phone: +49 2233 612 3500 *
remarks: * *
remarks: ********************************************************
remarks:
admin-c: JBPS-RIPE
tech-c: CDPS-RIPE
tech-c: ADPS-RIPE
tech-c: MOPS1337-RIPE
nic-hdl: NPA10-RIPE
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
% Information related to '62.75.128.0/17AS8972'
route: 62.75.128.0/17
descr: Plusserver AG
origin: AS8972
mnt-by: INTERGENIA-MNT
mnt-lower: INTERGENIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS4)
Regards,
Fail2Ban
The IP 62.75.236.14 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 62.75.236.14:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '62.75.236.0 - 62.75.236.63'
% Abuse contact for '62.75.236.0 - 62.75.236.63' is 'abuse@plusserver.de'
inetnum: 62.75.236.0 - 62.75.236.63
descr: BSB-SERVICE Dedicated Server Hosting
netname: BSB-SERVICE-1
country: DE
org: ORG-BSBS1-RIPE
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
remarks: rev-srv: ptr1.intergenia.de
remarks: rev-srv: ptr2.intergenia.de
status: ASSIGNED PA
remarks: Abuse-Contact: abuse@ip-pool.com
mnt-by: BSB-SERVICE-MNT
source: RIPE # Filtered
organisation: ORG-BSBS1-RIPE
org-name: B S B - Service GmbH
org-type: OTHER
descr: Internet-Hoster
remarks: BSB Service GmbH is part of intergenia AG
address: Daimlerstr.9-11
address: 50354 Huerth
address: Germany
phone: +49 2233 612-0
fax-no: +49 2233 612-144
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
mnt-ref: INTERGENIA-MNT
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
role: NMC PlusServer AG
address: PlusServer AG
address: Daimlerstr. 9-11
address: 50354 Huerth
phone: +49 1801 119991
fax-no: +49 2233 612-53500
abuse-mailbox: abuse@plusserver.de
remarks:
remarks: ********************************************************
remarks: * PLEASE READ CAREFULLY: *
remarks: * and choose the right addresses for contacting our *
remarks: * staff. *
remarks: * This will fasten up processing your request ! *
remarks: ********************************************************
remarks: * ABUSE-Complaints are only handled at: *
remarks: * ABUSE@plusserver.de *
remarks: ********************************************************
remarks: * Auskunftsersuchen gemaess TKG werden nur unter *
remarks: * Fax: +49 2233 612 5150 *
remarks: * bearbeitet! *
remarks: ********************************************************
remarks: * Informational Contact: info@plusserver.de *
remarks: * or http://www.plusserver.de *
remarks: ********************************************************
remarks:
remarks: ********************************************************
remarks: * If you have a routing-related request you *
remarks: * may contact us at : *
remarks: * Fax: +49 2233 612 53500 *
remarks: * Phone: +49 2233 612 3500 *
remarks: * *
remarks: ********************************************************
remarks:
admin-c: JBPS-RIPE
tech-c: CDPS-RIPE
tech-c: ADPS-RIPE
tech-c: MOPS1337-RIPE
nic-hdl: NPA10-RIPE
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
% Information related to '62.75.128.0/17AS8972'
route: 62.75.128.0/17
descr: Plusserver AG
origin: AS8972
mnt-by: INTERGENIA-MNT
mnt-lower: INTERGENIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 61.136.171.198
Hi,
The IP 61.136.171.198 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.136.171.198:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 61.136.128.0 - 61.136.255.255
netname: CHINANET-HB
descr: CHINANET Hubei province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CHA1-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CN-CHINANET-HB
changed: hostmaster@cn.net 20001225
status: ALLOCATED NON-PORTABLE
source: APNIC
role: CHINANET HB ADMIN
address: 8th floor of JinGuang Building
address: #232 of Macao Road
address: HanKou Wuhan Hubei Province
address: P.R.China
country: CN
phone: +86 27 82862199
fax-no: +86 27 82861499
e-mail: ip_admin_hb@public.wh.hb.cn
remarks: send spam reports to spam_hb@public.wh.hb.cn
remarks: and abuse reports to abuse_hb@public.wh.hb.cn
remarks: Please include detailed information and
remarks: times in GMT+8
admin-c: YZ83-AP
admin-c: ZC77-AP
tech-c: YZ83-AP
tech-c: ZC77-AP
nic-hdl: CHA1-AP
notify: ip_admin_hb@public.wh.hb.cn
mnt-by: MAINT-CN-CHINANET-HB
changed: zhangyl68@public.wh.hb.cn 20031114
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
The IP 61.136.171.198 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.136.171.198:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 61.136.128.0 - 61.136.255.255
netname: CHINANET-HB
descr: CHINANET Hubei province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CHA1-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CN-CHINANET-HB
changed: hostmaster@cn.net 20001225
status: ALLOCATED NON-PORTABLE
source: APNIC
role: CHINANET HB ADMIN
address: 8th floor of JinGuang Building
address: #232 of Macao Road
address: HanKou Wuhan Hubei Province
address: P.R.China
country: CN
phone: +86 27 82862199
fax-no: +86 27 82861499
e-mail: ip_admin_hb@public.wh.hb.cn
remarks: send spam reports to spam_hb@public.wh.hb.cn
remarks: and abuse reports to abuse_hb@public.wh.hb.cn
remarks: Please include detailed information and
remarks: times in GMT+8
admin-c: YZ83-AP
admin-c: ZC77-AP
tech-c: YZ83-AP
tech-c: ZC77-AP
nic-hdl: CHA1-AP
notify: ip_admin_hb@public.wh.hb.cn
mnt-by: MAINT-CN-CHINANET-HB
changed: zhangyl68@public.wh.hb.cn 20031114
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 109.163.226.166
Hi,
The IP 109.163.226.166 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 109.163.226.166:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '109.163.225.0 - 109.163.227.255'
inetnum: 109.163.225.0 - 109.163.227.255
netname: Voxility
descr: Servers hosting in Dimitrie Pompeiu 9-9A, Building 24, Bucharest
country: RO
admin-c: VOX100-RIPE
tech-c: VOX100-RIPE
status: ASSIGNED PA
mnt-by: VOXILITY-MNT
source: RIPE # Filtered
person: Voxility NOC
remarks: Team in Charge of Voxility Global IP Backbone Management
remarks: Available 24/7 for routing issues and security incidents
org: ORG-SVS8-RIPE
address: Dimitrie Pompeiu 9-9A, Building 24
address: Bucharest 020335, Romania
abuse-mailbox: noc@voxility.com
remarks: +1.703-888-5811 (US)
remarks: +49.69-957-98952 (Germany)
phone: +40-21-2074747
nic-hdl: VOX100-RIPE
mnt-by: VOXILITY-MNT
source: RIPE # Filtered
% Information related to '109.163.226.0/24AS39743'
route: 109.163.226.0/24
descr: voxility.net
origin: AS39743
mnt-by: VOXILITY-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS4)
Regards,
Fail2Ban
The IP 109.163.226.166 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 109.163.226.166:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '109.163.225.0 - 109.163.227.255'
inetnum: 109.163.225.0 - 109.163.227.255
netname: Voxility
descr: Servers hosting in Dimitrie Pompeiu 9-9A, Building 24, Bucharest
country: RO
admin-c: VOX100-RIPE
tech-c: VOX100-RIPE
status: ASSIGNED PA
mnt-by: VOXILITY-MNT
source: RIPE # Filtered
person: Voxility NOC
remarks: Team in Charge of Voxility Global IP Backbone Management
remarks: Available 24/7 for routing issues and security incidents
org: ORG-SVS8-RIPE
address: Dimitrie Pompeiu 9-9A, Building 24
address: Bucharest 020335, Romania
abuse-mailbox: noc@voxility.com
remarks: +1.703-888-5811 (US)
remarks: +49.69-957-98952 (Germany)
phone: +40-21-2074747
nic-hdl: VOX100-RIPE
mnt-by: VOXILITY-MNT
source: RIPE # Filtered
% Information related to '109.163.226.0/24AS39743'
route: 109.163.226.0/24
descr: voxility.net
origin: AS39743
mnt-by: VOXILITY-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS4)
Regards,
Fail2Ban
Thursday, 18 July 2013
[Fail2Ban] SSH: banned 62.75.236.14
Hi,
The IP 62.75.236.14 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 62.75.236.14:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '62.75.236.0 - 62.75.236.63'
% Abuse contact for '62.75.236.0 - 62.75.236.63' is 'abuse@plusserver.de'
inetnum: 62.75.236.0 - 62.75.236.63
descr: BSB-SERVICE Dedicated Server Hosting
netname: BSB-SERVICE-1
country: DE
org: ORG-BSBS1-RIPE
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
remarks: rev-srv: ptr1.intergenia.de
remarks: rev-srv: ptr2.intergenia.de
status: ASSIGNED PA
remarks: Abuse-Contact: abuse@ip-pool.com
mnt-by: BSB-SERVICE-MNT
source: RIPE # Filtered
organisation: ORG-BSBS1-RIPE
org-name: B S B - Service GmbH
org-type: OTHER
descr: Internet-Hoster
remarks: BSB Service GmbH is part of intergenia AG
address: Daimlerstr.9-11
address: 50354 Huerth
address: Germany
phone: +49 2233 612-0
fax-no: +49 2233 612-144
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
mnt-ref: INTERGENIA-MNT
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
role: NMC PlusServer AG
address: PlusServer AG
address: Daimlerstr. 9-11
address: 50354 Huerth
phone: +49 1801 119991
fax-no: +49 2233 612-53500
abuse-mailbox: abuse@plusserver.de
remarks:
remarks: ********************************************************
remarks: * PLEASE READ CAREFULLY: *
remarks: * and choose the right addresses for contacting our *
remarks: * staff. *
remarks: * This will fasten up processing your request ! *
remarks: ********************************************************
remarks: * ABUSE-Complaints are only handled at: *
remarks: * ABUSE@plusserver.de *
remarks: ********************************************************
remarks: * Auskunftsersuchen gemaess TKG werden nur unter *
remarks: * Fax: +49 2233 612 5150 *
remarks: * bearbeitet! *
remarks: ********************************************************
remarks: * Informational Contact: info@plusserver.de *
remarks: * or http://www.plusserver.de *
remarks: ********************************************************
remarks:
remarks: ********************************************************
remarks: * If you have a routing-related request you *
remarks: * may contact us at : *
remarks: * Fax: +49 2233 612 53500 *
remarks: * Phone: +49 2233 612 3500 *
remarks: * *
remarks: ********************************************************
remarks:
admin-c: JBPS-RIPE
tech-c: CDPS-RIPE
tech-c: ADPS-RIPE
tech-c: MOPS1337-RIPE
nic-hdl: NPA10-RIPE
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
% Information related to '62.75.128.0/17AS8972'
route: 62.75.128.0/17
descr: Plusserver AG
origin: AS8972
mnt-by: INTERGENIA-MNT
mnt-lower: INTERGENIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
The IP 62.75.236.14 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 62.75.236.14:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '62.75.236.0 - 62.75.236.63'
% Abuse contact for '62.75.236.0 - 62.75.236.63' is 'abuse@plusserver.de'
inetnum: 62.75.236.0 - 62.75.236.63
descr: BSB-SERVICE Dedicated Server Hosting
netname: BSB-SERVICE-1
country: DE
org: ORG-BSBS1-RIPE
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
remarks: rev-srv: ptr1.intergenia.de
remarks: rev-srv: ptr2.intergenia.de
status: ASSIGNED PA
remarks: Abuse-Contact: abuse@ip-pool.com
mnt-by: BSB-SERVICE-MNT
source: RIPE # Filtered
organisation: ORG-BSBS1-RIPE
org-name: B S B - Service GmbH
org-type: OTHER
descr: Internet-Hoster
remarks: BSB Service GmbH is part of intergenia AG
address: Daimlerstr.9-11
address: 50354 Huerth
address: Germany
phone: +49 2233 612-0
fax-no: +49 2233 612-144
admin-c: NPA10-RIPE
tech-c: NPA10-RIPE
mnt-ref: INTERGENIA-MNT
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
role: NMC PlusServer AG
address: PlusServer AG
address: Daimlerstr. 9-11
address: 50354 Huerth
phone: +49 1801 119991
fax-no: +49 2233 612-53500
abuse-mailbox: abuse@plusserver.de
remarks:
remarks: ********************************************************
remarks: * PLEASE READ CAREFULLY: *
remarks: * and choose the right addresses for contacting our *
remarks: * staff. *
remarks: * This will fasten up processing your request ! *
remarks: ********************************************************
remarks: * ABUSE-Complaints are only handled at: *
remarks: * ABUSE@plusserver.de *
remarks: ********************************************************
remarks: * Auskunftsersuchen gemaess TKG werden nur unter *
remarks: * Fax: +49 2233 612 5150 *
remarks: * bearbeitet! *
remarks: ********************************************************
remarks: * Informational Contact: info@plusserver.de *
remarks: * or http://www.plusserver.de *
remarks: ********************************************************
remarks:
remarks: ********************************************************
remarks: * If you have a routing-related request you *
remarks: * may contact us at : *
remarks: * Fax: +49 2233 612 53500 *
remarks: * Phone: +49 2233 612 3500 *
remarks: * *
remarks: ********************************************************
remarks:
admin-c: JBPS-RIPE
tech-c: CDPS-RIPE
tech-c: ADPS-RIPE
tech-c: MOPS1337-RIPE
nic-hdl: NPA10-RIPE
mnt-by: INTERGENIA-MNT
source: RIPE # Filtered
% Information related to '62.75.128.0/17AS8972'
route: 62.75.128.0/17
descr: Plusserver AG
origin: AS8972
mnt-by: INTERGENIA-MNT
mnt-lower: INTERGENIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 219.148.120.238
Hi,
The IP 219.148.120.238 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 219.148.120.238:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-7]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 219.148.0.0 - 219.148.159.255
netname: CHINANET-HE
descr: CHINANET hebei province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: BR3-AP
status: ALLOCATED NON-PORTABLE
changed: ipadmin@north.cn.net 20060526
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-HE
mnt-routes: MAINT-CHINANET-HE
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Bin Ren
nic-hdl: BR3-AP
e-mail: hostmaster@hbtele.com
address: NO.69 KunLun avenue, Shijiazhuang 050000 China
phone: +86-311-85211771
fax-no: +86-311-85202145
country: CN
changed: renbin@hbtele.com 20060606
mnt-by: MAINT-CHINANET-HE
source: APNIC
Regards,
Fail2Ban
The IP 219.148.120.238 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 219.148.120.238:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-7]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 219.148.0.0 - 219.148.159.255
netname: CHINANET-HE
descr: CHINANET hebei province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: BR3-AP
status: ALLOCATED NON-PORTABLE
changed: ipadmin@north.cn.net 20060526
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-HE
mnt-routes: MAINT-CHINANET-HE
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Bin Ren
nic-hdl: BR3-AP
e-mail: hostmaster@hbtele.com
address: NO.69 KunLun avenue, Shijiazhuang 050000 China
phone: +86-311-85211771
fax-no: +86-311-85202145
country: CN
changed: renbin@hbtele.com 20060606
mnt-by: MAINT-CHINANET-HE
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 122.49.119.206
Hi,
The IP 122.49.119.206 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.49.119.206:
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query: 122.49.119.206
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
서비스명 : PIRANHA
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG840185
주소 : ì¸ì²œ ì—°ì˜êµ¬ 송ë„ë™ ì†¡ë„미ë˜ë¡œ 30 스ë§íŠ¸ë°¸ë¦¬ ì§ì&lsqauo;산업센터 C-2513
ìš°í¸ë²í˜¸ : 406-840
í• ë&lsqauo;¹ì¼ì : 20060605
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4주소ëŠ" ìœ„ì˜ ê´ë¦¬ëŒí–‰ìë¡œë¶í„° ì•„ë˜ì˜ 사용ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
ë„¤íŠ¸ì›Œí¬ ì´ë¦„ : PIRANHA-II
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG791975
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
í• ë&lsqauo;¹ë‚´ì— ë"±ë¡ì¼ : 20060623
ê³µê°œì—¬ë¶ : N
[ ë„¤íŠ¸ì›Œí¬ ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
ì „ììš°í¸ : hsw@piranha.co.kr
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Service Name : PIRANHA
Organization Name : Piranha Systems
Organization ID : ORG840185
Address : Songdomirae-ro 30, Song-Do Smart Valley C-2513, Songdo-dong Yeonsu-gu Incheon
Zip Code : 406-840
Registration Date : 20060605
[ Admin Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Tech Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Network Abuse Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Network Name : PIRANHA-II
Organization Name : PIRANHA
Organization ID : ORG791975
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
Registration Date : 20060623
Publishes : N
[ Technical Contact Information ]
Organization Name : PIRANHA
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
E-Mail : hsw@piranha.co.kr
ìƒê¸° ì •ë³´ëŠ" UTF-8 ì¸ì½"ë"©ë˜ì–´ 서비스ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
EUC-KR ì¸ì½"ë"© 서비스ëŠ" oldwhois.kisa.or.krì—ì„œ 서비스 ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
The above information is encoded with UTF-8
EUC-KR encoding WHOIS is being serviced in this URL:oldwhois.kisa.or.kr
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
The IP 122.49.119.206 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.49.119.206:
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query: 122.49.119.206
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
서비스명 : PIRANHA
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG840185
주소 : ì¸ì²œ ì—°ì˜êµ¬ 송ë„ë™ ì†¡ë„미ë˜ë¡œ 30 스ë§íŠ¸ë°¸ë¦¬ ì§ì&lsqauo;산업센터 C-2513
ìš°í¸ë²í˜¸ : 406-840
í• ë&lsqauo;¹ì¼ì : 20060605
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4주소ëŠ" ìœ„ì˜ ê´ë¦¬ëŒí–‰ìë¡œë¶í„° ì•„ë˜ì˜ 사용ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
ë„¤íŠ¸ì›Œí¬ ì´ë¦„ : PIRANHA-II
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG791975
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
í• ë&lsqauo;¹ë‚´ì— ë"±ë¡ì¼ : 20060623
ê³µê°œì—¬ë¶ : N
[ ë„¤íŠ¸ì›Œí¬ ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
ì „ììš°í¸ : hsw@piranha.co.kr
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Service Name : PIRANHA
Organization Name : Piranha Systems
Organization ID : ORG840185
Address : Songdomirae-ro 30, Song-Do Smart Valley C-2513, Songdo-dong Yeonsu-gu Incheon
Zip Code : 406-840
Registration Date : 20060605
[ Admin Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Tech Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Network Abuse Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Network Name : PIRANHA-II
Organization Name : PIRANHA
Organization ID : ORG791975
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
Registration Date : 20060623
Publishes : N
[ Technical Contact Information ]
Organization Name : PIRANHA
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
E-Mail : hsw@piranha.co.kr
ìƒê¸° ì •ë³´ëŠ" UTF-8 ì¸ì½"ë"©ë˜ì–´ 서비스ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
EUC-KR ì¸ì½"ë"© 서비스ëŠ" oldwhois.kisa.or.krì—ì„œ 서비스 ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
The above information is encoded with UTF-8
EUC-KR encoding WHOIS is being serviced in this URL:oldwhois.kisa.or.kr
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 199.195.212.145
Hi,
The IP 199.195.212.145 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 199.195.212.145:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 199.195.212.145"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=199.195.212.145?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 199.195.212.0 - 199.195.215.255
CIDR: 199.195.212.0/22
OriginAS: AS26272
NetName: FUC-US-1001
NetHandle: NET-199-195-212-0-1
Parent: NET-199-0-0-0-0
NetType: Direct Allocation
RegDate: 2012-06-04
Updated: 2012-06-04
Ref: http://whois.arin.net/rest/net/NET-199-195-212-0-1
OrgName: FortaTrust USA Corporation
OrgId: FUC-9
Address: 3701 NW 82 Ave.
City: Doral
StateProv: FL
PostalCode: 33166
Country: US
RegDate: 2012-03-08
Updated: 2012-06-05
Ref: http://whois.arin.net/rest/org/FUC-9
OrgTechHandle: IPADM602-ARIN
OrgTechName: IP Admin
OrgTechPhone: +1-954-369-0574
OrgTechEmail: ipadmin@fortatrust.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM602-ARIN
OrgAbuseHandle: IPADM602-ARIN
OrgAbuseName: IP Admin
OrgAbusePhone: +1-954-369-0574
OrgAbuseEmail: ipadmin@fortatrust.com
OrgAbuseRef: http://whois.arin.net/rest/poc/IPADM602-ARIN
OrgNOCHandle: IPADM602-ARIN
OrgNOCName: IP Admin
OrgNOCPhone: +1-954-369-0574
OrgNOCEmail: ipadmin@fortatrust.com
OrgNOCRef: http://whois.arin.net/rest/poc/IPADM602-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 199.195.212.145 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 199.195.212.145:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 199.195.212.145"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=199.195.212.145?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 199.195.212.0 - 199.195.215.255
CIDR: 199.195.212.0/22
OriginAS: AS26272
NetName: FUC-US-1001
NetHandle: NET-199-195-212-0-1
Parent: NET-199-0-0-0-0
NetType: Direct Allocation
RegDate: 2012-06-04
Updated: 2012-06-04
Ref: http://whois.arin.net/rest/net/NET-199-195-212-0-1
OrgName: FortaTrust USA Corporation
OrgId: FUC-9
Address: 3701 NW 82 Ave.
City: Doral
StateProv: FL
PostalCode: 33166
Country: US
RegDate: 2012-03-08
Updated: 2012-06-05
Ref: http://whois.arin.net/rest/org/FUC-9
OrgTechHandle: IPADM602-ARIN
OrgTechName: IP Admin
OrgTechPhone: +1-954-369-0574
OrgTechEmail: ipadmin@fortatrust.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM602-ARIN
OrgAbuseHandle: IPADM602-ARIN
OrgAbuseName: IP Admin
OrgAbusePhone: +1-954-369-0574
OrgAbuseEmail: ipadmin@fortatrust.com
OrgAbuseRef: http://whois.arin.net/rest/poc/IPADM602-ARIN
OrgNOCHandle: IPADM602-ARIN
OrgNOCName: IP Admin
OrgNOCPhone: +1-954-369-0574
OrgNOCEmail: ipadmin@fortatrust.com
OrgNOCRef: http://whois.arin.net/rest/poc/IPADM602-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 194.149.136.62
Hi,
The IP 194.149.136.62 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 194.149.136.62:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '194.149.136.0 - 194.149.137.255'
% Abuse contact for '194.149.136.0 - 194.149.137.255' is 'ukc@ukim.edu.mk'
inetnum: 194.149.136.0 - 194.149.137.255
netname: UKIM-FINKI-NET
descr: FACULTY OF COMPUTER SCIENCE AND ENGINEERING
country: MK
admin-c: VA834-RIPE
tech-c: KK2728-RIPE
status: ASSIGNED PA
mnt-by: UKIM-MNT
source: RIPE # Filtered
person: Kiril Kkiroski
address: Prirodno matematicki fakultet
address: Institut za informatika
address: Gazi Baba b.b.
address: 1000 Skopje, MACEDONIA
phone: +389 2 3 249 761
nic-hdl: KK2728-RIPE
mnt-by: UKIM-MNT
source: RIPE # Filtered
person: Vangel Ajanovski
address: Prirodno matematicki fakultet
address: Institut za informatika
address: Gazi Baba b.b.
address: 1000 Skopje, MACEDONIA
phone: +389 2 3 162 078
nic-hdl: VA834-RIPE
mnt-by: UKIM-MNT
source: RIPE # Filtered
% Information related to '194.149.128.0/19AS5379'
route: 194.149.128.0/19
descr: UKiM-IPv4
origin: AS5379
mnt-by: UKIM-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
The IP 194.149.136.62 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 194.149.136.62:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '194.149.136.0 - 194.149.137.255'
% Abuse contact for '194.149.136.0 - 194.149.137.255' is 'ukc@ukim.edu.mk'
inetnum: 194.149.136.0 - 194.149.137.255
netname: UKIM-FINKI-NET
descr: FACULTY OF COMPUTER SCIENCE AND ENGINEERING
country: MK
admin-c: VA834-RIPE
tech-c: KK2728-RIPE
status: ASSIGNED PA
mnt-by: UKIM-MNT
source: RIPE # Filtered
person: Kiril Kkiroski
address: Prirodno matematicki fakultet
address: Institut za informatika
address: Gazi Baba b.b.
address: 1000 Skopje, MACEDONIA
phone: +389 2 3 249 761
nic-hdl: KK2728-RIPE
mnt-by: UKIM-MNT
source: RIPE # Filtered
person: Vangel Ajanovski
address: Prirodno matematicki fakultet
address: Institut za informatika
address: Gazi Baba b.b.
address: 1000 Skopje, MACEDONIA
phone: +389 2 3 162 078
nic-hdl: VA834-RIPE
mnt-by: UKIM-MNT
source: RIPE # Filtered
% Information related to '194.149.128.0/19AS5379'
route: 194.149.128.0/19
descr: UKiM-IPv4
origin: AS5379
mnt-by: UKIM-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 202.70.136.74
Hi,
The IP 202.70.136.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.70.136.74:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 202.70.136.0 - 202.70.136.255
netname: DEPKES-ID
descr: Departemen Kesehatan
descr: Government / Direct Member IDNIC
descr: Jl. HR Rasuna Said BLK X5 Kav 4-9
descr: Kuningan Timur
descr: Jakarta
country: ID
admin-c: WT175-AP
tech-c: WT175-AP
remarks: Send Spam & Abuse Reports to: wasisto@telkom.co.id
mnt-by: MNT-APJII-ID
mnt-routes: MAINT-ID-DEPKES
status: ASSIGNED PORTABLE
changed: hm-changed@apnic.net 20100219
source: APNIC
person: Wasisto Tririno R
nic-hdl: WT175-AP
e-mail: wasisto@telkom.co.id
address: Menara Multimedia lt. 4
address: Jl Kebon Sirih No. 12
address: DKI Jakarta
phone: +62-21-70255504
fax-no: +62-21-3864004
country: ID
changed: hostmaster@idnic.net 20100212
mnt-by: MAINT-NEW
source: APNIC
Regards,
Fail2Ban
The IP 202.70.136.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.70.136.74:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 202.70.136.0 - 202.70.136.255
netname: DEPKES-ID
descr: Departemen Kesehatan
descr: Government / Direct Member IDNIC
descr: Jl. HR Rasuna Said BLK X5 Kav 4-9
descr: Kuningan Timur
descr: Jakarta
country: ID
admin-c: WT175-AP
tech-c: WT175-AP
remarks: Send Spam & Abuse Reports to: wasisto@telkom.co.id
mnt-by: MNT-APJII-ID
mnt-routes: MAINT-ID-DEPKES
status: ASSIGNED PORTABLE
changed: hm-changed@apnic.net 20100219
source: APNIC
person: Wasisto Tririno R
nic-hdl: WT175-AP
e-mail: wasisto@telkom.co.id
address: Menara Multimedia lt. 4
address: Jl Kebon Sirih No. 12
address: DKI Jakarta
phone: +62-21-70255504
fax-no: +62-21-3864004
country: ID
changed: hostmaster@idnic.net 20100212
mnt-by: MAINT-NEW
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 219.148.120.238
Hi,
The IP 219.148.120.238 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 219.148.120.238:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 219.148.0.0 - 219.148.159.255
netname: CHINANET-HE
descr: CHINANET hebei province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: BR3-AP
status: ALLOCATED NON-PORTABLE
changed: ipadmin@north.cn.net 20060526
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-HE
mnt-routes: MAINT-CHINANET-HE
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Bin Ren
nic-hdl: BR3-AP
e-mail: hostmaster@hbtele.com
address: NO.69 KunLun avenue, Shijiazhuang 050000 China
phone: +86-311-85211771
fax-no: +86-311-85202145
country: CN
changed: renbin@hbtele.com 20060606
mnt-by: MAINT-CHINANET-HE
source: APNIC
Regards,
Fail2Ban
The IP 219.148.120.238 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 219.148.120.238:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 219.148.0.0 - 219.148.159.255
netname: CHINANET-HE
descr: CHINANET hebei province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: BR3-AP
status: ALLOCATED NON-PORTABLE
changed: ipadmin@north.cn.net 20060526
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-HE
mnt-routes: MAINT-CHINANET-HE
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Bin Ren
nic-hdl: BR3-AP
e-mail: hostmaster@hbtele.com
address: NO.69 KunLun avenue, Shijiazhuang 050000 China
phone: +86-311-85211771
fax-no: +86-311-85202145
country: CN
changed: renbin@hbtele.com 20060606
mnt-by: MAINT-CHINANET-HE
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 115.168.43.158
Hi,
The IP 115.168.43.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.168.43.158:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-4]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 115.168.0.0 - 115.171.255.255
netname: CHINANET-CDMA
descr: CHINANET CDMA NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: CA67-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET
mnt-routes: MAINT-CHINANET
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20080825
source: APNIC
route: 115.168.0.0/14
descr: CHINANET CDMA NETWORK
origin: AS4809
mnt-by: MAINT-CHINANET
changed: chenyiq@gsta.com 20121212
source: APNIC
role: CHINANETFJ IP ADMIN
address: 7,East Street,Fuzhou,Fujian,PRC
country: CN
phone: +86-591-83309761
fax-no: +86-591-83371954
e-mail: fjnic@fjdcb.fz.fj.cn
remarks: send spam reports and abuse reports
remarks: to abuse@fjdcb.fz.fj.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: FH71-AP
tech-c: FH71-AP
nic-hdl: CA67-AP
remarks: www.fjtelecom.com
notify: fjnic@fjdcb.fz.fj.cn
mnt-by: MAINT-CHINANET-FJ
changed: fjnic@fjdcb.fz.fj.cn 20100108
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
The IP 115.168.43.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.168.43.158:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-4]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 115.168.0.0 - 115.171.255.255
netname: CHINANET-CDMA
descr: CHINANET CDMA NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: CA67-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET
mnt-routes: MAINT-CHINANET
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20080825
source: APNIC
route: 115.168.0.0/14
descr: CHINANET CDMA NETWORK
origin: AS4809
mnt-by: MAINT-CHINANET
changed: chenyiq@gsta.com 20121212
source: APNIC
role: CHINANETFJ IP ADMIN
address: 7,East Street,Fuzhou,Fujian,PRC
country: CN
phone: +86-591-83309761
fax-no: +86-591-83371954
e-mail: fjnic@fjdcb.fz.fj.cn
remarks: send spam reports and abuse reports
remarks: to abuse@fjdcb.fz.fj.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: FH71-AP
tech-c: FH71-AP
nic-hdl: CA67-AP
remarks: www.fjtelecom.com
notify: fjnic@fjdcb.fz.fj.cn
mnt-by: MAINT-CHINANET-FJ
changed: fjnic@fjdcb.fz.fj.cn 20100108
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
Wednesday, 17 July 2013
[Fail2Ban] SSH: banned 124.124.98.185
Hi,
The IP 124.124.98.185 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 124.124.98.185:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-7]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 124.124.0.0 - 124.124.255.255
netname: RCOM-STATIC
descr: This space is statically assigned.
country: IN
admin-c: AH406-AP
tech-c: AH406-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-IN-SN
changed: Antiabuse.support@relianceada.com 20100918
source: APNIC
route: 124.124.0.0/16
descr: Reliance Infocomm Ltd Internet Data centre
origin: AS18101
mnt-by: MAINT-IN-SN
changed: ip.nnoc@relianceinfo.com 20061215
source: APNIC
country: IN
role: Antiabuse Helpdesk
address: Reliance Communication Ltd
address: Antiabuse Helpdesk, 2nd Floor,
address: International Area , A Block
address: Dhirubai Ambani Knowledge City,
address: Thane Belapur Road, KoparKhairane,
address: Navi Mumbai - 400710
country: IN
phone: +91-22-30334141-5
fax-no: +91-22-30334949
e-mail: antiabuse.support@relianceada.com
remarks: Send spam & abuse Reports
remarks: include detailed information & time
remarks: to antiabuse.support@relianceada.com
admin-c: IH158-AP
tech-c: AH405-AP
nic-hdl: AH406-AP
notify: antiabuse.support@relianceada.com
mnt-by: MAINT-IN-SN
changed: antiabuse.support@relianceada.com 20080506
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
The IP 124.124.98.185 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 124.124.98.185:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-7]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 124.124.0.0 - 124.124.255.255
netname: RCOM-STATIC
descr: This space is statically assigned.
country: IN
admin-c: AH406-AP
tech-c: AH406-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-IN-SN
changed: Antiabuse.support@relianceada.com 20100918
source: APNIC
route: 124.124.0.0/16
descr: Reliance Infocomm Ltd Internet Data centre
origin: AS18101
mnt-by: MAINT-IN-SN
changed: ip.nnoc@relianceinfo.com 20061215
source: APNIC
country: IN
role: Antiabuse Helpdesk
address: Reliance Communication Ltd
address: Antiabuse Helpdesk, 2nd Floor,
address: International Area , A Block
address: Dhirubai Ambani Knowledge City,
address: Thane Belapur Road, KoparKhairane,
address: Navi Mumbai - 400710
country: IN
phone: +91-22-30334141-5
fax-no: +91-22-30334949
e-mail: antiabuse.support@relianceada.com
remarks: Send spam & abuse Reports
remarks: include detailed information & time
remarks: to antiabuse.support@relianceada.com
admin-c: IH158-AP
tech-c: AH405-AP
nic-hdl: AH406-AP
notify: antiabuse.support@relianceada.com
mnt-by: MAINT-IN-SN
changed: antiabuse.support@relianceada.com 20080506
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 221.181.42.1
Hi,
The IP 221.181.42.1 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.181.42.1:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-7]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 221.176.0.0 - 221.183.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
admin-c: JS686-AP
tech-c: CT74-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
remarks: ------------------------------
remarks: Please send abuse e-mail to
remarks: abuse@chinamobile.com
remarks: Please send probe e-mail to
remarks: security@chinamobile.com
remarks: -------------------------------
changed: hm-changed@apnic.net 20030909
changed: hm-changed@apnic.net 20030923
status: ALLOCATED PORTABLE
source: APNIC
route: 221.176.0.0/13
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20120215
source: APNIC
role: chinamobile tech
address: 29, Jinrong Ave.,Xicheng district
address: Beijing
country: CN
phone: +86 6600 6688
fax-no: +86 6600 6187
e-mail: hostmaster@chinamobile.com
remarks: send spam reports to spam@chinamobile.com
remarks: and abuse reports to abuse@chinamobile.com
remarks: Please include detailed information and
remarks: times in UTC
admin-c: HL1318-AP
tech-c: JS686-AP
nic-hdl: ct74-AP
notify: hostmaster@chinamobile.com
mnt-by: MAINT-cn-cmcc
changed: hostmaster@chinamobile.com 20091019
source: APNIC
person: Jinxia Sun
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
country: CN
phone: +86-10-66006688-1755
fax-no: +86-10-66006012
e-mail: sunjinxia@chinamobile.com
nic-hdl: JS686-AP
remarks: ------------------------------
remarks: Please send abuse e-mail to
remarks: abuse@chinamobile.com
remarks: Please send probe e-mail to
remarks: security@chinamobile.com
remarks: -------------------------------
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20030130
source: APNIC
Regards,
Fail2Ban
The IP 221.181.42.1 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.181.42.1:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-7]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 221.176.0.0 - 221.183.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
admin-c: JS686-AP
tech-c: CT74-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
remarks: ------------------------------
remarks: Please send abuse e-mail to
remarks: abuse@chinamobile.com
remarks: Please send probe e-mail to
remarks: security@chinamobile.com
remarks: -------------------------------
changed: hm-changed@apnic.net 20030909
changed: hm-changed@apnic.net 20030923
status: ALLOCATED PORTABLE
source: APNIC
route: 221.176.0.0/13
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20120215
source: APNIC
role: chinamobile tech
address: 29, Jinrong Ave.,Xicheng district
address: Beijing
country: CN
phone: +86 6600 6688
fax-no: +86 6600 6187
e-mail: hostmaster@chinamobile.com
remarks: send spam reports to spam@chinamobile.com
remarks: and abuse reports to abuse@chinamobile.com
remarks: Please include detailed information and
remarks: times in UTC
admin-c: HL1318-AP
tech-c: JS686-AP
nic-hdl: ct74-AP
notify: hostmaster@chinamobile.com
mnt-by: MAINT-cn-cmcc
changed: hostmaster@chinamobile.com 20091019
source: APNIC
person: Jinxia Sun
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
country: CN
phone: +86-10-66006688-1755
fax-no: +86-10-66006012
e-mail: sunjinxia@chinamobile.com
nic-hdl: JS686-AP
remarks: ------------------------------
remarks: Please send abuse e-mail to
remarks: abuse@chinamobile.com
remarks: Please send probe e-mail to
remarks: security@chinamobile.com
remarks: -------------------------------
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20030130
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 122.49.119.206
Hi,
The IP 122.49.119.206 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.49.119.206:
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query: 122.49.119.206
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
서비스명 : PIRANHA
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG840185
주소 : ì¸ì²œ ì—°ì˜êµ¬ 송ë„ë™ ì†¡ë„미ë˜ë¡œ 30 스ë§íŠ¸ë°¸ë¦¬ ì§ì&lsqauo;산업센터 C-2513
ìš°í¸ë²í˜¸ : 406-840
í• ë&lsqauo;¹ì¼ì : 20060605
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4주소ëŠ" ìœ„ì˜ ê´ë¦¬ëŒí–‰ìë¡œë¶í„° ì•„ë˜ì˜ 사용ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
ë„¤íŠ¸ì›Œí¬ ì´ë¦„ : PIRANHA-II
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG791975
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
í• ë&lsqauo;¹ë‚´ì— ë"±ë¡ì¼ : 20060623
ê³µê°œì—¬ë¶ : N
[ ë„¤íŠ¸ì›Œí¬ ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
ì „ììš°í¸ : hsw@piranha.co.kr
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Service Name : PIRANHA
Organization Name : Piranha Systems
Organization ID : ORG840185
Address : Songdomirae-ro 30, Song-Do Smart Valley C-2513, Songdo-dong Yeonsu-gu Incheon
Zip Code : 406-840
Registration Date : 20060605
[ Admin Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Tech Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Network Abuse Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Network Name : PIRANHA-II
Organization Name : PIRANHA
Organization ID : ORG791975
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
Registration Date : 20060623
Publishes : N
[ Technical Contact Information ]
Organization Name : PIRANHA
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
E-Mail : hsw@piranha.co.kr
ìƒê¸° ì •ë³´ëŠ" UTF-8 ì¸ì½"ë"©ë˜ì–´ 서비스ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
EUC-KR ì¸ì½"ë"© 서비스ëŠ" oldwhois.kisa.or.krì—ì„œ 서비스 ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
The above information is encoded with UTF-8
EUC-KR encoding WHOIS is being serviced in this URL:oldwhois.kisa.or.kr
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
The IP 122.49.119.206 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.49.119.206:
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query: 122.49.119.206
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
서비스명 : PIRANHA
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG840185
주소 : ì¸ì²œ ì—°ì˜êµ¬ 송ë„ë™ ì†¡ë„미ë˜ë¡œ 30 스ë§íŠ¸ë°¸ë¦¬ ì§ì&lsqauo;산업센터 C-2513
ìš°í¸ë²í˜¸ : 406-840
í• ë&lsqauo;¹ì¼ì : 20060605
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : í™ì†Œì—°
ì „í™"ë²í˜¸ : +82-2-1644-7568
ì „ììš°í¸ : noc@piranha.co.kr
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4주소ëŠ" ìœ„ì˜ ê´ë¦¬ëŒí–‰ìë¡œë¶í„° ì•„ë˜ì˜ 사용ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 122.49.112.0 - 122.49.119.255 (/21)
ë„¤íŠ¸ì›Œí¬ ì´ë¦„ : PIRANHA-II
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
기ê´ê³ ìœ ë²í˜¸ : ORG791975
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
í• ë&lsqauo;¹ë‚´ì— ë"±ë¡ì¼ : 20060623
ê³µê°œì—¬ë¶ : N
[ ë„¤íŠ¸ì›Œí¬ ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
기ê´ëª… : í"¼ë하ì&lsqauo;œìŠ¤í…œì¦
주소 : ì¸ì²œ 남구 주ì•ë™
ìš°í¸ë²í˜¸ : 402-200
ì „ììš°í¸ : hsw@piranha.co.kr
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Service Name : PIRANHA
Organization Name : Piranha Systems
Organization ID : ORG840185
Address : Songdomirae-ro 30, Song-Do Smart Valley C-2513, Songdo-dong Yeonsu-gu Incheon
Zip Code : 406-840
Registration Date : 20060605
[ Admin Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Tech Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
[ Network Abuse Contact Information ]
Name : So Yeon Hong
Phone : +82-2-1644-7568
E-Mail : noc@piranha.co.kr
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
IPv4 Address : 122.49.112.0 - 122.49.119.255 (/21)
Network Name : PIRANHA-II
Organization Name : PIRANHA
Organization ID : ORG791975
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
Registration Date : 20060623
Publishes : N
[ Technical Contact Information ]
Organization Name : PIRANHA
Address : Juan-dong Nam-gu INCHEON
Zip Code : 402-200
E-Mail : hsw@piranha.co.kr
ìƒê¸° ì •ë³´ëŠ" UTF-8 ì¸ì½"ë"©ë˜ì–´ 서비스ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
EUC-KR ì¸ì½"ë"© 서비스ëŠ" oldwhois.kisa.or.krì—ì„œ 서비스 ë˜ê³ ì습ë&lsqauo;ë&lsqauo;¤.
The above information is encoded with UTF-8
EUC-KR encoding WHOIS is being serviced in this URL:oldwhois.kisa.or.kr
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 64.120.180.234
Hi,
The IP 64.120.180.234 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 64.120.180.234:
[Querying whois.arin.net]
[Redirected to rwhois.hostnoc.net:4321]
[Querying rwhois.hostnoc.net]
[rwhois.hostnoc.net]
%rwhois V-1.5:003fff:00 rwhois.hostnoc.net (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:NET-64.120.180.232/29
network:Auth-Area:64.120.128.0/17
network:network:NET-64.120.180.232/29
network:block:64.120.180.232/29
network:organization;I:T0000009730
network:address:422 Prescott Avenue
network:city:Scranton
network:state:PA
network:postalcode:18510
network:country:US
network:admin-c;I:A9000000001
network:tech-c;I:T0000009730
network:abuse-c;I:I9000000001
network:created:20121231233101
network:Updated:20121231233101
%referral rwhois://root.rwhois.net:4321/auth-area=.
%ok
Regards,
Fail2Ban
The IP 64.120.180.234 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 64.120.180.234:
[Querying whois.arin.net]
[Redirected to rwhois.hostnoc.net:4321]
[Querying rwhois.hostnoc.net]
[rwhois.hostnoc.net]
%rwhois V-1.5:003fff:00 rwhois.hostnoc.net (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:NET-64.120.180.232/29
network:Auth-Area:64.120.128.0/17
network:network:NET-64.120.180.232/29
network:block:64.120.180.232/29
network:organization;I:T0000009730
network:address:422 Prescott Avenue
network:city:Scranton
network:state:PA
network:postalcode:18510
network:country:US
network:admin-c;I:A9000000001
network:tech-c;I:T0000009730
network:abuse-c;I:I9000000001
network:created:20121231233101
network:Updated:20121231233101
%referral rwhois://root.rwhois.net:4321/auth-area=.
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 183.232.32.24
Hi,
The IP 183.232.32.24 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 183.232.32.24:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 183.192.0.0 - 183.255.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
status: ALLOCATED PORTABLE
admin-c: LCJ-AP
tech-c: HL1318-AP
remarks: service provider
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20091108
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
source: APNIC
route: 183.224.0.0/12
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: lihaijun@chinamobile.com 20101208
source: APNIC
person: li changjun
address: 29 jinrong ave. xicheng district, beijing China
country: CN
phone: +86 52686688
e-mail: hostmaster@chinamobile.com
nic-hdl: lcj-ap
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20071010
source: APNIC
person: haijun li
nic-hdl: HL1318-AP
e-mail: hostmaster@chinamobile.com
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 10 66006688
fax-no: +86 10 52616187
country: CN
changed: hostmaster@chinamobile.com 20110824
mnt-by: MAINT-CN-CMCC
source: APNIC
Regards,
Fail2Ban
The IP 183.232.32.24 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 183.232.32.24:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-3]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 183.192.0.0 - 183.255.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
status: ALLOCATED PORTABLE
admin-c: LCJ-AP
tech-c: HL1318-AP
remarks: service provider
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20091108
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
source: APNIC
route: 183.224.0.0/12
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: lihaijun@chinamobile.com 20101208
source: APNIC
person: li changjun
address: 29 jinrong ave. xicheng district, beijing China
country: CN
phone: +86 52686688
e-mail: hostmaster@chinamobile.com
nic-hdl: lcj-ap
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20071010
source: APNIC
person: haijun li
nic-hdl: HL1318-AP
e-mail: hostmaster@chinamobile.com
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 10 66006688
fax-no: +86 10 52616187
country: CN
changed: hostmaster@chinamobile.com 20110824
mnt-by: MAINT-CN-CMCC
source: APNIC
Regards,
Fail2Ban
Tuesday, 16 July 2013
[Fail2Ban] SSH: banned 213.149.117.244
Hi,
The IP 213.149.117.244 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 213.149.117.244:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '213.149.117.240 - 213.149.117.255'
inetnum: 213.149.117.240 - 213.149.117.255
netname: InternetCG
descr: Wireless Data Centar
country: me
admin-c: VR3145-RIPE
tech-c: VR3145-RIPE
status: assigned pa
mnt-by: AS8585-MNT
source: RIPE # Filtered
person: Vesna Radusinovic
address: Bul. Sv. Petra Cetinjskog br.3
phone: +38281432122
nic-hdl: VR3145-RIPE
mnt-by: AS8585-MNT
source: RIPE # Filtered
% Information related to '213.149.96.0/19AS8585'
route: 213.149.96.0/19
descr: Internet Crna Gora
origin: AS8585
mnt-by: AS8585-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
The IP 213.149.117.244 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 213.149.117.244:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '213.149.117.240 - 213.149.117.255'
inetnum: 213.149.117.240 - 213.149.117.255
netname: InternetCG
descr: Wireless Data Centar
country: me
admin-c: VR3145-RIPE
tech-c: VR3145-RIPE
status: assigned pa
mnt-by: AS8585-MNT
source: RIPE # Filtered
person: Vesna Radusinovic
address: Bul. Sv. Petra Cetinjskog br.3
phone: +38281432122
nic-hdl: VR3145-RIPE
mnt-by: AS8585-MNT
source: RIPE # Filtered
% Information related to '213.149.96.0/19AS8585'
route: 213.149.96.0/19
descr: Internet Crna Gora
origin: AS8585
mnt-by: AS8585-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 190.6.166.84
Hi,
The IP 190.6.166.84 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 190.6.166.84:
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-07-16 23:41:20 (BRT -03:00)
inetnum: 190.6.160/20
status: allocated
aut-num: AS27845
abuse-c: CAG23
owner: Empresa de Recursos Tecnologicos S.A E.S.P
ownerid: CO-ERTE-LACNIC
responsible: Becerra, Leonardo
address: Av Vasquez Cobo, 23N-47, --,
address: 0572 - Cali - VA
country: CO
phone: +57 2 6202020 []
owner-c: ERT2
tech-c: CAG23
abuse-c: CAG23
inetrev: 190.6.160/21
nserver: NS1.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS2.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS3.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: FOX.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
created: 20060809
changed: 20080225
nic-hdl: CAG23
person: Carlos Andres Pulgarin Gomez
e-mail: cpulgarin@ERT.NET.CO
address: Av. Vasquez Cobo 23N-47, 57, 6202078
address: 00000 - Cali - VA
country: CO
phone: +57 2 6202020 [2078]
created: 20080225
changed: 20120411
nic-hdl: ERT2
person: ERT - Empresa de Recursos Tecnologicos
e-mail: lbecerra@ERT.NET.CO
address: Avenida Vasques Cobo Nro. 23 N 47, 23, Edificio Ant
address: 0572 - Cali - Va
country: CO
phone: +57 2 6202020 [2045]
created: 20060315
changed: 20090219
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
The IP 190.6.166.84 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 190.6.166.84:
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-07-16 23:41:20 (BRT -03:00)
inetnum: 190.6.160/20
status: allocated
aut-num: AS27845
abuse-c: CAG23
owner: Empresa de Recursos Tecnologicos S.A E.S.P
ownerid: CO-ERTE-LACNIC
responsible: Becerra, Leonardo
address: Av Vasquez Cobo, 23N-47, --,
address: 0572 - Cali - VA
country: CO
phone: +57 2 6202020 []
owner-c: ERT2
tech-c: CAG23
abuse-c: CAG23
inetrev: 190.6.160/21
nserver: NS1.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS2.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: NS3.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
nserver: FOX.ERT.COM.CO
nsstat: 20130715 AA
nslastaa: 20130715
created: 20060809
changed: 20080225
nic-hdl: CAG23
person: Carlos Andres Pulgarin Gomez
e-mail: cpulgarin@ERT.NET.CO
address: Av. Vasquez Cobo 23N-47, 57, 6202078
address: 00000 - Cali - VA
country: CO
phone: +57 2 6202020 [2078]
created: 20080225
changed: 20120411
nic-hdl: ERT2
person: ERT - Empresa de Recursos Tecnologicos
e-mail: lbecerra@ERT.NET.CO
address: Avenida Vasques Cobo Nro. 23 N 47, 23, Edificio Ant
address: 0572 - Cali - Va
country: CO
phone: +57 2 6202020 [2045]
created: 20060315
changed: 20090219
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 112.124.3.53
Hi,
The IP 112.124.3.53 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 112.124.3.53:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 112.124.0.0 - 112.127.255.255
netname: ALIBABA-CN-NET
descr: Alibaba (China) Technology Co., Ltd.
descr: No.699, Wangshang RD., Hangzhou, China
country: CN
admin-c: ZM678-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090122
status: ALLOCATED PORTABLE
source: APNIC
person: Shuo Yu
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: shuo.yus@alibaba-inc.com
e-mail: shuo.yus@aliyun-inc.com
nic-hdl: ZM678-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20110614
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: guoxin.gao@aliyun-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130705
source: APNIC
person: security trouble
e-mail: cloud-cc-sqcloud@list.alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wenâ™er Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
changed: ipas@cnnic.cn 20130708
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: guowei.pangw@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130709
source: APNIC
Regards,
Fail2Ban
The IP 112.124.3.53 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 112.124.3.53:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-6]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 112.124.0.0 - 112.127.255.255
netname: ALIBABA-CN-NET
descr: Alibaba (China) Technology Co., Ltd.
descr: No.699, Wangshang RD., Hangzhou, China
country: CN
admin-c: ZM678-AP
tech-c: ZM877-AP
tech-c: ZM876-AP
tech-c: ZM875-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090122
status: ALLOCATED PORTABLE
source: APNIC
person: Shuo Yu
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: shuo.yus@alibaba-inc.com
e-mail: shuo.yus@aliyun-inc.com
nic-hdl: ZM678-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20110614
source: APNIC
person: Guoxin Gao
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022600
fax-no: +86-0571-85022600
e-mail: guoxin.gao@aliyun-inc.com
nic-hdl: ZM875-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130705
source: APNIC
person: security trouble
e-mail: cloud-cc-sqcloud@list.alibaba-inc.com
address: 5th,floor,Building D,the West Lake International Plaza of S&T,391#Wenâ™er Road
address: Hangzhou, Zhejiang, China
phone: +86-0571-85022600
country: CN
mnt-by: MAINT-CNNIC-AP
nic-hdl: ZM876-AP
changed: ipas@cnnic.cn 20130708
source: APNIC
person: Guowei Pan
address: 5F, Builing D, the West Lake International Plaza of S&T
address: No.391 Wen'er Road, Hangzhou City
address: Zhejiang, China, 310099
country: CN
phone: +86-0571-85022088-30763
fax-no: +86-0571-85022600
e-mail: guowei.pangw@alibaba-inc.com
nic-hdl: ZM877-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.net 20130709
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 59.66.31.144
Hi,
The IP 59.66.31.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 59.66.31.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-5]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 59.66.0.0 - 59.66.63.255
netname: TSINGHUA-CN
descr: ~{Ge;*4sQ'~}
descr: Tsinghua University
descr: Beijing 100084, China
country: CN
remarks: conn-id BJ000013
admin-c: THU-AP
tech-c: THU-AP
tech-c: CER-AP
remarks: origin AS4538
changed: hostmaster@net.edu.cn 20050112
mnt-by: MAINT-CERNET-AP
status: ASSIGNED NON-PORTABLE
source: APNIC
role: TUNET Netsupport
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4859
fax-no: +86-10-6278-5933
e-mail: tunet-ip@net.edu.cn
remarks: tunet-support@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: THU-AP
mnt-by: MAINT-CERNET-AP
changed: hm-changed@net.edu.cn 20021121
source: APNIC
changed: hm-changed@apnic.net 20111114
role: CERNET Helpdesk
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4049
fax-no: +86-10-6278-5933
e-mail: cernet-helpdesk-ip@net.edu.cn
remarks: abuse@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: CER-AP
remarks: Point of Contact for admin-c
mnt-by: MAINT-CERNET-AP
changed: cernet-helpdesk-ip@net.edu.cn 20010903
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
The IP 59.66.31.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 59.66.31.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-5]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 59.66.0.0 - 59.66.63.255
netname: TSINGHUA-CN
descr: ~{Ge;*4sQ'~}
descr: Tsinghua University
descr: Beijing 100084, China
country: CN
remarks: conn-id BJ000013
admin-c: THU-AP
tech-c: THU-AP
tech-c: CER-AP
remarks: origin AS4538
changed: hostmaster@net.edu.cn 20050112
mnt-by: MAINT-CERNET-AP
status: ASSIGNED NON-PORTABLE
source: APNIC
role: TUNET Netsupport
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4859
fax-no: +86-10-6278-5933
e-mail: tunet-ip@net.edu.cn
remarks: tunet-support@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: THU-AP
mnt-by: MAINT-CERNET-AP
changed: hm-changed@net.edu.cn 20021121
source: APNIC
changed: hm-changed@apnic.net 20111114
role: CERNET Helpdesk
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4049
fax-no: +86-10-6278-5933
e-mail: cernet-helpdesk-ip@net.edu.cn
remarks: abuse@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: CER-AP
remarks: Point of Contact for admin-c
mnt-by: MAINT-CERNET-AP
changed: cernet-helpdesk-ip@net.edu.cn 20010903
source: APNIC
changed: hm-changed@apnic.net 20111114
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 178.92.251.31
Hi,
The IP 178.92.251.31 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 178.92.251.31:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '178.92.0.0 - 178.92.255.255'
inetnum: 178.92.0.0 - 178.92.255.255
netname: UKRTELNET-ADSL
descr: NCC#2011011865 Approved IP assignment
country: ua
remarks: E-mail for SPAM and abuse postmaster@ukrtel.net
admin-c: ARM42-RIPE
tech-c: ARM42-RIPE
status: ASSIGNED PA
mnt-by: AS6849-MNT
source: RIPE # Filtered
person: Remiga Alexander
address: JSC UKRTELECOM
address: 18, Shevchenko blvd
address: Ukraine, Kiev
phone: +380 (44) 230-9024
nic-hdl: ARM42-RIPE
mnt-by: AS6849-MNT
source: RIPE # Filtered
% Information related to '178.92.192.0/18AS6849'
route: 178.92.192.0/18
descr: AGGREGATE BLOCK FOR UKRTELECOM
origin: AS6849
mnt-by: AS6849-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
The IP 178.92.251.31 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 178.92.251.31:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '178.92.0.0 - 178.92.255.255'
inetnum: 178.92.0.0 - 178.92.255.255
netname: UKRTELNET-ADSL
descr: NCC#2011011865 Approved IP assignment
country: ua
remarks: E-mail for SPAM and abuse postmaster@ukrtel.net
admin-c: ARM42-RIPE
tech-c: ARM42-RIPE
status: ASSIGNED PA
mnt-by: AS6849-MNT
source: RIPE # Filtered
person: Remiga Alexander
address: JSC UKRTELECOM
address: 18, Shevchenko blvd
address: Ukraine, Kiev
phone: +380 (44) 230-9024
nic-hdl: ARM42-RIPE
mnt-by: AS6849-MNT
source: RIPE # Filtered
% Information related to '178.92.192.0/18AS6849'
route: 178.92.192.0/18
descr: AGGREGATE BLOCK FOR UKRTELECOM
origin: AS6849
mnt-by: AS6849-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS1)
Regards,
Fail2Ban
Monday, 15 July 2013
[Fail2Ban] SSH: banned 67.18.178.210
Hi,
The IP 67.18.178.210 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 67.18.178.210:
[Querying whois.arin.net]
[Redirected to rwhois.theplanet.com:4321]
[Querying rwhois.theplanet.com]
[rwhois.theplanet.com]
%rwhois V-1.5:003fff:00 rwhois.softlayer.com (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:NETBLK-THEPLANET-BLK-11
network:Auth-Area:67.18.0.0/15
network:Network-Name:TPIS-BLK-67-18-178-0
network:IP-Network:67.18.178.208/29
network:IP-Network-Block:67.18.178.208 - 67.18.178.215
network:Organization;I:web solutions of america
network:Street-Address:N/A
network:City:Clearwater
network:State:FL
network:Postal-Code:33755
network:Country-Code:USA
network:Tech-Contact;I:abuse@theplanet.com
network:Admin-Contact;I:abuse@theplanet.com
network:Created:20090924
network:Updated:20130611
network:Class-Name:network
network:ID:NETBLK-SOFTLAYER.67.18.0.0/15
network:Auth-Area:67.18.0.0/15
network:Network-Name:SOFTLAYER-67.18.0.0
network:IP-Network:67.18.178.0/24
network:IP-Network-Block:67.18.178.0-67.18.178.255
network:Organization;I:SoftLayer
network:Street-Address:4849 Alpha Road
network:City:Dallas
network:State:TX
network:Postal-Code:75244
network:Country-Code:US
network:Tech-Contact;I:sysadmins@softlayer.com
network:Abuse-Contact;I:abuse@softlayer.com
network:Admin-Contact;I:IPADM258-ARIN
network:Created:2011-02-17 15:08:31
network:Updated-By:ipadmin@softlayer.com
%ok
Regards,
Fail2Ban
The IP 67.18.178.210 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 67.18.178.210:
[Querying whois.arin.net]
[Redirected to rwhois.theplanet.com:4321]
[Querying rwhois.theplanet.com]
[rwhois.theplanet.com]
%rwhois V-1.5:003fff:00 rwhois.softlayer.com (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:NETBLK-THEPLANET-BLK-11
network:Auth-Area:67.18.0.0/15
network:Network-Name:TPIS-BLK-67-18-178-0
network:IP-Network:67.18.178.208/29
network:IP-Network-Block:67.18.178.208 - 67.18.178.215
network:Organization;I:web solutions of america
network:Street-Address:N/A
network:City:Clearwater
network:State:FL
network:Postal-Code:33755
network:Country-Code:USA
network:Tech-Contact;I:abuse@theplanet.com
network:Admin-Contact;I:abuse@theplanet.com
network:Created:20090924
network:Updated:20130611
network:Class-Name:network
network:ID:NETBLK-SOFTLAYER.67.18.0.0/15
network:Auth-Area:67.18.0.0/15
network:Network-Name:SOFTLAYER-67.18.0.0
network:IP-Network:67.18.178.0/24
network:IP-Network-Block:67.18.178.0-67.18.178.255
network:Organization;I:SoftLayer
network:Street-Address:4849 Alpha Road
network:City:Dallas
network:State:TX
network:Postal-Code:75244
network:Country-Code:US
network:Tech-Contact;I:sysadmins@softlayer.com
network:Abuse-Contact;I:abuse@softlayer.com
network:Admin-Contact;I:IPADM258-ARIN
network:Created:2011-02-17 15:08:31
network:Updated-By:ipadmin@softlayer.com
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 192.154.103.238
Hi,
The IP 192.154.103.238 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 192.154.103.238:
[Querying whois.arin.net]
[Redirected to support.gorillaservers.com:4321]
[Querying support.gorillaservers.com]
[support.gorillaservers.com]
%rwhois V-1.0,V-1.5:00090h:00 support.gorillaservers.com (Ubersmith RWhois Server V-2.3.0)
autharea=192.154.96.0/20
xautharea=192.154.96.0/20
network:Class-Name:network
network:Auth-Area:192.154.96.0/20
network:ID:NET-1465.192.154.103.224/28
network:Network-Name:192.154.103.225/28
network:IP-Network:192.154.103.224/28
network:IP-Network-Block:192.154.103.224 - 192.154.103.239
network:Org-Name:xoSPHERE, Inc.
network:Street-Address:
network:City:
network:State:
network:Postal-Code:
network:Country-Code:US
network:Tech-Contact:MAINT-1465.192.154.103.224/28
network:Created:20130115020331000
network:Updated:20130115020331000
network:Updated-By:arin-noc@GorillaServers.com
contact:POC-Name:Network Administrator
contact:POC-Email:arin-noc@GorillaServers.com
contact:POC-Phone:
contact:Tech-Name:Network Administrator
contact:Tech-Email:arin-noc@GorillaServers.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse Department
contact:Abuse-Email:arin-abuse@GorillaServers.com
%ok
Regards,
Fail2Ban
The IP 192.154.103.238 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 192.154.103.238:
[Querying whois.arin.net]
[Redirected to support.gorillaservers.com:4321]
[Querying support.gorillaservers.com]
[support.gorillaservers.com]
%rwhois V-1.0,V-1.5:00090h:00 support.gorillaservers.com (Ubersmith RWhois Server V-2.3.0)
autharea=192.154.96.0/20
xautharea=192.154.96.0/20
network:Class-Name:network
network:Auth-Area:192.154.96.0/20
network:ID:NET-1465.192.154.103.224/28
network:Network-Name:192.154.103.225/28
network:IP-Network:192.154.103.224/28
network:IP-Network-Block:192.154.103.224 - 192.154.103.239
network:Org-Name:xoSPHERE, Inc.
network:Street-Address:
network:City:
network:State:
network:Postal-Code:
network:Country-Code:US
network:Tech-Contact:MAINT-1465.192.154.103.224/28
network:Created:20130115020331000
network:Updated:20130115020331000
network:Updated-By:arin-noc@GorillaServers.com
contact:POC-Name:Network Administrator
contact:POC-Email:arin-noc@GorillaServers.com
contact:POC-Phone:
contact:Tech-Name:Network Administrator
contact:Tech-Email:arin-noc@GorillaServers.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse Department
contact:Abuse-Email:arin-abuse@GorillaServers.com
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 37.153.209.2
Hi,
The IP 37.153.209.2 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 37.153.209.2:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '37.153.192.0 - 37.153.255.255'
% Abuse contact for '37.153.192.0 - 37.153.255.255' is 'abuse@routit.nl'
inetnum: 37.153.192.0 - 37.153.255.255
org: ORG-RB1-RIPE
netname: NL-ROUTIT-20120313
descr: Routit BV
country: NL
admin-c: LB6073-RIPE
tech-c: LB6073-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ROUTIT-MNT
mnt-routes: ROUTIT-MNT
source: RIPE # Filtered
organisation: ORG-RB1-RIPE
org-name: Routit BV
org-type: LIR
address: RoutIT BV
address: Maxwellstraat 51
address: 6716BX
address: EDE
address: NETHERLANDS
phone: +31884372636
fax-no: +31884372639
mnt-ref: ROUTIT-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
admin-c: MS629
admin-c: WH629-RIPE
admin-c: BB1605-RIPE
admin-c: JDB13-RIPE
abuse-c: RTT1
source: RIPE # Filtered
person: Leon Boshuizen
address: Routit BV
address: Maxwellstraat 15
address: 6716BN Ede
address: The Netherlands
phone: +31-88-4372636
fax-no: +31-88-4372639
nic-hdl: LB6073-RIPE
mnt-by: ROUTIT-MNT
source: RIPE # Filtered
% Information related to '37.153.192.0/18AS28685'
route: 37.153.192.0/18
descr: RoutIT B.V.
origin: AS28685
mnt-by: ROUTIT-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS4)
Regards,
Fail2Ban
The IP 37.153.209.2 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 37.153.209.2:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '37.153.192.0 - 37.153.255.255'
% Abuse contact for '37.153.192.0 - 37.153.255.255' is 'abuse@routit.nl'
inetnum: 37.153.192.0 - 37.153.255.255
org: ORG-RB1-RIPE
netname: NL-ROUTIT-20120313
descr: Routit BV
country: NL
admin-c: LB6073-RIPE
tech-c: LB6073-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ROUTIT-MNT
mnt-routes: ROUTIT-MNT
source: RIPE # Filtered
organisation: ORG-RB1-RIPE
org-name: Routit BV
org-type: LIR
address: RoutIT BV
address: Maxwellstraat 51
address: 6716BX
address: EDE
address: NETHERLANDS
phone: +31884372636
fax-no: +31884372639
mnt-ref: ROUTIT-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
admin-c: MS629
admin-c: WH629-RIPE
admin-c: BB1605-RIPE
admin-c: JDB13-RIPE
abuse-c: RTT1
source: RIPE # Filtered
person: Leon Boshuizen
address: Routit BV
address: Maxwellstraat 15
address: 6716BN Ede
address: The Netherlands
phone: +31-88-4372636
fax-no: +31-88-4372639
nic-hdl: LB6073-RIPE
mnt-by: ROUTIT-MNT
source: RIPE # Filtered
% Information related to '37.153.192.0/18AS28685'
route: 37.153.192.0/18
descr: RoutIT B.V.
origin: AS28685
mnt-by: ROUTIT-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.66.3 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 173.45.249.132
Hi,
The IP 173.45.249.132 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 173.45.249.132:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 173.45.249.132"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=173.45.249.132?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 173.45.224.0 - 173.45.255.255
CIDR: 173.45.224.0/19
OriginAS: AS12200
NetName: SLICE-STL-SH
NetHandle: NET-173-45-224-0-1
Parent: NET-173-0-0-0-0
NetType: Direct Allocation
RegDate: 2008-10-13
Updated: 2013-04-09
Ref: http://whois.arin.net/rest/net/NET-173-45-224-0-1
OrgName: Rackspace Hosting
OrgId: RACKS-8
Address: 5000 Walzem Road
City: San Antonio
StateProv: TX
PostalCode: 78218
Country: US
RegDate: 2010-03-29
Updated: 2011-11-30
Ref: http://whois.arin.net/rest/org/RACKS-8
OrgTechHandle: IPADM17-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM17-ARIN
OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName: Abuse Desk
OrgAbusePhone: +1-210-312-4000
OrgAbuseEmail: abuse@rackspace.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE45-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 173.45.249.132 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 173.45.249.132:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 173.45.249.132"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=173.45.249.132?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 173.45.224.0 - 173.45.255.255
CIDR: 173.45.224.0/19
OriginAS: AS12200
NetName: SLICE-STL-SH
NetHandle: NET-173-45-224-0-1
Parent: NET-173-0-0-0-0
NetType: Direct Allocation
RegDate: 2008-10-13
Updated: 2013-04-09
Ref: http://whois.arin.net/rest/net/NET-173-45-224-0-1
OrgName: Rackspace Hosting
OrgId: RACKS-8
Address: 5000 Walzem Road
City: San Antonio
StateProv: TX
PostalCode: 78218
Country: US
RegDate: 2010-03-29
Updated: 2011-11-30
Ref: http://whois.arin.net/rest/org/RACKS-8
OrgTechHandle: IPADM17-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM17-ARIN
OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName: Abuse Desk
OrgAbusePhone: +1-210-312-4000
OrgAbuseEmail: abuse@rackspace.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE45-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
Sunday, 14 July 2013
[Fail2Ban] SSH: banned 220.164.144.135
Hi,
The IP 220.164.144.135 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 220.164.144.135:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 220.163.0.0 - 220.165.255.255
netname: CHINANET-YN
descr: CHINANET yunnan province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CH93-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-YN
changed: hostmaster@ns.chinanet.cn.net 20010711
status: ALLOCATED NON-PORTABLE
changed: hm-changed@apnic.net 20081210
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
The IP 220.164.144.135 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 220.164.144.135:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 220.163.0.0 - 220.165.255.255
netname: CHINANET-YN
descr: CHINANET yunnan province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CH93-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-YN
changed: hostmaster@ns.chinanet.cn.net 20010711
status: ALLOCATED NON-PORTABLE
changed: hm-changed@apnic.net 20081210
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 220.161.148.178
Hi,
The IP 220.161.148.178 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 220.161.148.178:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 220.160.0.0 - 220.162.255.255
netname: CHINANET-FJ
descr: CHINANET Fujian province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CA67-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-FJ
changed: hostmaster@ns.chinanet.cn.net 20021025
status: ALLOCATED NON-PORTABLE
source: APNIC
role: CHINANETFJ IP ADMIN
address: 7,East Street,Fuzhou,Fujian,PRC
country: CN
phone: +86-591-83309761
fax-no: +86-591-83371954
e-mail: fjnic@fjdcb.fz.fj.cn
remarks: send spam reports and abuse reports
remarks: to abuse@fjdcb.fz.fj.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: FH71-AP
tech-c: FH71-AP
nic-hdl: CA67-AP
remarks: www.fjtelecom.com
notify: fjnic@fjdcb.fz.fj.cn
mnt-by: MAINT-CHINANET-FJ
changed: fjnic@fjdcb.fz.fj.cn 20100108
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
The IP 220.161.148.178 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 220.161.148.178:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 220.160.0.0 - 220.162.255.255
netname: CHINANET-FJ
descr: CHINANET Fujian province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CA67-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-FJ
changed: hostmaster@ns.chinanet.cn.net 20021025
status: ALLOCATED NON-PORTABLE
source: APNIC
role: CHINANETFJ IP ADMIN
address: 7,East Street,Fuzhou,Fujian,PRC
country: CN
phone: +86-591-83309761
fax-no: +86-591-83371954
e-mail: fjnic@fjdcb.fz.fj.cn
remarks: send spam reports and abuse reports
remarks: to abuse@fjdcb.fz.fj.cn
remarks: Please include detailed information and
remarks: times in UTC
admin-c: FH71-AP
tech-c: FH71-AP
nic-hdl: CA67-AP
remarks: www.fjtelecom.com
notify: fjnic@fjdcb.fz.fj.cn
mnt-by: MAINT-CHINANET-FJ
changed: fjnic@fjdcb.fz.fj.cn 20100108
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
Regards,
Fail2Ban
Subscribe to:
Posts (Atom)