Hi,
The IP 221.12.29.170 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.12.29.170:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '221.12.29.168 - 221.12.29.175'
inetnum: 221.12.29.168 - 221.12.29.175
netname: HANGZHOUBANSHANDIANCHANGHZ
country: CN
descr: HANGZHOUBANSHANDIANCHANG,HANGZHOU,ZHEJIANG
admin-c: JQ16-AP
tech-c: JQ16-AP
status: ASSIGNED NON-PORTABLE
changed: ipmaster@zjnetcom.com 20100903
mnt-by: MAINT-CNCGROUP-ZJ
source: APNIC
person: Jianhuaq Qian
nic-hdl: JQ16-AP
e-mail: zj_ipmaster@126.com
address: No 1336,BinAn Road,Hangzhou, Zhejiang,China
phone: +86-571-28868063
fax-no: +86-571-28868069
country: CN
changed: zj_ipmaster@126.com 20130709
mnt-by: MAINT-CNCGROUP-ZJ
source: APNIC
% Information related to '221.12.0.0/17AS4837'
route: 221.12.0.0/17
descr: CNC Group CHINA169 Zhejiang Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
Sunday, 10 November 2013
[Fail2Ban] SSH: banned 92.42.248.54
Hi,
The IP 92.42.248.54 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 92.42.248.54:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.42.248.0 - 92.42.255.255'
% Abuse contact for '92.42.248.0 - 92.42.255.255' is 'abuse@oriontelekom.rs'
inetnum: 92.42.248.0 - 92.42.255.255
netname: RS-ORIONTELEKOM-20071231
descr: Drustvo za telekomunikacije Orion telekom doo Beograd, Gandijeva 76a
country: RS
org: ORG-MW1-RIPE
admin-c: VZ525-RIPE
tech-c: OTN7-RIPE
status: ALLOCATED PA
remarks: Please send abuse reports to abuse@oriontelekom.rs
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ORIONTELEKOM-MNT
mnt-domains: ORIONTELEKOM-MNT
mnt-routes: ORIONTELEKOM-MNT
source: RIPE # Filtered
organisation: ORG-MW1-RIPE
org-name: Drustvo za telekomunikacije Orion telekom doo Beograd, Gandijeva 76a
org-type: LIR
address: Orion Telekom
address: Jelena Lalic
address: Gandijeva 76a
address: 11070
address: Belgrade
address: SERBIA
phone: +381 11 2228 333
fax-no: +381 11 2228 334
remarks: Please send abuse reports to abuse@oriontelekom.rs
mnt-ref: RIPE-NCC-HM-MNT
mnt-ref: ORIONTELEKOM-MNT
mnt-by: RIPE-NCC-HM-MNT
tech-c: OTN7-RIPE
admin-c: OTN7-RIPE
admin-c: BL3549-RIPE
admin-c: TERZ1-RIPE
admin-c: VZ525-RIPE
admin-c: ZA1048-RIPE
abuse-c: OTN7-RIPE
source: RIPE # Filtered
role: Orion Telekom NOC
address: Orion Telekom
address: Gandijeva 76a, Belgrade, Serbia
phone: +381 11 2228 388
fax-no: +381 11 2228 334
remarks: *******************************************************************
remarks: Please send abuse reports to abuse@oriontelekom.rs
remarks: *******************************************************************
abuse-mailbox: abuse@oriontelekom.rs
admin-c: TERZ1-RIPE
admin-c: BL3549-RIPE
admin-c: ZA1048-RIPE
tech-c: VG1799-RIPE
nic-hdl: OTN7-RIPE
mnt-by: ORIONTELEKOM-MNT
source: RIPE # Filtered
person: Vladimir Zolnjan
address: Orion Telekom NOC
address: Gandijeva 76a
address: Belgrade, Serbia
phone: +381 11 2228 388
nic-hdl: VZ525-RIPE
mnt-by: ORIONTELEKOM-MNT
source: RIPE # Filtered
% Information related to '92.42.248.0/22AS9125'
route: 92.42.248.0/22
descr: Orion Telekom ISP IP network
origin: AS9125
mnt-by: ORIONTELEKOM-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.69 (WHOIS2)
Regards,
Fail2Ban
The IP 92.42.248.54 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 92.42.248.54:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.42.248.0 - 92.42.255.255'
% Abuse contact for '92.42.248.0 - 92.42.255.255' is 'abuse@oriontelekom.rs'
inetnum: 92.42.248.0 - 92.42.255.255
netname: RS-ORIONTELEKOM-20071231
descr: Drustvo za telekomunikacije Orion telekom doo Beograd, Gandijeva 76a
country: RS
org: ORG-MW1-RIPE
admin-c: VZ525-RIPE
tech-c: OTN7-RIPE
status: ALLOCATED PA
remarks: Please send abuse reports to abuse@oriontelekom.rs
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ORIONTELEKOM-MNT
mnt-domains: ORIONTELEKOM-MNT
mnt-routes: ORIONTELEKOM-MNT
source: RIPE # Filtered
organisation: ORG-MW1-RIPE
org-name: Drustvo za telekomunikacije Orion telekom doo Beograd, Gandijeva 76a
org-type: LIR
address: Orion Telekom
address: Jelena Lalic
address: Gandijeva 76a
address: 11070
address: Belgrade
address: SERBIA
phone: +381 11 2228 333
fax-no: +381 11 2228 334
remarks: Please send abuse reports to abuse@oriontelekom.rs
mnt-ref: RIPE-NCC-HM-MNT
mnt-ref: ORIONTELEKOM-MNT
mnt-by: RIPE-NCC-HM-MNT
tech-c: OTN7-RIPE
admin-c: OTN7-RIPE
admin-c: BL3549-RIPE
admin-c: TERZ1-RIPE
admin-c: VZ525-RIPE
admin-c: ZA1048-RIPE
abuse-c: OTN7-RIPE
source: RIPE # Filtered
role: Orion Telekom NOC
address: Orion Telekom
address: Gandijeva 76a, Belgrade, Serbia
phone: +381 11 2228 388
fax-no: +381 11 2228 334
remarks: *******************************************************************
remarks: Please send abuse reports to abuse@oriontelekom.rs
remarks: *******************************************************************
abuse-mailbox: abuse@oriontelekom.rs
admin-c: TERZ1-RIPE
admin-c: BL3549-RIPE
admin-c: ZA1048-RIPE
tech-c: VG1799-RIPE
nic-hdl: OTN7-RIPE
mnt-by: ORIONTELEKOM-MNT
source: RIPE # Filtered
person: Vladimir Zolnjan
address: Orion Telekom NOC
address: Gandijeva 76a
address: Belgrade, Serbia
phone: +381 11 2228 388
nic-hdl: VZ525-RIPE
mnt-by: ORIONTELEKOM-MNT
source: RIPE # Filtered
% Information related to '92.42.248.0/22AS9125'
route: 92.42.248.0/22
descr: Orion Telekom ISP IP network
origin: AS9125
mnt-by: ORIONTELEKOM-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.69 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 216.53.198.34
Hi,
The IP 216.53.198.34 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 216.53.198.34:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 216.53.198.34"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=216.53.198.34?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 216.53.128.0 - 216.53.255.255
CIDR: 216.53.128.0/17
OriginAS:
NetName: MPRD-MPINET
NetHandle: NET-216-53-128-0-1
Parent: NET-216-0-0-0-0
NetType: Direct Allocation
Comment: For abuse and/or spam complaints, please email
Comment: abuse@mpinet.com.
RegDate: 1999-06-10
Updated: 2012-03-02
Ref: http://whois.arin.net/rest/net/NET-216-53-128-0-1
OrgName: MPInet
OrgId: MPRD
Address: 1101 N. Keller Rd.
Address: Suite B
City: Orlando
StateProv: FL
PostalCode: 32810
Country: US
RegDate: 1999-06-10
Updated: 2011-11-30
Ref: http://whois.arin.net/rest/org/MPRD
OrgNOCHandle: IAS6-ARIN
OrgNOCName: IP Admin Services
OrgNOCPhone: +1-407-660-7900
OrgNOCEmail: ipadmin@mpinet.com
OrgNOCRef: http://whois.arin.net/rest/poc/IAS6-ARIN
OrgTechHandle: IAS6-ARIN
OrgTechName: IP Admin Services
OrgTechPhone: +1-407-660-7900
OrgTechEmail: ipadmin@mpinet.com
OrgTechRef: http://whois.arin.net/rest/poc/IAS6-ARIN
OrgAbuseHandle: IAS6-ARIN
OrgAbuseName: IP Admin Services
OrgAbusePhone: +1-407-660-7900
OrgAbuseEmail: ipadmin@mpinet.com
OrgAbuseRef: http://whois.arin.net/rest/poc/IAS6-ARIN
RTechHandle: IAS6-ARIN
RTechName: IP Admin Services
RTechPhone: +1-407-660-7900
RTechEmail: ipadmin@mpinet.com
RTechRef: http://whois.arin.net/rest/poc/IAS6-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 216.53.198.34 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 216.53.198.34:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 216.53.198.34"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=216.53.198.34?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 216.53.128.0 - 216.53.255.255
CIDR: 216.53.128.0/17
OriginAS:
NetName: MPRD-MPINET
NetHandle: NET-216-53-128-0-1
Parent: NET-216-0-0-0-0
NetType: Direct Allocation
Comment: For abuse and/or spam complaints, please email
Comment: abuse@mpinet.com.
RegDate: 1999-06-10
Updated: 2012-03-02
Ref: http://whois.arin.net/rest/net/NET-216-53-128-0-1
OrgName: MPInet
OrgId: MPRD
Address: 1101 N. Keller Rd.
Address: Suite B
City: Orlando
StateProv: FL
PostalCode: 32810
Country: US
RegDate: 1999-06-10
Updated: 2011-11-30
Ref: http://whois.arin.net/rest/org/MPRD
OrgNOCHandle: IAS6-ARIN
OrgNOCName: IP Admin Services
OrgNOCPhone: +1-407-660-7900
OrgNOCEmail: ipadmin@mpinet.com
OrgNOCRef: http://whois.arin.net/rest/poc/IAS6-ARIN
OrgTechHandle: IAS6-ARIN
OrgTechName: IP Admin Services
OrgTechPhone: +1-407-660-7900
OrgTechEmail: ipadmin@mpinet.com
OrgTechRef: http://whois.arin.net/rest/poc/IAS6-ARIN
OrgAbuseHandle: IAS6-ARIN
OrgAbuseName: IP Admin Services
OrgAbusePhone: +1-407-660-7900
OrgAbuseEmail: ipadmin@mpinet.com
OrgAbuseRef: http://whois.arin.net/rest/poc/IAS6-ARIN
RTechHandle: IAS6-ARIN
RTechName: IP Admin Services
RTechPhone: +1-407-660-7900
RTechEmail: ipadmin@mpinet.com
RTechRef: http://whois.arin.net/rest/poc/IAS6-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 209.124.34.11
Hi,
The IP 209.124.34.11 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 209.124.34.11:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 209.124.34.11"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=209.124.34.11?showDetails=true&showARIN=false&ext=netref2
#
123.Net, Inc. 123NET-BLK-I123-7 (NET-209-124-32-0-1) 209.124.32.0 - 209.124.63.255
VR Metro LLC I123-209124034000- (NET-209-124-34-0-1) 209.124.34.0 - 209.124.34.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 209.124.34.11 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 209.124.34.11:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 209.124.34.11"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=209.124.34.11?showDetails=true&showARIN=false&ext=netref2
#
123.Net, Inc. 123NET-BLK-I123-7 (NET-209-124-32-0-1) 209.124.32.0 - 209.124.63.255
VR Metro LLC I123-209124034000- (NET-209-124-34-0-1) 209.124.34.0 - 209.124.34.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 61.147.70.112
Hi,
The IP 61.147.70.112 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.147.70.112:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.147.0.0 - 61.147.255.255'
inetnum: 61.147.0.0 - 61.147.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-JS
mnt-routes: maint-chinanet-js
changed: hostmaster@ns.chinanet.cn.net 20020209
changed: hostmaster@ns.chinanet.cn.net 20030306
status: ALLOCATED non-PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% Information related to '61.147.0.0/16AS23650'
route: 61.147.0.0/16
descr: CHINANET jiangsu province network
country: CN
origin: AS23650
mnt-by: MAINT-CHINANET-JS
changed: ip@jsinfo.net 20030414
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 61.147.70.112 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.147.70.112:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.147.0.0 - 61.147.255.255'
inetnum: 61.147.0.0 - 61.147.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-JS
mnt-routes: maint-chinanet-js
changed: hostmaster@ns.chinanet.cn.net 20020209
changed: hostmaster@ns.chinanet.cn.net 20030306
status: ALLOCATED non-PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% Information related to '61.147.0.0/16AS23650'
route: 61.147.0.0/16
descr: CHINANET jiangsu province network
country: CN
origin: AS23650
mnt-by: MAINT-CHINANET-JS
changed: ip@jsinfo.net 20030414
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 218.3.243.223
Hi,
The IP 218.3.243.223 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.3.243.223:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.3.243.208 - 218.3.243.223'
inetnum: 218.3.243.208 - 218.3.243.223
netname: xuzhou-normal-university
descr: xuzhou normal university
descr: Xuzhou City
descr: Jiangsu Province
country: CN
admin-c: CH482-AP
tech-c: CH482-AP
changed: ip@jsinfo.net 20100202
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-CHINANET-JS
mnt-lower: MAINT-CHINANET-JS-XZ
source: APNIC
person: CHINANET-JS-XZ Hostmaster
address: No.116,Huaihai East Road,Xuzhou 221000
country: CN
phone: +86-516-5806352
fax-no: +86-516-3712480
e-mail: ipxz@pub.xz.jsinfo.net
nic-hdl: CH482-AP
remarks: send anti-spam or abuse reports to abuse@public.xz.js.cn
remarks: or abuse@pub.xz.jsinfo.net
remarks: times in GMT+8
mnt-by: MAINT-CHINANET-JS-XZ
changed: ip@jsinfo.net 20030428
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 218.3.243.223 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.3.243.223:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.3.243.208 - 218.3.243.223'
inetnum: 218.3.243.208 - 218.3.243.223
netname: xuzhou-normal-university
descr: xuzhou normal university
descr: Xuzhou City
descr: Jiangsu Province
country: CN
admin-c: CH482-AP
tech-c: CH482-AP
changed: ip@jsinfo.net 20100202
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-CHINANET-JS
mnt-lower: MAINT-CHINANET-JS-XZ
source: APNIC
person: CHINANET-JS-XZ Hostmaster
address: No.116,Huaihai East Road,Xuzhou 221000
country: CN
phone: +86-516-5806352
fax-no: +86-516-3712480
e-mail: ipxz@pub.xz.jsinfo.net
nic-hdl: CH482-AP
remarks: send anti-spam or abuse reports to abuse@public.xz.js.cn
remarks: or abuse@pub.xz.jsinfo.net
remarks: times in GMT+8
mnt-by: MAINT-CHINANET-JS-XZ
changed: ip@jsinfo.net 20030428
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 117.132.13.100
Hi,
The IP 117.132.13.100 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 117.132.13.100:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '117.128.0.0 - 117.191.255.255'
inetnum: 117.128.0.0 - 117.191.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
admin-c: JS686-AP
tech-c: HL1318-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20070717
source: APNIC
person: haijun li
nic-hdl: HL1318-AP
e-mail: hostmaster@chinamobile.com
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 10 66006688
fax-no: +86 10 52616187
country: CN
changed: hostmaster@chinamobile.com 20110824
mnt-by: MAINT-CN-CMCC
source: APNIC
person: Jinxia Sun
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
country: CN
phone: +86-10-66006688-1755
fax-no: +86-10-66006012
e-mail: sunjinxia@chinamobile.com
nic-hdl: JS686-AP
remarks: ------------------------------
remarks: Please send abuse e-mail to
remarks: abuse@chinamobile.com
remarks: Please send probe e-mail to
remarks: security@chinamobile.com
remarks: -------------------------------
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20030130
source: APNIC
% Information related to '117.132.0.0/16AS9808'
route: 117.132.0.0/16
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: lihaijun@chinamobile.com 20090217
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 117.132.13.100 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 117.132.13.100:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '117.128.0.0 - 117.191.255.255'
inetnum: 117.128.0.0 - 117.191.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
admin-c: JS686-AP
tech-c: HL1318-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20070717
source: APNIC
person: haijun li
nic-hdl: HL1318-AP
e-mail: hostmaster@chinamobile.com
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 10 66006688
fax-no: +86 10 52616187
country: CN
changed: hostmaster@chinamobile.com 20110824
mnt-by: MAINT-CN-CMCC
source: APNIC
person: Jinxia Sun
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
country: CN
phone: +86-10-66006688-1755
fax-no: +86-10-66006012
e-mail: sunjinxia@chinamobile.com
nic-hdl: JS686-AP
remarks: ------------------------------
remarks: Please send abuse e-mail to
remarks: abuse@chinamobile.com
remarks: Please send probe e-mail to
remarks: security@chinamobile.com
remarks: -------------------------------
mnt-by: MAINT-CN-CMCC
changed: hostmaster@chinamobile.com 20030130
source: APNIC
% Information related to '117.132.0.0/16AS9808'
route: 117.132.0.0/16
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: lihaijun@chinamobile.com 20090217
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 54.241.132.139
Hi,
The IP 54.241.132.139 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 54.241.132.139:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 54.241.132.139"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=54.241.132.139?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 54.240.0.0 - 54.255.255.255
CIDR: 54.240.0.0/12
OriginAS: AS16509
NetName: AMAZON-2011L
NetHandle: NET-54-240-0-0-1
Parent: NET-54-0-0-0-0
NetType: Direct Allocation
RegDate: 2011-12-09
Updated: 2012-04-02
Ref: http://whois.arin.net/rest/net/NET-54-240-0-0-1
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2012-01-06
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: http://whois.arin.net/rest/org/AT-88-Z
OrgAbuseHandle: AANO1-ARIN
OrgAbuseName: Amazon AWS Network Operations
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: aes-noc@amazon.com
OrgAbuseRef: http://whois.arin.net/rest/poc/AANO1-ARIN
OrgTechHandle: AANO1-ARIN
OrgTechName: Amazon AWS Network Operations
OrgTechPhone: +1-206-266-4064
OrgTechEmail: aes-noc@amazon.com
OrgTechRef: http://whois.arin.net/rest/poc/AANO1-ARIN
OrgTechHandle: ROLEA19-ARIN
OrgTechName: Role Account
OrgTechPhone: +1-206-266-4064
OrgTechEmail: noc@amazon.com
OrgTechRef: http://whois.arin.net/rest/poc/ROLEA19-ARIN
OrgNOCHandle: ROLEA19-ARIN
OrgNOCName: Role Account
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: noc@amazon.com
OrgNOCRef: http://whois.arin.net/rest/poc/ROLEA19-ARIN
OrgTechHandle: AC6-ORG-ARIN
OrgTechName: Amazon-com Incoroporated
OrgTechPhone: +1-206-266-4064
OrgTechEmail: NOC@amazon.com
OrgTechRef: http://whois.arin.net/rest/poc/AC6-ORG-ARIN
OrgNOCHandle: AC6-ORG-ARIN
OrgNOCName: Amazon-com Incoroporated
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: NOC@amazon.com
OrgNOCRef: http://whois.arin.net/rest/poc/AC6-ORG-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: aes-noc@amazon.com
OrgNOCRef: http://whois.arin.net/rest/poc/AANO1-ARIN
OrgAbuseHandle: ROLEA19-ARIN
OrgAbuseName: Role Account
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: noc@amazon.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ROLEA19-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 54.241.132.139 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 54.241.132.139:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 54.241.132.139"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=54.241.132.139?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 54.240.0.0 - 54.255.255.255
CIDR: 54.240.0.0/12
OriginAS: AS16509
NetName: AMAZON-2011L
NetHandle: NET-54-240-0-0-1
Parent: NET-54-0-0-0-0
NetType: Direct Allocation
RegDate: 2011-12-09
Updated: 2012-04-02
Ref: http://whois.arin.net/rest/net/NET-54-240-0-0-1
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2012-01-06
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: http://whois.arin.net/rest/org/AT-88-Z
OrgAbuseHandle: AANO1-ARIN
OrgAbuseName: Amazon AWS Network Operations
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: aes-noc@amazon.com
OrgAbuseRef: http://whois.arin.net/rest/poc/AANO1-ARIN
OrgTechHandle: AANO1-ARIN
OrgTechName: Amazon AWS Network Operations
OrgTechPhone: +1-206-266-4064
OrgTechEmail: aes-noc@amazon.com
OrgTechRef: http://whois.arin.net/rest/poc/AANO1-ARIN
OrgTechHandle: ROLEA19-ARIN
OrgTechName: Role Account
OrgTechPhone: +1-206-266-4064
OrgTechEmail: noc@amazon.com
OrgTechRef: http://whois.arin.net/rest/poc/ROLEA19-ARIN
OrgNOCHandle: ROLEA19-ARIN
OrgNOCName: Role Account
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: noc@amazon.com
OrgNOCRef: http://whois.arin.net/rest/poc/ROLEA19-ARIN
OrgTechHandle: AC6-ORG-ARIN
OrgTechName: Amazon-com Incoroporated
OrgTechPhone: +1-206-266-4064
OrgTechEmail: NOC@amazon.com
OrgTechRef: http://whois.arin.net/rest/poc/AC6-ORG-ARIN
OrgNOCHandle: AC6-ORG-ARIN
OrgNOCName: Amazon-com Incoroporated
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: NOC@amazon.com
OrgNOCRef: http://whois.arin.net/rest/poc/AC6-ORG-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-266-4064
OrgNOCEmail: aes-noc@amazon.com
OrgNOCRef: http://whois.arin.net/rest/poc/AANO1-ARIN
OrgAbuseHandle: ROLEA19-ARIN
OrgAbuseName: Role Account
OrgAbusePhone: +1-206-266-4064
OrgAbuseEmail: noc@amazon.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ROLEA19-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 198.74.60.190
Hi,
The IP 198.74.60.190 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.74.60.190:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 198.74.60.190"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=198.74.60.190?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 198.74.48.0 - 198.74.63.255
CIDR: 198.74.48.0/20
OriginAS:
NetName: LINODE-US
NetHandle: NET-198-74-48-0-1
Parent: NET-198-0-0-0-0
NetType: Direct Allocation
RegDate: 2012-08-27
Updated: 2012-08-27
Ref: http://whois.arin.net/rest/net/NET-198-74-48-0-1
OrgName: Linode
OrgId: LINOD
Address: 329 E. Jimmie Leeds Road
Address: Suite A
City: Galloway
StateProv: NJ
PostalCode: 08205
Country: US
RegDate: 2008-04-24
Updated: 2010-08-31
Comment: http://www.linode.com
Ref: http://whois.arin.net/rest/org/LINOD
OrgTechHandle: LNO21-ARIN
OrgTechName: Linode Network Operations
OrgTechPhone: +1-609-593-7103
OrgTechEmail: support@linode.com
OrgTechRef: http://whois.arin.net/rest/poc/LNO21-ARIN
OrgNOCHandle: LNO21-ARIN
OrgNOCName: Linode Network Operations
OrgNOCPhone: +1-609-593-7103
OrgNOCEmail: support@linode.com
OrgNOCRef: http://whois.arin.net/rest/poc/LNO21-ARIN
OrgAbuseHandle: LAS12-ARIN
OrgAbuseName: Linode Abuse Support
OrgAbusePhone: +1-609-593-7103
OrgAbuseEmail: abuse@linode.com
OrgAbuseRef: http://whois.arin.net/rest/poc/LAS12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 198.74.60.190 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.74.60.190:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 198.74.60.190"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=198.74.60.190?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 198.74.48.0 - 198.74.63.255
CIDR: 198.74.48.0/20
OriginAS:
NetName: LINODE-US
NetHandle: NET-198-74-48-0-1
Parent: NET-198-0-0-0-0
NetType: Direct Allocation
RegDate: 2012-08-27
Updated: 2012-08-27
Ref: http://whois.arin.net/rest/net/NET-198-74-48-0-1
OrgName: Linode
OrgId: LINOD
Address: 329 E. Jimmie Leeds Road
Address: Suite A
City: Galloway
StateProv: NJ
PostalCode: 08205
Country: US
RegDate: 2008-04-24
Updated: 2010-08-31
Comment: http://www.linode.com
Ref: http://whois.arin.net/rest/org/LINOD
OrgTechHandle: LNO21-ARIN
OrgTechName: Linode Network Operations
OrgTechPhone: +1-609-593-7103
OrgTechEmail: support@linode.com
OrgTechRef: http://whois.arin.net/rest/poc/LNO21-ARIN
OrgNOCHandle: LNO21-ARIN
OrgNOCName: Linode Network Operations
OrgNOCPhone: +1-609-593-7103
OrgNOCEmail: support@linode.com
OrgNOCRef: http://whois.arin.net/rest/poc/LNO21-ARIN
OrgAbuseHandle: LAS12-ARIN
OrgAbuseName: Linode Abuse Support
OrgAbusePhone: +1-609-593-7103
OrgAbuseEmail: abuse@linode.com
OrgAbuseRef: http://whois.arin.net/rest/poc/LAS12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 116.90.84.187
Hi,
The IP 116.90.84.187 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 116.90.84.187:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '116.90.80.0 - 116.90.87.255'
inetnum: 116.90.80.0 - 116.90.87.255
netname: TopnewNET
descr: Beijing Topnew Info&Tech co., LTD.
descr: No.9, Jintaili, Chaoyang District,
descr: Beijing, China 100026
country: CN
admin-c: LC1626-AP
tech-c: XW1364-AP
mnt-by: MAINT-AP-CNISP
mnt-irt: IRT-CNISP-CN
status: allocated non-portable
changed: ip@cnisp.org.cn 20130814
source: APNIC
irt: IRT-CNISP-CN
address: CNISP-Union Technology (Beijing) Co., Ltd
e-mail: ip@cnisp.org.cn
abuse-mailbox: ip@cnisp.org.cn
admin-c: DY1-AUTO
tech-c: WF1-AUTO
auth: # Filtered
mnt-by: MAINT-AP-CNISP
changed: ip@cnisp.org.cn 20101109
changed: hm-changed@apnic.net 20101111
source: APNIC
person: Li Chaocheng
nic-hdl: LC1626-AP
e-mail: lcc@topnew.cn
address: No.9 A Jintaili District Chaoyang Beijing China
phone: +10-52081208
fax-no: +10-52081280
country: CN
changed: ipas@cnnic.cn 20081103
mnt-by: MAINT-CN-PUTIAN
source: APNIC
person: Xiaoli Wang
nic-hdl: XW1364-AP
e-mail: wxl@topnew.cn
address: No.9 A Jintaili District Chaoyang Beijing China
phone: +10-52081238
fax-no: +10-52081280
country: CN
changed: ipas@cnnic.cn 20081103
mnt-by: MAINT-CN-PUTIAN
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 116.90.84.187 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 116.90.84.187:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '116.90.80.0 - 116.90.87.255'
inetnum: 116.90.80.0 - 116.90.87.255
netname: TopnewNET
descr: Beijing Topnew Info&Tech co., LTD.
descr: No.9, Jintaili, Chaoyang District,
descr: Beijing, China 100026
country: CN
admin-c: LC1626-AP
tech-c: XW1364-AP
mnt-by: MAINT-AP-CNISP
mnt-irt: IRT-CNISP-CN
status: allocated non-portable
changed: ip@cnisp.org.cn 20130814
source: APNIC
irt: IRT-CNISP-CN
address: CNISP-Union Technology (Beijing) Co., Ltd
e-mail: ip@cnisp.org.cn
abuse-mailbox: ip@cnisp.org.cn
admin-c: DY1-AUTO
tech-c: WF1-AUTO
auth: # Filtered
mnt-by: MAINT-AP-CNISP
changed: ip@cnisp.org.cn 20101109
changed: hm-changed@apnic.net 20101111
source: APNIC
person: Li Chaocheng
nic-hdl: LC1626-AP
e-mail: lcc@topnew.cn
address: No.9 A Jintaili District Chaoyang Beijing China
phone: +10-52081208
fax-no: +10-52081280
country: CN
changed: ipas@cnnic.cn 20081103
mnt-by: MAINT-CN-PUTIAN
source: APNIC
person: Xiaoli Wang
nic-hdl: XW1364-AP
e-mail: wxl@topnew.cn
address: No.9 A Jintaili District Chaoyang Beijing China
phone: +10-52081238
fax-no: +10-52081280
country: CN
changed: ipas@cnnic.cn 20081103
mnt-by: MAINT-CN-PUTIAN
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 125.211.218.228
Hi,
The IP 125.211.218.228 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 125.211.218.228:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '125.211.0.0 - 125.211.255.255'
inetnum: 125.211.0.0 - 125.211.255.255
netname: UNICOM-HL
descr: China Unicom Heilongjiang Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: BG63-AP
remarks: service provider
status: ALLOCATED PORTABLE
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-HL
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20070216
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: Binghui Gao
nic-hdl: BG63-AP
e-mail: luanfuyu@vip.hl.cn
address: Shuniu Building,No.155 Zhongshan road,Harbin,Heilongjiang
phone: +86-451-82651467
fax-no: +86-451-82651464
country: CN
changed: luanfuyu@vip.hl.cn 20100310
mnt-by: MAINT-CNCGROUP-HL
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
% Information related to '125.211.192.0/19AS4837'
route: 125.211.192.0/19
descr: CNC Group CHINA169 Heilongjiang Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20070319
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 125.211.218.228 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 125.211.218.228:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '125.211.0.0 - 125.211.255.255'
inetnum: 125.211.0.0 - 125.211.255.255
netname: UNICOM-HL
descr: China Unicom Heilongjiang Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: BG63-AP
remarks: service provider
status: ALLOCATED PORTABLE
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-HL
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20070216
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: Binghui Gao
nic-hdl: BG63-AP
e-mail: luanfuyu@vip.hl.cn
address: Shuniu Building,No.155 Zhongshan road,Harbin,Heilongjiang
phone: +86-451-82651467
fax-no: +86-451-82651464
country: CN
changed: luanfuyu@vip.hl.cn 20100310
mnt-by: MAINT-CNCGROUP-HL
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
% Information related to '125.211.192.0/19AS4837'
route: 125.211.192.0/19
descr: CNC Group CHINA169 Heilongjiang Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20070319
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 122.11.50.7
Hi,
The IP 122.11.50.7 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.11.50.7:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '122.11.32.0 - 122.11.63.255'
inetnum: 122.11.32.0 - 122.11.63.255
netname: CDSNET
descr: Beijing capitalonline data service co.,LTD
descr: Rm.16c,Bldg.2#A,Jinyuan times business Centre,
descr: No.2,Landianchang-East Rd.,
descr: Haidian District,Beijing
country: CN
admin-c: LT708-AP
tech-c: MH1160-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-CN-BLUESKY
changed: tao.li@yun-idc.com 20131016
mnt-irt: IRT-FEIFAN-CN
source: APNIC
irt: IRT-FEIFAN-CN
address: ROAD 1, GAOXIN AREA , LIUZHOU
e-mail: 1818@cttgx.com
abuse-mailbox: 1818@cttgx.com
admin-c: AC893-AP
tech-c: AC893-AP
auth: # Filtered
mnt-by: MAINT-CN-BLUESKY
changed: 1818@cttgx.com 20110310
source: APNIC
person: Li Tao
address: Rm.16c Bldg.2#A,Jinyuan times business Centre
address: No.2,Landianchang-East Rd.
address: Haidian District Beijing
country: CN
phone: +86-10-51997733
e-mail: tao.li@yun-idc.com
nic-hdl: LT708-AP
mnt-by: MAINT-CN-BLUESKY
changed: tao.li@yun-idc.com 20131016
source: APNIC
person: Meng Hong
address: Rm.16c Bldg.2#A,Jinyuan times business Centre
address: No.2,Landianchang-East Rd.
address: Haidian District Beijing
country: CN
phone: +86-10-51997733
e-mail: hong.meng@yun-idc.com
nic-hdl: MH1160-AP
mnt-by: MAINT-CN-BLUESKY
changed: hong.meng@yun-idc.com 20131016
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 122.11.50.7 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.11.50.7:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '122.11.32.0 - 122.11.63.255'
inetnum: 122.11.32.0 - 122.11.63.255
netname: CDSNET
descr: Beijing capitalonline data service co.,LTD
descr: Rm.16c,Bldg.2#A,Jinyuan times business Centre,
descr: No.2,Landianchang-East Rd.,
descr: Haidian District,Beijing
country: CN
admin-c: LT708-AP
tech-c: MH1160-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-CN-BLUESKY
changed: tao.li@yun-idc.com 20131016
mnt-irt: IRT-FEIFAN-CN
source: APNIC
irt: IRT-FEIFAN-CN
address: ROAD 1, GAOXIN AREA , LIUZHOU
e-mail: 1818@cttgx.com
abuse-mailbox: 1818@cttgx.com
admin-c: AC893-AP
tech-c: AC893-AP
auth: # Filtered
mnt-by: MAINT-CN-BLUESKY
changed: 1818@cttgx.com 20110310
source: APNIC
person: Li Tao
address: Rm.16c Bldg.2#A,Jinyuan times business Centre
address: No.2,Landianchang-East Rd.
address: Haidian District Beijing
country: CN
phone: +86-10-51997733
e-mail: tao.li@yun-idc.com
nic-hdl: LT708-AP
mnt-by: MAINT-CN-BLUESKY
changed: tao.li@yun-idc.com 20131016
source: APNIC
person: Meng Hong
address: Rm.16c Bldg.2#A,Jinyuan times business Centre
address: No.2,Landianchang-East Rd.
address: Haidian District Beijing
country: CN
phone: +86-10-51997733
e-mail: hong.meng@yun-idc.com
nic-hdl: MH1160-AP
mnt-by: MAINT-CN-BLUESKY
changed: hong.meng@yun-idc.com 20131016
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
Saturday, 9 November 2013
[Fail2Ban] SSH: banned 202.111.52.58
Hi,
The IP 202.111.52.58 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.111.52.58:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.111.52.48 - 202.111.52.63'
inetnum: 202.111.52.48 - 202.111.52.63
netname: WUXI-langqi-tech-corp
descr: wuxi langqi tech co,.ltd
descr: Wuxi City
descr: Jiangsu Province
country: CN
admin-c: CH456-AP
tech-c: CH456-AP
changed: ip@jsinfo.net 20090605
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-CHINANET-JS
mnt-lower: MAINT-CHINANET-JS-WX
source: APNIC
person: CHINANET-JS-WX Hostmaster
address: No.3,Jiankang Road,Wuxi 214001
country: CN
phone: +86-510-2730813
fax-no: +86-510-2700519
e-mail: ipwx@pub.wx.jsinfo.net
nic-hdl: CH456-AP
remarks: send anti-spam or abuse reports to abuse@public1.wx.js.cn
remarks: or abuse@pub.wx.jsinfo.net
remarks: times in GMT+8
mnt-by: MAINT-CHINANET-JS-WX
changed: ip@jsinfo.net 20021231
source: APNIC
% Information related to '202.111.0.0/17AS23650'
route: 202.111.0.0/17
descr: CHINANET jiangsu province network
country: CN
origin: AS23650
mnt-by: MAINT-CHINANET-JS
changed: ip@jsinfo.net 20030414
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 202.111.52.58 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.111.52.58:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.111.52.48 - 202.111.52.63'
inetnum: 202.111.52.48 - 202.111.52.63
netname: WUXI-langqi-tech-corp
descr: wuxi langqi tech co,.ltd
descr: Wuxi City
descr: Jiangsu Province
country: CN
admin-c: CH456-AP
tech-c: CH456-AP
changed: ip@jsinfo.net 20090605
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-CHINANET-JS
mnt-lower: MAINT-CHINANET-JS-WX
source: APNIC
person: CHINANET-JS-WX Hostmaster
address: No.3,Jiankang Road,Wuxi 214001
country: CN
phone: +86-510-2730813
fax-no: +86-510-2700519
e-mail: ipwx@pub.wx.jsinfo.net
nic-hdl: CH456-AP
remarks: send anti-spam or abuse reports to abuse@public1.wx.js.cn
remarks: or abuse@pub.wx.jsinfo.net
remarks: times in GMT+8
mnt-by: MAINT-CHINANET-JS-WX
changed: ip@jsinfo.net 20021231
source: APNIC
% Information related to '202.111.0.0/17AS23650'
route: 202.111.0.0/17
descr: CHINANET jiangsu province network
country: CN
origin: AS23650
mnt-by: MAINT-CHINANET-JS
changed: ip@jsinfo.net 20030414
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 222.103.190.147
Hi,
The IP 222.103.190.147 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 222.103.190.147:
[Querying whois.apnic.net]
[Redirected to whois.krnic.net]
[Querying whois.krnic.net]
[whois.krnic.net]
query : 222.103.190.147
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
서비스명 : KORNET
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : ê²½ê¸°ë„ ì„±ë‚¨ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ë¶ì •ë¡œ 90 (ì •ìë™) í•œêµí†µì&lsqauo; e-Bizë³¸ë¶ ê¸°íšíŒ
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ì¼ì : 20031110
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : IP주소ê´ë¦¬ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : IP주소ë&lsqauo;´ë&lsqauo;¹ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : 스팸/해킹ë&lsqauo;´ë&lsqauo;¹
ì „í™"ë²í˜¸ : +82-2-100-0000
ì „ììš°í¸ : abuse@kornet.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4ì£¼ì†Œì— ëŒí•œ 위 ê´ë¦¬ëŒí–‰ìì˜ ì‚¬ìš©ì í• ë&lsqauo;¹ì •ë³´ê° ì¡´ì¬í•˜ì§ 않습ë&lsqauo;ë&lsqauo;¤.
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
Service Name : KORNET
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : 206, Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro
Zip Code : 463-711
Registration Date : 20031110
[ Admin Contact Information ]
Name : IP Administrator
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Tech Contact Information ]
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Network Abuse Contact Information ]
Name : Network Abuse
Phone : +82-2-100-0000
E-Mail : abuse@kornet.net
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
The IP 222.103.190.147 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 222.103.190.147:
[Querying whois.apnic.net]
[Redirected to whois.krnic.net]
[Querying whois.krnic.net]
[whois.krnic.net]
query : 222.103.190.147
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
서비스명 : KORNET
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : ê²½ê¸°ë„ ì„±ë‚¨ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ë¶ì •ë¡œ 90 (ì •ìë™) í•œêµí†µì&lsqauo; e-Bizë³¸ë¶ ê¸°íšíŒ
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ì¼ì : 20031110
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : IP주소ê´ë¦¬ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : IP주소ë&lsqauo;´ë&lsqauo;¹ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : 스팸/해킹ë&lsqauo;´ë&lsqauo;¹
ì „í™"ë²í˜¸ : +82-2-100-0000
ì „ììš°í¸ : abuse@kornet.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4ì£¼ì†Œì— ëŒí•œ 위 ê´ë¦¬ëŒí–‰ìì˜ ì‚¬ìš©ì í• ë&lsqauo;¹ì •ë³´ê° ì¡´ì¬í•˜ì§ 않습ë&lsqauo;ë&lsqauo;¤.
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
Service Name : KORNET
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : 206, Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro
Zip Code : 463-711
Registration Date : 20031110
[ Admin Contact Information ]
Name : IP Administrator
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Tech Contact Information ]
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Network Abuse Contact Information ]
Name : Network Abuse
Phone : +82-2-100-0000
E-Mail : abuse@kornet.net
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 36.39.246.121
Hi,
The IP 36.39.246.121 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 36.39.246.121:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query : 36.39.246.121
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 36.38.0.0 - 36.39.255.255 (/15)
서비스명 : CJ-HELLOVISION
기ê´ëª… : 주ì&lsqauo;회사 ì"¨ì œì´í—¬ë¡œë¹„ì „
기ê´ê³ ìœ ë²í˜¸ : ORG809949
주소 : 서울특별ì&lsqauo;œ ì–'천구 ì&lsqauo; ì •ë¡œ 267 (ì&lsqauo; ì •ë™)
ìš°í¸ë²í˜¸ : 158-070
í• ë&lsqauo;¹ì¼ì : 20110210
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : ê¹ì°½ì„
ì „í™"ë²í˜¸ : +82-2-2600-2941
ì „ììš°í¸ : leo4u@cj.net
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : ê¹ì°½ì„
ì „í™"ë²í˜¸ : +82-70-8130-1751
ì „ììš°í¸ : leo4u@cj.net
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : ê¹ì°½ì„
ì „í™"ë²í˜¸ : +82-70-8130-2212
ì „ììš°í¸ : leo4u@cj.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4ì£¼ì†Œì— ëŒí•œ 위 ê´ë¦¬ëŒí–‰ìì˜ ì‚¬ìš©ì í• ë&lsqauo;¹ì •ë³´ê° ì¡´ì¬í•˜ì§ 않습ë&lsqauo;ë&lsqauo;¤.
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 36.38.0.0 - 36.39.255.255 (/15)
Service Name : CJ-HELLOVISION
Organization Name : CJ-HELLOVISION
Organization ID : ORG809949
Address : 1254, Seoul Yangcheon-gu Sinjeong-ro
Zip Code : 158-070
Registration Date : 20110210
[ Admin Contact Information ]
Name : Kim chang sun
Phone : +82-2-2600-2941
E-Mail : leo4u@cj.net
[ Tech Contact Information ]
Name : Kim chang sun
Phone : +82-70-8130-1751
E-Mail : leo4u@cj.net
[ Network Abuse Contact Information ]
Name : YOUNGCHAN LEE
Phone : +82-70-8130-2212
E-Mail : leo4u@cj.net
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
The IP 36.39.246.121 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 36.39.246.121:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query : 36.39.246.121
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 36.38.0.0 - 36.39.255.255 (/15)
서비스명 : CJ-HELLOVISION
기ê´ëª… : 주ì&lsqauo;회사 ì"¨ì œì´í—¬ë¡œë¹„ì „
기ê´ê³ ìœ ë²í˜¸ : ORG809949
주소 : 서울특별ì&lsqauo;œ ì–'천구 ì&lsqauo; ì •ë¡œ 267 (ì&lsqauo; ì •ë™)
ìš°í¸ë²í˜¸ : 158-070
í• ë&lsqauo;¹ì¼ì : 20110210
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : ê¹ì°½ì„
ì „í™"ë²í˜¸ : +82-2-2600-2941
ì „ììš°í¸ : leo4u@cj.net
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : ê¹ì°½ì„
ì „í™"ë²í˜¸ : +82-70-8130-1751
ì „ììš°í¸ : leo4u@cj.net
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : ê¹ì°½ì„
ì „í™"ë²í˜¸ : +82-70-8130-2212
ì „ììš°í¸ : leo4u@cj.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4ì£¼ì†Œì— ëŒí•œ 위 ê´ë¦¬ëŒí–‰ìì˜ ì‚¬ìš©ì í• ë&lsqauo;¹ì •ë³´ê° ì¡´ì¬í•˜ì§ 않습ë&lsqauo;ë&lsqauo;¤.
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 36.38.0.0 - 36.39.255.255 (/15)
Service Name : CJ-HELLOVISION
Organization Name : CJ-HELLOVISION
Organization ID : ORG809949
Address : 1254, Seoul Yangcheon-gu Sinjeong-ro
Zip Code : 158-070
Registration Date : 20110210
[ Admin Contact Information ]
Name : Kim chang sun
Phone : +82-2-2600-2941
E-Mail : leo4u@cj.net
[ Tech Contact Information ]
Name : Kim chang sun
Phone : +82-70-8130-1751
E-Mail : leo4u@cj.net
[ Network Abuse Contact Information ]
Name : YOUNGCHAN LEE
Phone : +82-70-8130-2212
E-Mail : leo4u@cj.net
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 113.11.208.98
Hi,
The IP 113.11.208.98 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 113.11.208.98:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '113.11.192.0 - 113.11.223.255'
inetnum: 113.11.192.0 - 113.11.223.255
netname: DIGILAND
descr: Beijing Digiland media technology Co. Ltd
descr: Apt2 No5 Jinyuanzhuang AVE shijingshan district Beijing
country: CN
admin-c: ZR412-AP
tech-c: ZH1940-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
mnt-routes: MAINT-CNNIC-AP
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20080929
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: Zhang Hong
address: Apt2 No5 Jinyuanzhuang AVE shijingshan district Beijing
country: CN
phone: +86-10-88800066-5005
e-mail: 178819204@qq.com
nic-hdl: ZH1940-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20120428
source: APNIC
person: Zhang RenLiang
address: Apt2 No5 Jinyuanzhuang AVE shijingshan district Beijing
country: CN
phone: +86-10-88800066-1024
e-mail: 13911898865@139.com
nic-hdl: ZR412-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20120428
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
The IP 113.11.208.98 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 113.11.208.98:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '113.11.192.0 - 113.11.223.255'
inetnum: 113.11.192.0 - 113.11.223.255
netname: DIGILAND
descr: Beijing Digiland media technology Co. Ltd
descr: Apt2 No5 Jinyuanzhuang AVE shijingshan district Beijing
country: CN
admin-c: ZR412-AP
tech-c: ZH1940-AP
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
mnt-routes: MAINT-CNNIC-AP
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20080929
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: Zhang Hong
address: Apt2 No5 Jinyuanzhuang AVE shijingshan district Beijing
country: CN
phone: +86-10-88800066-5005
e-mail: 178819204@qq.com
nic-hdl: ZH1940-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20120428
source: APNIC
person: Zhang RenLiang
address: Apt2 No5 Jinyuanzhuang AVE shijingshan district Beijing
country: CN
phone: +86-10-88800066-1024
e-mail: 13911898865@139.com
nic-hdl: ZR412-AP
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20120428
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
Friday, 8 November 2013
[Fail2Ban] SSH: banned 14.63.227.133
Hi,
The IP 14.63.227.133 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 14.63.227.133:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query : 14.63.227.133
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 14.32.0.0 - 14.95.255.255 (/10)
서비스명 : KORNET
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : ê²½ê¸°ë„ ì„±ë‚¨ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ë¶ì •ë¡œ 90 (ì •ìë™) í•œêµí†µì&lsqauo; e-Bizë³¸ë¶ ê¸°íšíŒ
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ì¼ì : 20100805
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : IP주소ê´ë¦¬ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : IP주소ë&lsqauo;´ë&lsqauo;¹ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : 스팸/해킹ë&lsqauo;´ë&lsqauo;¹
ì „í™"ë²í˜¸ : +82-2-100-0000
ì „ììš°í¸ : abuse@kornet.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4주소ëŠ" ìœ„ì˜ ê´ë¦¬ëŒí–‰ìë¡œë¶í„° ì•„ë˜ì˜ 사용ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
ë„¤íŠ¸ì›Œí¬ ì´ë¦„ : KORNET-INFRA000001
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : 성남ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ì •ìë™
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ë‚´ì— ë"±ë¡ì¼ : 20130318
ê³µê°œì—¬ë¶ : N
[ ë„¤íŠ¸ì›Œí¬ ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
기ê´ëª… : KORNET
주소 : 성남ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ì •ìë™
ìš°í¸ë²í˜¸ : 463-711
ì „ììš°í¸ : kornet_ip@kt.com
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 14.32.0.0 - 14.95.255.255 (/10)
Service Name : KORNET
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : 206, Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro
Zip Code : 463-711
Registration Date : 20100805
[ Admin Contact Information ]
Name : IP Administrator
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Tech Contact Information ]
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Network Abuse Contact Information ]
Name : Network Abuse
Phone : +82-2-100-0000
E-Mail : abuse@kornet.net
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
Network Name : KORNET-INFRA000001
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : Jungja-dong, Bundang-gu, Sungnam-ci
Zip Code : 463-711
Registration Date : 20130318
Publishes : N
[ Technical Contact Information ]
Organization Name : Korea Telecom
Address : Jungja-dong, Bundang-gu, Sungnam-ci
Zip Code : 463-711
E-Mail : kornet_ip@kt.com
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
The IP 14.63.227.133 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 14.63.227.133:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[Redirected to whois.nic.or.kr]
[Querying whois.nic.or.kr]
[whois.nic.or.kr]
query : 14.63.227.133
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 14.32.0.0 - 14.95.255.255 (/10)
서비스명 : KORNET
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : ê²½ê¸°ë„ ì„±ë‚¨ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ë¶ì •ë¡œ 90 (ì •ìë™) í•œêµí†µì&lsqauo; e-Bizë³¸ë¶ ê¸°íšíŒ
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ì¼ì : 20100805
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : IP주소ê´ë¦¬ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : IP주소ë&lsqauo;´ë&lsqauo;¹ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : 스팸/해킹ë&lsqauo;´ë&lsqauo;¹
ì „í™"ë²í˜¸ : +82-2-100-0000
ì „ììš°í¸ : abuse@kornet.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4주소ëŠ" ìœ„ì˜ ê´ë¦¬ëŒí–‰ìë¡œë¶í„° ì•„ë˜ì˜ 사용ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
ë„¤íŠ¸ì›Œí¬ ì´ë¦„ : KORNET-INFRA000001
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : 성남ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ì •ìë™
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ë‚´ì— ë"±ë¡ì¼ : 20130318
ê³µê°œì—¬ë¶ : N
[ ë„¤íŠ¸ì›Œí¬ ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
기ê´ëª… : KORNET
주소 : 성남ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ì •ìë™
ìš°í¸ë²í˜¸ : 463-711
ì „ììš°í¸ : kornet_ip@kt.com
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 14.32.0.0 - 14.95.255.255 (/10)
Service Name : KORNET
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : 206, Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro
Zip Code : 463-711
Registration Date : 20100805
[ Admin Contact Information ]
Name : IP Administrator
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Tech Contact Information ]
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Network Abuse Contact Information ]
Name : Network Abuse
Phone : +82-2-100-0000
E-Mail : abuse@kornet.net
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
Network Name : KORNET-INFRA000001
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : Jungja-dong, Bundang-gu, Sungnam-ci
Zip Code : 463-711
Registration Date : 20130318
Publishes : N
[ Technical Contact Information ]
Organization Name : Korea Telecom
Address : Jungja-dong, Bundang-gu, Sungnam-ci
Zip Code : 463-711
E-Mail : kornet_ip@kt.com
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 187.241.191.131
Hi,
The IP 187.241.191.131 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 187.241.191.131:
[Querying whois.arin.net]
[Redirected to whois.lacnic.net]
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-11-08 21:15:48 (BRST -02:00)
inetnum: 187.240/13
status: allocated
aut-num: N/A
owner: Mega Cable, S.A. de C.V.
ownerid: MX-MSCV17-LACNIC
responsible: Orencio Meza
address: Av. Lazaro Cardenas, 1694, Del Fresno
address: 44900 - Guadalajara - JA
country: MX
phone: +52 3337500020 []
owner-c: NIT
tech-c: NIT
abuse-c: NIT
inetrev: 187.240/13
nserver: UNIX.MEGARED.NET.MX
nsstat: 20131107 AA
nslastaa: 20131107
nserver: UNIX2.MEGARED.NET.MX
nsstat: 20131107 AA
nslastaa: 20131107
created: 20120316
changed: 20120316
nic-hdl: NIT
person: NIC TECH
e-mail: nic_tech@MEGACABLE.COM.MX
address: Lazaro Cardenas, 1694, Del Fresno
address: 44900 - Guadalajara - Ja
country: MX
phone: +52 33 37500029 []
created: 20030303
changed: 20120105
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
The IP 187.241.191.131 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 187.241.191.131:
[Querying whois.arin.net]
[Redirected to whois.lacnic.net]
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-11-08 21:15:48 (BRST -02:00)
inetnum: 187.240/13
status: allocated
aut-num: N/A
owner: Mega Cable, S.A. de C.V.
ownerid: MX-MSCV17-LACNIC
responsible: Orencio Meza
address: Av. Lazaro Cardenas, 1694, Del Fresno
address: 44900 - Guadalajara - JA
country: MX
phone: +52 3337500020 []
owner-c: NIT
tech-c: NIT
abuse-c: NIT
inetrev: 187.240/13
nserver: UNIX.MEGARED.NET.MX
nsstat: 20131107 AA
nslastaa: 20131107
nserver: UNIX2.MEGARED.NET.MX
nsstat: 20131107 AA
nslastaa: 20131107
created: 20120316
changed: 20120316
nic-hdl: NIT
person: NIC TECH
e-mail: nic_tech@MEGACABLE.COM.MX
address: Lazaro Cardenas, 1694, Del Fresno
address: 44900 - Guadalajara - Ja
country: MX
phone: +52 33 37500029 []
created: 20030303
changed: 20120105
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 68.169.45.34
Hi,
The IP 68.169.45.34 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 68.169.45.34:
[Querying whois.arin.net]
[Redirected to contact4.westhost.com:4321]
[Querying contact4.westhost.com]
[contact4.westhost.com]
%rwhois V-1.0,V-1.5:00090h:00 contact4.westhost.com (Ubersmith RWhois Server V-2.3.0)
autharea=68.169.32.0/20
xautharea=68.169.32.0/20
network:Class-Name:network
network:Auth-Area:68.169.32.0/20
network:ID:NET-68.68.169.45.0/24
network:Network-Name:VPS.NET Cloud Services (Salt Lake City - A)
network:IP-Network:68.169.45.0/24
network:IP-Network-Block:68.169.45.0 - 68.169.45.255
network:Org-Name:VPS.NET
network:Street-Address:517 W 100 N Suite 225
network:City:Providence
network:State:UT
network:Postal-Code:84321
network:Country-Code:US
network:Tech-Contact:MAINT-68.68.169.45.0/24
network:Created:20110314193158000
network:Updated:20120503181808000
network:Updated-By:noc@uk2group.com
contact:POC-Name:NOC
contact:POC-Email:noc@uk2group.com
contact:POC-Phone:+1.435.755.3433
contact:Tech-Name:NOC
contact:Tech-Email:noc@uk2group.com
contact:Tech-Phone:+1.435.755.3433
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@uk2group.com
contact:Abuse-Phone:+1.435.755.3433
%ok
Regards,
Fail2Ban
The IP 68.169.45.34 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 68.169.45.34:
[Querying whois.arin.net]
[Redirected to contact4.westhost.com:4321]
[Querying contact4.westhost.com]
[contact4.westhost.com]
%rwhois V-1.0,V-1.5:00090h:00 contact4.westhost.com (Ubersmith RWhois Server V-2.3.0)
autharea=68.169.32.0/20
xautharea=68.169.32.0/20
network:Class-Name:network
network:Auth-Area:68.169.32.0/20
network:ID:NET-68.68.169.45.0/24
network:Network-Name:VPS.NET Cloud Services (Salt Lake City - A)
network:IP-Network:68.169.45.0/24
network:IP-Network-Block:68.169.45.0 - 68.169.45.255
network:Org-Name:VPS.NET
network:Street-Address:517 W 100 N Suite 225
network:City:Providence
network:State:UT
network:Postal-Code:84321
network:Country-Code:US
network:Tech-Contact:MAINT-68.68.169.45.0/24
network:Created:20110314193158000
network:Updated:20120503181808000
network:Updated-By:noc@uk2group.com
contact:POC-Name:NOC
contact:POC-Email:noc@uk2group.com
contact:POC-Phone:+1.435.755.3433
contact:Tech-Name:NOC
contact:Tech-Email:noc@uk2group.com
contact:Tech-Phone:+1.435.755.3433
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@uk2group.com
contact:Abuse-Phone:+1.435.755.3433
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 222.103.190.147
Hi,
The IP 222.103.190.147 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.103.190.147:
[Querying whois.apnic.net]
[Redirected to whois.krnic.net]
[Querying whois.krnic.net]
[whois.krnic.net]
query : 222.103.190.147
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
서비스명 : KORNET
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : ê²½ê¸°ë„ ì„±ë‚¨ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ë¶ì •ë¡œ 90 (ì •ìë™) í•œêµí†µì&lsqauo; e-Bizë³¸ë¶ ê¸°íšíŒ
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ì¼ì : 20031110
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : IP주소ê´ë¦¬ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : IP주소ë&lsqauo;´ë&lsqauo;¹ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : 스팸/해킹ë&lsqauo;´ë&lsqauo;¹
ì „í™"ë²í˜¸ : +82-2-100-0000
ì „ììš°í¸ : abuse@kornet.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4ì£¼ì†Œì— ëŒí•œ 위 ê´ë¦¬ëŒí–‰ìì˜ ì‚¬ìš©ì í• ë&lsqauo;¹ì •ë³´ê° ì¡´ì¬í•˜ì§ 않습ë&lsqauo;ë&lsqauo;¤.
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
Service Name : KORNET
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : 206, Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro
Zip Code : 463-711
Registration Date : 20031110
[ Admin Contact Information ]
Name : IP Administrator
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Tech Contact Information ]
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Network Abuse Contact Information ]
Name : Network Abuse
Phone : +82-2-100-0000
E-Mail : abuse@kornet.net
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
The IP 222.103.190.147 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.103.190.147:
[Querying whois.apnic.net]
[Redirected to whois.krnic.net]
[Querying whois.krnic.net]
[whois.krnic.net]
query : 222.103.190.147
# KOREAN(UTF8)
조회하ì&lsqauo; IPv4주소ëŠ" í•œêµì¸í„°ë„·ì§„í¥ì›ìœ¼ë¡œë¶í„° ì•„ë˜ì˜ ê´ë¦¬ëŒí–‰ìì—게 í• ë&lsqauo;¹ë˜ì—으며, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ë&lsqauo;¤.
[ ë„¤íŠ¸ì›Œí¬ í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
서비스명 : KORNET
기ê´ëª… : 주ì&lsqauo;회사 ì¼ì´í&lsqauo;°
기ê´ê³ ìœ ë²í˜¸ : ORG1600
주소 : ê²½ê¸°ë„ ì„±ë‚¨ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ ë¶ì •ë¡œ 90 (ì •ìë™) í•œêµí†µì&lsqauo; e-Bizë³¸ë¶ ê¸°íšíŒ
ìš°í¸ë²í˜¸ : 463-711
í• ë&lsqauo;¹ì¼ì : 20031110
[ IPv4주소 ì±…ì„ì ì •ë³´ ]
ì´ë¦„ : IP주소ê´ë¦¬ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ IPv4주소 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : IP주소ë&lsqauo;´ë&lsqauo;¹ì
ì „í™"ë²í˜¸ : +82-2-500-6630
ì „ììš°í¸ : kornet_ip@kt.com
[ 스팸 해킹 ë&lsqauo;´ë&lsqauo;¹ì ì •ë³´ ]
ì´ë¦„ : 스팸/해킹ë&lsqauo;´ë&lsqauo;¹
ì „í™"ë²í˜¸ : +82-2-100-0000
ì „ììš°í¸ : abuse@kornet.net
--------------------------------------------------------------------------------
조회하ì&lsqauo; IPv4ì£¼ì†Œì— ëŒí•œ 위 ê´ë¦¬ëŒí–‰ìì˜ ì‚¬ìš©ì í• ë&lsqauo;¹ì •ë³´ê° ì¡´ì¬í•˜ì§ 않습ë&lsqauo;ë&lsqauo;¤.
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 222.96.0.0 - 222.122.255.255 (/12+/13+/15+/16)
Service Name : KORNET
Organization Name : Korea Telecom
Organization ID : ORG1600
Address : 206, Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro
Zip Code : 463-711
Registration Date : 20031110
[ Admin Contact Information ]
Name : IP Administrator
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Tech Contact Information ]
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
[ Network Abuse Contact Information ]
Name : Network Abuse
Phone : +82-2-100-0000
E-Mail : abuse@kornet.net
- KISA/KRNIC Whois Service -
Regards,
Fail2Ban
Thursday, 7 November 2013
[Fail2Ban] SSH: banned 122.224.207.106
Hi,
The IP 122.224.207.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.224.207.106:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '122.224.207.96 - 122.224.207.111'
inetnum: 122.224.207.96 - 122.224.207.111
netname: ZHEJIANG-OCEAN-CENTER
country: CN
descr: Zhejiang Ocean Monitoring and Prediction Center
descr:
admin-c: JY896-AP
tech-c: CH122-AP
status: ASSIGNED NON-PORTABLE
changed: auto-dbm@dcb.hz.zj.cn 20081108
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
role: CHINANET-ZJ Hangzhou
address: No.352 Tiyuchang Road,Hangzhou,Zhejiang.310003
country: CN
phone: +86-571-85157929
fax-no: +86-571-85102776
e-mail: anti_spam@mail.hz.zj.cn
remarks: send spam reports to anti_spam@mail.hz.zj.cn
remarks: and abuse reports to anti_spam@mail.hz.zj.cn
remarks: Please include detailed information and times in UTC
admin-c: CH54-AP
tech-c: CH54-AP
nic-hdl: CH122-AP
mnt-by: MAINT-CHINANET-ZJ
changed: master@dcb.hz.zj.cn 20031204
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Jun Yan
nic-hdl: JY896-AP
e-mail: dkhxtb@163.com
address: Hangzhou,Zhejiang.Postcode:310000
phone: +86-571-88007200
country: CN
changed: auto-dbm@dcb.hz.zj.cn 20081107
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
The IP 122.224.207.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 122.224.207.106:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '122.224.207.96 - 122.224.207.111'
inetnum: 122.224.207.96 - 122.224.207.111
netname: ZHEJIANG-OCEAN-CENTER
country: CN
descr: Zhejiang Ocean Monitoring and Prediction Center
descr:
admin-c: JY896-AP
tech-c: CH122-AP
status: ASSIGNED NON-PORTABLE
changed: auto-dbm@dcb.hz.zj.cn 20081108
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
role: CHINANET-ZJ Hangzhou
address: No.352 Tiyuchang Road,Hangzhou,Zhejiang.310003
country: CN
phone: +86-571-85157929
fax-no: +86-571-85102776
e-mail: anti_spam@mail.hz.zj.cn
remarks: send spam reports to anti_spam@mail.hz.zj.cn
remarks: and abuse reports to anti_spam@mail.hz.zj.cn
remarks: Please include detailed information and times in UTC
admin-c: CH54-AP
tech-c: CH54-AP
nic-hdl: CH122-AP
mnt-by: MAINT-CHINANET-ZJ
changed: master@dcb.hz.zj.cn 20031204
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Jun Yan
nic-hdl: JY896-AP
e-mail: dkhxtb@163.com
address: Hangzhou,Zhejiang.Postcode:310000
phone: +86-571-88007200
country: CN
changed: auto-dbm@dcb.hz.zj.cn 20081107
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 218.88.253.222
Hi,
The IP 218.88.253.222 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.88.253.222:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.88.253.0 - 218.88.253.255'
inetnum: 218.88.253.0 - 218.88.253.255
netname: SC-XICHANG-NETBAR
descr: xichang netbar
descr: xichang,Sichuan
descr: PR China
country: CN
admin-c: CS408-AP
tech-c: CS408-AP
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-CHINANET-SC
changed: ipadmin@my-public.sc.cninfo.net 20041022
source: APNIC
role: CHINANET SICHUAN
address: No.72,Wen Miao Qian Str Chengdu SiChuan PR China
country: CN
phone: +86-28-86190657
fax-no: +86-25-86190641
e-mail: ipadmin@my-public.sc.cninfo.net
remarks: send anti-spam reports to anti-spam@mail.sc.cninfo.net
remarks: send abuse reports to security@mail.sc.cninfo.net
remarks: times in GMT+8
admin-c: YZ43-AP
tech-c: RL357-AP
tech-c: XS16-AP
nic-hdl: CS408-AP
remarks: noc.cd.sc.cn
notify: ipadmin@my-public.sc.cninfo.net
mnt-by: MAINT-CHINANET-SC
changed: zhangys@mail.sc.cninfo.net 20030318
source: APNIC
changed: hm-changed@apnic.net 20111114
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 218.88.253.222 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.88.253.222:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.88.253.0 - 218.88.253.255'
inetnum: 218.88.253.0 - 218.88.253.255
netname: SC-XICHANG-NETBAR
descr: xichang netbar
descr: xichang,Sichuan
descr: PR China
country: CN
admin-c: CS408-AP
tech-c: CS408-AP
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-CHINANET-SC
changed: ipadmin@my-public.sc.cninfo.net 20041022
source: APNIC
role: CHINANET SICHUAN
address: No.72,Wen Miao Qian Str Chengdu SiChuan PR China
country: CN
phone: +86-28-86190657
fax-no: +86-25-86190641
e-mail: ipadmin@my-public.sc.cninfo.net
remarks: send anti-spam reports to anti-spam@mail.sc.cninfo.net
remarks: send abuse reports to security@mail.sc.cninfo.net
remarks: times in GMT+8
admin-c: YZ43-AP
tech-c: RL357-AP
tech-c: XS16-AP
nic-hdl: CS408-AP
remarks: noc.cd.sc.cn
notify: ipadmin@my-public.sc.cninfo.net
mnt-by: MAINT-CHINANET-SC
changed: zhangys@mail.sc.cninfo.net 20030318
source: APNIC
changed: hm-changed@apnic.net 20111114
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 89.64.219.3
Hi,
The IP 89.64.219.3 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 89.64.219.3:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '89.64.160.0 - 89.65.44.255'
% Abuse contact for '89.64.160.0 - 89.65.44.255' is 'abuse@upc.com.pl'
inetnum: 89.64.160.0 - 89.65.44.255
netname: UPC-PL
descr: UPC Polska Sp. z o.o.
descr: CPE Customers PL
country: PL
admin-c: UP94-RIPE
tech-c: LGI-RIPE
status: ASSIGNED PA
remarks: Contact abuse@upc.com.pl concerning criminal
remarks: activities like spam, hacks, portscans
mnt-by: MNT-LGI
source: RIPE # Filtered
role: Hostmaster Liberty Global
address: Liberty Global Europe
address: Boeing Avenue 53
address: 1119 PE Schiphol Rijk
address: Netherlands
phone: +31 20 7788200
fax-no: +31 20 7788203
admin-c: SB666-RIPE
admin-c: SVS4-RIPE
tech-c: SB666-RIPE
tech-c: SVS4-RIPE
nic-hdl: LGI-RIPE
mnt-by: MNT-LGI
source: RIPE # Filtered
role: UPC Poland
address: UPC Polska Sp. z o.o.
Al. Jana Pawla II 27
00-867 Warszawa
Poland
admin-c: UPC48-RIPE
tech-c: UPC48-RIPE
nic-hdl: UP94-RIPE
mnt-by: UPC-PL-MNT
source: RIPE # Filtered
% Information related to '89.64.0.0/16AS9141'
route: 89.64.0.0/16
descr: UPC.pl
origin: AS9141
remarks: Any abuse activities including, but not limited to spamming,
remarks: hacking and intrusion attempts coming from chello.pl address
remarks: space shall be reported ONLY to:
remarks:
remarks: abuse@chello.pl
remarks:
remarks: Any reports sent to any other e-mail addresses may be treated
remarks: as SPAM itself and followed by legal actions
remarks: against originator
mnt-by: AS6830-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.69 (WHOIS3)
Regards,
Fail2Ban
The IP 89.64.219.3 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 89.64.219.3:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '89.64.160.0 - 89.65.44.255'
% Abuse contact for '89.64.160.0 - 89.65.44.255' is 'abuse@upc.com.pl'
inetnum: 89.64.160.0 - 89.65.44.255
netname: UPC-PL
descr: UPC Polska Sp. z o.o.
descr: CPE Customers PL
country: PL
admin-c: UP94-RIPE
tech-c: LGI-RIPE
status: ASSIGNED PA
remarks: Contact abuse@upc.com.pl concerning criminal
remarks: activities like spam, hacks, portscans
mnt-by: MNT-LGI
source: RIPE # Filtered
role: Hostmaster Liberty Global
address: Liberty Global Europe
address: Boeing Avenue 53
address: 1119 PE Schiphol Rijk
address: Netherlands
phone: +31 20 7788200
fax-no: +31 20 7788203
admin-c: SB666-RIPE
admin-c: SVS4-RIPE
tech-c: SB666-RIPE
tech-c: SVS4-RIPE
nic-hdl: LGI-RIPE
mnt-by: MNT-LGI
source: RIPE # Filtered
role: UPC Poland
address: UPC Polska Sp. z o.o.
Al. Jana Pawla II 27
00-867 Warszawa
Poland
admin-c: UPC48-RIPE
tech-c: UPC48-RIPE
nic-hdl: UP94-RIPE
mnt-by: UPC-PL-MNT
source: RIPE # Filtered
% Information related to '89.64.0.0/16AS9141'
route: 89.64.0.0/16
descr: UPC.pl
origin: AS9141
remarks: Any abuse activities including, but not limited to spamming,
remarks: hacking and intrusion attempts coming from chello.pl address
remarks: space shall be reported ONLY to:
remarks:
remarks: abuse@chello.pl
remarks:
remarks: Any reports sent to any other e-mail addresses may be treated
remarks: as SPAM itself and followed by legal actions
remarks: against originator
mnt-by: AS6830-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.69 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 202.104.150.245
Hi,
The IP 202.104.150.245 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.104.150.245:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.104.0.0 - 202.104.255.255'
inetnum: 202.104.0.0 - 202.104.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: IC83-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
changed: hostmaster@ns.chinanet.cn.net 20000101
changed: hm-changed@apnic.net 20040906
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20041210
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: ipadm@189.cn
address: NO.1,RO.DONGYUANHENG,YUEXIUNAN,GUANGZHOU
phone: +86-20-83877223
fax-no: +86-20-83877223
country: CN
changed: ipadm@189.cn 20110418
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdnoc@189.cn
abuse-mailbox: abuse_gdnoc@189.cn
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 202.104.150.245 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.104.150.245:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.104.0.0 - 202.104.255.255'
inetnum: 202.104.0.0 - 202.104.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: IC83-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
changed: hostmaster@ns.chinanet.cn.net 20000101
changed: hm-changed@apnic.net 20040906
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20041210
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: ipadm@189.cn
address: NO.1,RO.DONGYUANHENG,YUEXIUNAN,GUANGZHOU
phone: +86-20-83877223
fax-no: +86-20-83877223
country: CN
changed: ipadm@189.cn 20110418
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdnoc@189.cn
abuse-mailbox: abuse_gdnoc@189.cn
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 5.63.159.235
Hi,
The IP 5.63.159.235 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 5.63.159.235:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '5.63.156.0 - 5.63.159.255'
% Abuse contact for '5.63.156.0 - 5.63.159.255' is 'abuse@reg.ru'
inetnum: 5.63.156.0 - 5.63.159.255
netname: REGRU-NETWORK
descr: Reg.Ru Hosting
country: RU
admin-c: RGRU-RIPE
tech-c: RGRU-RIPE
status: ASSIGNED PA
mnt-by: REGRU-MNT
mnt-routes: SKYMEDIA-MNT
remarks: INFRA-AW
source: RIPE # Filtered
role: Reg.Ru Network Operations
address: Russia, Moscow, Vassily Petushkova st., house 3, Office 326
remarks: NOC e-mail: noc@reg.ru
remarks: User support: support@reg.ru
remarks: SPAM reports: abuse@reg.ru
phone: +7 (495) 580-11-11
fax-no: +7 (495) 491-55-53
admin-c: ARP-RIPE
tech-c: ARP-RIPE
nic-hdl: RGRU-RIPE
mnt-by: REGRU-MNT
abuse-mailbox: abuse@reg.ru
source: RIPE # Filtered
% Information related to '5.63.156.0/22AS39134'
route: 5.63.156.0/22
descr: Reg.Ru-Exepto
origin: AS39134
mnt-by: SKYMEDIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.69 (WHOIS1)
Regards,
Fail2Ban
The IP 5.63.159.235 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 5.63.159.235:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '5.63.156.0 - 5.63.159.255'
% Abuse contact for '5.63.156.0 - 5.63.159.255' is 'abuse@reg.ru'
inetnum: 5.63.156.0 - 5.63.159.255
netname: REGRU-NETWORK
descr: Reg.Ru Hosting
country: RU
admin-c: RGRU-RIPE
tech-c: RGRU-RIPE
status: ASSIGNED PA
mnt-by: REGRU-MNT
mnt-routes: SKYMEDIA-MNT
remarks: INFRA-AW
source: RIPE # Filtered
role: Reg.Ru Network Operations
address: Russia, Moscow, Vassily Petushkova st., house 3, Office 326
remarks: NOC e-mail: noc@reg.ru
remarks: User support: support@reg.ru
remarks: SPAM reports: abuse@reg.ru
phone: +7 (495) 580-11-11
fax-no: +7 (495) 491-55-53
admin-c: ARP-RIPE
tech-c: ARP-RIPE
nic-hdl: RGRU-RIPE
mnt-by: REGRU-MNT
abuse-mailbox: abuse@reg.ru
source: RIPE # Filtered
% Information related to '5.63.156.0/22AS39134'
route: 5.63.156.0/22
descr: Reg.Ru-Exepto
origin: AS39134
mnt-by: SKYMEDIA-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.69 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 174.142.31.194
Hi,
The IP 174.142.31.194 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 174.142.31.194:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 174.142.31.194"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=174.142.31.194?showDetails=true&showARIN=false&ext=netref2
#
iWeb Technologies Inc. IWEB-BLK-06 (NET-174-142-0-0-1) 174.142.0.0 - 174.142.255.255
Gameserverz IWEB-CL-T087-121CL-545 (NET-174-142-31-192-1) 174.142.31.192 - 174.142.31.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 174.142.31.194 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 174.142.31.194:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 174.142.31.194"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=174.142.31.194?showDetails=true&showARIN=false&ext=netref2
#
iWeb Technologies Inc. IWEB-BLK-06 (NET-174-142-0-0-1) 174.142.0.0 - 174.142.255.255
Gameserverz IWEB-CL-T087-121CL-545 (NET-174-142-31-192-1) 174.142.31.192 - 174.142.31.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 74.63.200.36
Hi,
The IP 74.63.200.36 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 74.63.200.36:
[Querying whois.arin.net]
[Redirected to rwhois.limestonenetworks.com:4321]
[Querying rwhois.limestonenetworks.com]
[rwhois.limestonenetworks.com]
%rwhois V-1.5:003fff:00 rwhois.limestonenetworks.com (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:LSN-BLK-74.63.192.0/18
network:Auth-Area:74.63.192.0/18
network:Network-Name:LSN-74.63.192.0/18
network:IP-Network:74.63.200.32/27
network:IP-Network-Block:74.63.200.32 - 74.63.200.63
network:Organization-Name:Alex Carriel Rivas Rodrigues
network:Organization-City:Sorocaba - SP
network:Organization-State:OT
network:Organization-Zip:18053-080
network:Organization-Country:BR
network:Tech-Contact;I:abuse@limestonenetworks.com
network:Admin-Contact;I:abuse@limestonenetworks.com
network:Updated-By:admin@limestonenetworks.com
network:Class-Name:network
network:ID:LSN-BLK-74.63.192.0/18
network:Auth-Area:74.63.192.0/18
network:Network-Name:LSN-74.63.192.0/18
network:IP-Network:74.63.192.0/18
network:IP-Network-Block:74.63.192.0 - 74.63.255.255
network:Organization;I:Limestone Networks
network:Tech-Contact;I:ipadmin@limestonenetworks.com
network:Admin-Contact;I:admin@limestonenetworks.com
network:Created:20080129
network:Updated:20080129
network:Updated-By:admin@limestonenetworks.com
%referral rwhois://root.rwhois.net:4321/auth-area=.
%ok
Regards,
Fail2Ban
The IP 74.63.200.36 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 74.63.200.36:
[Querying whois.arin.net]
[Redirected to rwhois.limestonenetworks.com:4321]
[Querying rwhois.limestonenetworks.com]
[rwhois.limestonenetworks.com]
%rwhois V-1.5:003fff:00 rwhois.limestonenetworks.com (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:LSN-BLK-74.63.192.0/18
network:Auth-Area:74.63.192.0/18
network:Network-Name:LSN-74.63.192.0/18
network:IP-Network:74.63.200.32/27
network:IP-Network-Block:74.63.200.32 - 74.63.200.63
network:Organization-Name:Alex Carriel Rivas Rodrigues
network:Organization-City:Sorocaba - SP
network:Organization-State:OT
network:Organization-Zip:18053-080
network:Organization-Country:BR
network:Tech-Contact;I:abuse@limestonenetworks.com
network:Admin-Contact;I:abuse@limestonenetworks.com
network:Updated-By:admin@limestonenetworks.com
network:Class-Name:network
network:ID:LSN-BLK-74.63.192.0/18
network:Auth-Area:74.63.192.0/18
network:Network-Name:LSN-74.63.192.0/18
network:IP-Network:74.63.192.0/18
network:IP-Network-Block:74.63.192.0 - 74.63.255.255
network:Organization;I:Limestone Networks
network:Tech-Contact;I:ipadmin@limestonenetworks.com
network:Admin-Contact;I:admin@limestonenetworks.com
network:Created:20080129
network:Updated:20080129
network:Updated-By:admin@limestonenetworks.com
%referral rwhois://root.rwhois.net:4321/auth-area=.
%ok
Regards,
Fail2Ban
Wednesday, 6 November 2013
[Fail2Ban] SSH: banned 61.160.213.78
Hi,
The IP 61.160.213.78 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.160.213.78:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.160.0.0 - 61.160.255.255'
inetnum: 61.160.0.0 - 61.160.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-JS
mnt-routes: maint-chinanet-js
changed: hostmaster@ns.chinanet.cn.net 20020209
changed: hostmaster@ns.chinanet.cn.net 20030306
status: ALLOCATED non-PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% Information related to '61.160.0.0/16AS23650'
route: 61.160.0.0/16
descr: CHINANET jiangsu province network
country: CN
origin: AS23650
mnt-by: MAINT-CHINANET-JS
changed: ip@jsinfo.net 20030414
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 61.160.213.78 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.160.213.78:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.160.0.0 - 61.160.255.255'
inetnum: 61.160.0.0 - 61.160.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-JS
mnt-routes: maint-chinanet-js
changed: hostmaster@ns.chinanet.cn.net 20020209
changed: hostmaster@ns.chinanet.cn.net 20030306
status: ALLOCATED non-PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% Information related to '61.160.0.0/16AS23650'
route: 61.160.0.0/16
descr: CHINANET jiangsu province network
country: CN
origin: AS23650
mnt-by: MAINT-CHINANET-JS
changed: ip@jsinfo.net 20030414
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 168.63.38.171
Hi,
The IP 168.63.38.171 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 168.63.38.171:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 168.63.38.171"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=168.63.38.171?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 168.61.0.0 - 168.63.255.255
CIDR: 168.61.0.0/16, 168.62.0.0/15
OriginAS:
NetName: MICROSOFT
NetHandle: NET-168-61-0-0-1
Parent: NET-168-0-0-0-0
NetType: Direct Assignment
RegDate: 2011-06-22
Updated: 2013-08-20
Ref: http://whois.arin.net/rest/net/NET-168-61-0-0-1
OrgName: Microsoft Corp
OrgId: MSFT-Z
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 2011-06-22
Updated: 2013-10-03
Comment: To report suspected security issues specific to
Comment: traffic emanating from Microsoft online services,
Comment: including the distribution of malicious content
Comment: or other illicit or illegal material through a
Comment: Microsoft online service, please submit reports
Comment: to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft
Comment: Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft
Comment: products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests,
Comment: please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: http://whois.arin.net/rest/org/MSFT-Z
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: http://whois.arin.net/rest/poc/MRPD-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: http://whois.arin.net/rest/poc/MAC74-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 168.63.38.171 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 168.63.38.171:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 168.63.38.171"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=168.63.38.171?showDetails=true&showARIN=false&ext=netref2
#
NetRange: 168.61.0.0 - 168.63.255.255
CIDR: 168.61.0.0/16, 168.62.0.0/15
OriginAS:
NetName: MICROSOFT
NetHandle: NET-168-61-0-0-1
Parent: NET-168-0-0-0-0
NetType: Direct Assignment
RegDate: 2011-06-22
Updated: 2013-08-20
Ref: http://whois.arin.net/rest/net/NET-168-61-0-0-1
OrgName: Microsoft Corp
OrgId: MSFT-Z
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 2011-06-22
Updated: 2013-10-03
Comment: To report suspected security issues specific to
Comment: traffic emanating from Microsoft online services,
Comment: including the distribution of malicious content
Comment: or other illicit or illegal material through a
Comment: Microsoft online service, please submit reports
Comment: to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft
Comment: Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft
Comment: products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests,
Comment: please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: http://whois.arin.net/rest/org/MSFT-Z
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: http://whois.arin.net/rest/poc/MRPD-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: http://whois.arin.net/rest/poc/MAC74-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
Subscribe to:
Posts (Atom)