Hi,
The IP 60.28.27.14 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 60.28.27.14:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '60.24.0.0 - 60.30.255.255'
inetnum: 60.24.0.0 - 60.30.255.255
netname: UNICOM-TJ
country: CN
descr: China Unicom Tianjin province network
descr: China Unicom
admin-c: CH1302-AP
tech-c: HZ19-AP
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-TJ
mnt-routes: MAINT-CNCGROUP-RR
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20040416
changed: hm-changed@apnic.net 20060124
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
person: huang zheng
nic-hdl: HZ19-AP
e-mail: tj-ipaddr3@chinaunicom.cn
address: 76 NO, ShiZiLin Street ,HeBei district of Tianjin,China
phone: +86-22-24459190
fax-no: +86-22-24454499
country: CN
changed: tj-ipaddr3@chinaunicom.cn 20120713
mnt-by: MAINT-CNCGROUP-TJ
source: APNIC
% Information related to '60.28.0.0/15AS4837'
route: 60.28.0.0/15
descr: CNC Group CHINA169 Tianjin Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
Friday 6 December 2013
[Fail2Ban] SSH: banned 220.181.82.213
Hi,
The IP 220.181.82.213 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 220.181.82.213:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '220.181.0.0 - 220.181.255.255'
inetnum: 220.181.0.0 - 220.181.255.255
netname: CHINANET-IDC-BJ
country: CN
descr: CHINANET Beijing province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
admin-c: CH93-AP
tech-c: HC55-AP
remarks: hostmaster is not for spam complaint,
remarks: please send spam complaint to anti-spam@ns.chinanet.cn.net
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINATELECOM-BJ
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20030620
changed: hm-changed@apnic.net 20050715
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Hostmaster of Beijing Telecom corporation CHINA TELECOM
nic-hdl: HC55-AP
e-mail: bjnic@bjtelecom.net
address: Beijing Telecom
address: No. 107 XiDan Beidajie, Xicheng District Beijing
phone: +86-010-58503461
fax-no: +86-010-58503054
country: cn
changed: bjnic@bjtelecom.net 20040115
mnt-by: MAINT-CHINATELECOM-BJ
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 220.181.82.213 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 220.181.82.213:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '220.181.0.0 - 220.181.255.255'
inetnum: 220.181.0.0 - 220.181.255.255
netname: CHINANET-IDC-BJ
country: CN
descr: CHINANET Beijing province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
admin-c: CH93-AP
tech-c: HC55-AP
remarks: hostmaster is not for spam complaint,
remarks: please send spam complaint to anti-spam@ns.chinanet.cn.net
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINATELECOM-BJ
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20030620
changed: hm-changed@apnic.net 20050715
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Hostmaster of Beijing Telecom corporation CHINA TELECOM
nic-hdl: HC55-AP
e-mail: bjnic@bjtelecom.net
address: Beijing Telecom
address: No. 107 XiDan Beidajie, Xicheng District Beijing
phone: +86-010-58503461
fax-no: +86-010-58503054
country: cn
changed: bjnic@bjtelecom.net 20040115
mnt-by: MAINT-CHINATELECOM-BJ
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 115.238.73.16
Hi,
The IP 115.238.73.16 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.238.73.16:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '115.238.73.0 - 115.238.73.255'
inetnum: 115.238.73.0 - 115.238.73.255
netname: HANGZHOU-XIAOSHAN
country: CN
descr: Hangzhou Network Technology Co., Ltd. Bank of Internet
descr:
admin-c: HH1403-AP
tech-c: CH122-AP
status: ASSIGNED NON-PORTABLE
changed: auto-dbm@dcb.hz.zj.cn 20090819
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
role: CHINANET-ZJ Hangzhou
address: No.352 Tiyuchang Road,Hangzhou,Zhejiang.310003
country: CN
phone: +86-571-85157929
fax-no: +86-571-85102776
e-mail: anti_spam@mail.hz.zj.cn
remarks: send spam reports to anti_spam@mail.hz.zj.cn
remarks: and abuse reports to anti_spam@mail.hz.zj.cn
remarks: Please include detailed information and times in UTC
admin-c: CH54-AP
tech-c: CH54-AP
nic-hdl: CH122-AP
mnt-by: MAINT-CHINANET-ZJ
changed: master@dcb.hz.zj.cn 20031204
source: APNIC
changed: hm-changed@apnic.net 20111114
person: HONGZHONG HE
nic-hdl: HH1403-AP
e-mail: WGQSHI@CHINAREN.COM.CN
address: Xiaoshan,Hangzhou,Zhejiang.Postcode:311200
phone: +86-13957117725
country: CN
changed: auto-dbm@dcb.hz.zj.cn 20110301
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 115.238.73.16 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.238.73.16:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '115.238.73.0 - 115.238.73.255'
inetnum: 115.238.73.0 - 115.238.73.255
netname: HANGZHOU-XIAOSHAN
country: CN
descr: Hangzhou Network Technology Co., Ltd. Bank of Internet
descr:
admin-c: HH1403-AP
tech-c: CH122-AP
status: ASSIGNED NON-PORTABLE
changed: auto-dbm@dcb.hz.zj.cn 20090819
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
role: CHINANET-ZJ Hangzhou
address: No.352 Tiyuchang Road,Hangzhou,Zhejiang.310003
country: CN
phone: +86-571-85157929
fax-no: +86-571-85102776
e-mail: anti_spam@mail.hz.zj.cn
remarks: send spam reports to anti_spam@mail.hz.zj.cn
remarks: and abuse reports to anti_spam@mail.hz.zj.cn
remarks: Please include detailed information and times in UTC
admin-c: CH54-AP
tech-c: CH54-AP
nic-hdl: CH122-AP
mnt-by: MAINT-CHINANET-ZJ
changed: master@dcb.hz.zj.cn 20031204
source: APNIC
changed: hm-changed@apnic.net 20111114
person: HONGZHONG HE
nic-hdl: HH1403-AP
e-mail: WGQSHI@CHINAREN.COM.CN
address: Xiaoshan,Hangzhou,Zhejiang.Postcode:311200
phone: +86-13957117725
country: CN
changed: auto-dbm@dcb.hz.zj.cn 20110301
mnt-by: MAINT-CN-CHINANET-ZJ-HZ
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 103.23.244.22
Hi,
The IP 103.23.244.22 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 103.23.244.22:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '103.23.244.0 - 103.23.244.255'
inetnum: 103.23.244.0 - 103.23.244.255
netname: UPI-ID
descr: Universitas Pendidikan Indonesia
descr: University / Direct Member IDNIC
descr: Jl. Dr. Setiabudhi no. 229
descr: Bandung Jawa Barat
country: ID
admin-c: MRS8-AP
tech-c: MRS8-AP
remarks: Send Spam& Abuse Reports to munir@upi.edu
mnt-by: MNT-APJII-ID
mnt-routes: MAINT-ID-UPI
mnt-irt: IRT-UPI-ID
status: ASSIGNED PORTABLE
changed: hm-changed@apnic.net 20111212
changed: hostmaster@idnic.net 20111219
source: APNIC
irt: IRT-UPI-ID
address: Universitas Pendidikan Indonesia
address: Jl. Dr. Setiabudhi no. 229
address: Bandung Jawa Barat
e-mail: munir@upi.edu
abuse-mailbox: munir@upi.edu
admin-c: MRS8-AP
tech-c: MRS8-AP
auth: # Filtered
mnt-by: MAINT-ID-UPI
changed: munir@upi.edu 20111216
source: APNIC
person: Moh Riky Saadilah
address: Jl. Dr.Setiabudhi No. 229
address: Bandung 40154
address: Jawa Barat - Indonesia
country: ID
phone: +62-22-70619000
fax-no: +62-22-2013651
e-mail: riky@upi.edu
nic-hdl: MRS8-AP
mnt-by: MAINT-ID-UPI
changed: hostmaster@idnic.net 20111202
source: APNIC
% Information related to '103.23.244.0/24AS18394'
route: 103.23.244.0/24
descr: Universitas Pendidikan Indonesia
descr: University / Direct Member IDNIC
descr: Jl. Dr. Setiabudhi no. 229
descr: Bandung - Jawa Barat
country: ID
origin: AS18394
mnt-by: MAINT-ID-UPI
changed: hostmaster@telkom.net.id 20111223
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 103.23.244.22 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 103.23.244.22:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '103.23.244.0 - 103.23.244.255'
inetnum: 103.23.244.0 - 103.23.244.255
netname: UPI-ID
descr: Universitas Pendidikan Indonesia
descr: University / Direct Member IDNIC
descr: Jl. Dr. Setiabudhi no. 229
descr: Bandung Jawa Barat
country: ID
admin-c: MRS8-AP
tech-c: MRS8-AP
remarks: Send Spam& Abuse Reports to munir@upi.edu
mnt-by: MNT-APJII-ID
mnt-routes: MAINT-ID-UPI
mnt-irt: IRT-UPI-ID
status: ASSIGNED PORTABLE
changed: hm-changed@apnic.net 20111212
changed: hostmaster@idnic.net 20111219
source: APNIC
irt: IRT-UPI-ID
address: Universitas Pendidikan Indonesia
address: Jl. Dr. Setiabudhi no. 229
address: Bandung Jawa Barat
e-mail: munir@upi.edu
abuse-mailbox: munir@upi.edu
admin-c: MRS8-AP
tech-c: MRS8-AP
auth: # Filtered
mnt-by: MAINT-ID-UPI
changed: munir@upi.edu 20111216
source: APNIC
person: Moh Riky Saadilah
address: Jl. Dr.Setiabudhi No. 229
address: Bandung 40154
address: Jawa Barat - Indonesia
country: ID
phone: +62-22-70619000
fax-no: +62-22-2013651
e-mail: riky@upi.edu
nic-hdl: MRS8-AP
mnt-by: MAINT-ID-UPI
changed: hostmaster@idnic.net 20111202
source: APNIC
% Information related to '103.23.244.0/24AS18394'
route: 103.23.244.0/24
descr: Universitas Pendidikan Indonesia
descr: University / Direct Member IDNIC
descr: Jl. Dr. Setiabudhi no. 229
descr: Bandung - Jawa Barat
country: ID
origin: AS18394
mnt-by: MAINT-ID-UPI
changed: hostmaster@telkom.net.id 20111223
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 46.165.252.83
Hi,
The IP 46.165.252.83 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 46.165.252.83:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '46.165.192.0 - 46.165.255.255'
% Abuse contact for '46.165.192.0 - 46.165.255.255' is 'abuse@leaseweb.de'
inetnum: 46.165.192.0 - 46.165.255.255
netname: DE-NETDIRECT-20101213
descr: Leaseweb Germany GmbH
country: DE
org: ORG-nA8-RIPE
admin-c: LSWG-RIPE
tech-c: LSWG-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: NETDIRECT-MNT
mnt-routes: NETDIRECT-MNT
mnt-domains: NETDIRECT-MNT
remarks: Please send email to abuse@leaseweb.de for complaints regarding portscans, DoS attacks and spam.
source: RIPE # Filtered
organisation: ORG-nA8-RIPE
org-name: Leaseweb Germany GmbH
org-type: LIR
address: Leaseweb Germany GmbH
address: Kleyer Strasse 79 / Tor 13
address: 60326
address: Frankfurt
address: GERMANY
phone: +496990556880
fax-no: +4969905568822
mnt-ref: NETDIRECT-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
admin-c: LSWG-RIPE
admin-c: SPW1-RIPE
abuse-c: LWGA-RIPE
source: RIPE # Filtered
person: RIPE Mann
address: Kleyerstrasse 79 / Tor 13
address: 60326 Frankfurt am Main
address: Germany
phone: +49 69 90556880
fax-no: +49 69 87000140
abuse-mailbox: abuse@leaseweb.de
nic-hdl: LSWG-RIPE
mnt-by: OCOM-MNT
source: RIPE # Filtered
% Information related to '46.165.192.0/18AS16265'
route: 46.165.192.0/18
descr: ORG-nA8-RIPE
origin: AS16265
org: ORG-nA8-RIPE
mnt-by: NETDIRECT-MNT
source: RIPE # Filtered
organisation: ORG-nA8-RIPE
org-name: Leaseweb Germany GmbH
org-type: LIR
address: Leaseweb Germany GmbH
address: Kleyer Strasse 79 / Tor 13
address: 60326
address: Frankfurt
address: GERMANY
phone: +496990556880
fax-no: +4969905568822
mnt-ref: NETDIRECT-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
admin-c: LSWG-RIPE
admin-c: SPW1-RIPE
abuse-c: LWGA-RIPE
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS2)
Regards,
Fail2Ban
The IP 46.165.252.83 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 46.165.252.83:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '46.165.192.0 - 46.165.255.255'
% Abuse contact for '46.165.192.0 - 46.165.255.255' is 'abuse@leaseweb.de'
inetnum: 46.165.192.0 - 46.165.255.255
netname: DE-NETDIRECT-20101213
descr: Leaseweb Germany GmbH
country: DE
org: ORG-nA8-RIPE
admin-c: LSWG-RIPE
tech-c: LSWG-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: NETDIRECT-MNT
mnt-routes: NETDIRECT-MNT
mnt-domains: NETDIRECT-MNT
remarks: Please send email to abuse@leaseweb.de for complaints regarding portscans, DoS attacks and spam.
source: RIPE # Filtered
organisation: ORG-nA8-RIPE
org-name: Leaseweb Germany GmbH
org-type: LIR
address: Leaseweb Germany GmbH
address: Kleyer Strasse 79 / Tor 13
address: 60326
address: Frankfurt
address: GERMANY
phone: +496990556880
fax-no: +4969905568822
mnt-ref: NETDIRECT-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
admin-c: LSWG-RIPE
admin-c: SPW1-RIPE
abuse-c: LWGA-RIPE
source: RIPE # Filtered
person: RIPE Mann
address: Kleyerstrasse 79 / Tor 13
address: 60326 Frankfurt am Main
address: Germany
phone: +49 69 90556880
fax-no: +49 69 87000140
abuse-mailbox: abuse@leaseweb.de
nic-hdl: LSWG-RIPE
mnt-by: OCOM-MNT
source: RIPE # Filtered
% Information related to '46.165.192.0/18AS16265'
route: 46.165.192.0/18
descr: ORG-nA8-RIPE
origin: AS16265
org: ORG-nA8-RIPE
mnt-by: NETDIRECT-MNT
source: RIPE # Filtered
organisation: ORG-nA8-RIPE
org-name: Leaseweb Germany GmbH
org-type: LIR
address: Leaseweb Germany GmbH
address: Kleyer Strasse 79 / Tor 13
address: 60326
address: Frankfurt
address: GERMANY
phone: +496990556880
fax-no: +4969905568822
mnt-ref: NETDIRECT-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
admin-c: LSWG-RIPE
admin-c: SPW1-RIPE
abuse-c: LWGA-RIPE
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 115.182.62.208
Hi,
The IP 115.182.62.208 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.182.62.208:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '115.182.48.0 - 115.182.63.255'
inetnum: 115.182.48.0 - 115.182.63.255
netname: DNION
descr: SHANGHAI DNION INFORMATION TECHNOLOGY CO.,LTD
descr: 2302 ZhongYu Plaza No.Jia-6 GongTiBeiRoad ChaoYang
descr: District BeiJing
country: CN
admin-c: LL1609-AP
tech-c: LL1609-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: ipas@cnnic.cn 20121021
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: Lewis LIU
nic-hdl: LL1609-AP
e-mail: liushilin@dnion.com
address: Shijingshan District, Beijing to reunite the property the second floor of Building 18, next to the park three.
phone: +86-010-85235887
fax-no: +86-010-85235887
country: CN
changed: liushilin@dnion.com 20100726
mnt-by: MAINT-NEW
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 115.182.62.208 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.182.62.208:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '115.182.48.0 - 115.182.63.255'
inetnum: 115.182.48.0 - 115.182.63.255
netname: DNION
descr: SHANGHAI DNION INFORMATION TECHNOLOGY CO.,LTD
descr: 2302 ZhongYu Plaza No.Jia-6 GongTiBeiRoad ChaoYang
descr: District BeiJing
country: CN
admin-c: LL1609-AP
tech-c: LL1609-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: ipas@cnnic.cn 20121021
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: Lewis LIU
nic-hdl: LL1609-AP
e-mail: liushilin@dnion.com
address: Shijingshan District, Beijing to reunite the property the second floor of Building 18, next to the park three.
phone: +86-010-85235887
fax-no: +86-010-85235887
country: CN
changed: liushilin@dnion.com 20100726
mnt-by: MAINT-NEW
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 222.45.87.22
Hi,
The IP 222.45.87.22 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 222.45.87.22:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.32.0.0 - 222.63.255.255'
inetnum: 222.32.0.0 - 222.63.255.255
netname: CTTNET
descr: China TieTong Telecommunications Corporation
descr: Jinze Mansion, 2 Guangningbo Street,
descr: Xicheng District, Beijing, China, 100032
country: CN
admin-c: WP188-AP
tech-c: LM273-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CN-CRTC
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090430
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: liu min
nic-hdl: LM273-AP
e-mail: crnet_mgr@chinatietong.com
address: 22F Yuetan Mansion, Xicheng District, Beijing, P.R.China
phone: +86-10-51848796
fax-no: +86-10-51842426
country: CN
changed: ipas@cnnic.net.cn 20120320
mnt-by: MAINT-CNNIC-AP
source: APNIC
person: Wang Pei
nic-hdl: WP188-AP
e-mail: crnet_mgr@chinatietong.com
address: Jinze Mansion, 2 Guangningbo Street,
address: Xicheng District, Beijing, China, 100032
phone: +21-51892106
fax-no: +21-51847802
country: CN
changed: ipas@cnnic.net.cn 20060926
mnt-by: MAINT-CNNIC-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 222.45.87.22 has just been banned by Fail2Ban after
6 attempts against SSH.
Here are more information about 222.45.87.22:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.32.0.0 - 222.63.255.255'
inetnum: 222.32.0.0 - 222.63.255.255
netname: CTTNET
descr: China TieTong Telecommunications Corporation
descr: Jinze Mansion, 2 Guangningbo Street,
descr: Xicheng District, Beijing, China, 100032
country: CN
admin-c: WP188-AP
tech-c: LM273-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CN-CRTC
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: hm-changed@apnic.net 20090430
source: APNIC
irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: ipas@cnnic.cn 20110428
source: APNIC
person: liu min
nic-hdl: LM273-AP
e-mail: crnet_mgr@chinatietong.com
address: 22F Yuetan Mansion, Xicheng District, Beijing, P.R.China
phone: +86-10-51848796
fax-no: +86-10-51842426
country: CN
changed: ipas@cnnic.net.cn 20120320
mnt-by: MAINT-CNNIC-AP
source: APNIC
person: Wang Pei
nic-hdl: WP188-AP
e-mail: crnet_mgr@chinatietong.com
address: Jinze Mansion, 2 Guangningbo Street,
address: Xicheng District, Beijing, China, 100032
phone: +21-51892106
fax-no: +21-51847802
country: CN
changed: ipas@cnnic.net.cn 20060926
mnt-by: MAINT-CNNIC-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 61.142.106.34
Hi,
The IP 61.142.106.34 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.142.106.34:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.140.0.0 - 61.146.255.255'
inetnum: 61.140.0.0 - 61.146.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: IC83-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20040914
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: ipadm@189.cn
address: NO.1,RO.DONGYUANHENG,YUEXIUNAN,GUANGZHOU
phone: +86-20-83877223
fax-no: +86-20-83877223
country: CN
changed: ipadm@189.cn 20110418
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdnoc@189.cn
abuse-mailbox: abuse_gdnoc@189.cn
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 61.142.106.34 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 61.142.106.34:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '61.140.0.0 - 61.146.255.255'
inetnum: 61.140.0.0 - 61.146.255.255
netname: CHINANET-GD
descr: CHINANET Guangdong province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: IC83-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-GD
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20040914
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: IPMASTER CHINANET-GD
nic-hdl: IC83-AP
e-mail: ipadm@189.cn
address: NO.1,RO.DONGYUANHENG,YUEXIUNAN,GUANGZHOU
phone: +86-20-83877223
fax-no: +86-20-83877223
country: CN
changed: ipadm@189.cn 20110418
mnt-by: MAINT-CHINANET-GD
remarks: IPMASTER is not for spam complaint,please send spam complaint to abuse_gdnoc@189.cn
abuse-mailbox: abuse_gdnoc@189.cn
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 58.215.241.137
Hi,
The IP 58.215.241.137 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 58.215.241.137:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '58.208.0.0 - 58.223.255.255'
inetnum: 58.208.0.0 - 58.223.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20050624
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 58.215.241.137 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 58.215.241.137:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '58.208.0.0 - 58.223.255.255'
inetnum: 58.208.0.0 - 58.223.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20050624
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
Thursday 5 December 2013
[Fail2Ban] SSH: banned 114.80.246.203
Hi,
The IP 114.80.246.203 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 114.80.246.203:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '114.80.0.0 - 114.95.255.255'
inetnum: 114.80.0.0 - 114.95.255.255
netname: CHINANET-SH
descr: CHINANET SHANGHAI PROVINCE NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: WWQ4-AP
tech-c: WWQ4-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SH
changed: hm-changed@apnic.net 20080514
source: APNIC
person: Weng Wen Qian
address: Room 2405,357 Songlin Road,Shanghai 200122
country: CN
phone: +86-21-68405784
fax-no: +86-21-50623458
e-mail: wengwq@online.sh.cn
nic-hdl: WWQ4-AP
mnt-by: MAINT-CHINANET-SH
changed: ip-admin@mail.online.sh.cn 20050403
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 114.80.246.203 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 114.80.246.203:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '114.80.0.0 - 114.95.255.255'
inetnum: 114.80.0.0 - 114.95.255.255
netname: CHINANET-SH
descr: CHINANET SHANGHAI PROVINCE NETWORK
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: WWQ4-AP
tech-c: WWQ4-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SH
changed: hm-changed@apnic.net 20080514
source: APNIC
person: Weng Wen Qian
address: Room 2405,357 Songlin Road,Shanghai 200122
country: CN
phone: +86-21-68405784
fax-no: +86-21-50623458
e-mail: wengwq@online.sh.cn
nic-hdl: WWQ4-AP
mnt-by: MAINT-CHINANET-SH
changed: ip-admin@mail.online.sh.cn 20050403
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 198.24.179.53
Hi,
The IP 198.24.179.53 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.24.179.53:
[Querying whois.arin.net]
[Redirected to rwhois.securedservers.com:4321]
[Querying rwhois.securedservers.com]
[rwhois.securedservers.com]
%rwhois V-1.0,V-1.5:00090h:00 portal.securedservers.com (Ubersmith RWhois Server V-2.3.0)
autharea=198.24.160.0/19
xautharea=198.24.160.0/19
network:Class-Name:network
network:Auth-Area:198.24.160.0/19
network:ID:NET-48086.198.24.179.48/29
network:Network-Name:Public
network:IP-Network:198.24.179.48/29
network:IP-Network-Block:198.24.179.48 - 198.24.179.55
network:Org-Name:AnthonyGarcia
network:Street-Address:999 Bennetts Mills Rd.
network:City:Jackson
network:State:NJ
network:Postal-Code:08527
network:Country-Code:US
network:Tech-Contact:MAINT-48086.198.24.179.48/29
network:Created:20130808202256000
network:Updated:20130808202256000
network:Updated-By:dnsadmin@securedservers.com
contact:POC-Name:DNS Administrator
contact:POC-Email:dnsadmin@securedservers.com
contact:POC-Phone:(480) 422-2023
contact:Tech-Name:DNS Administrator
contact:Tech-Email:dnsadmin@securedservers.com
contact:Tech-Phone:(480) 422-2023
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@securedservers.com
contact:Abuse-Phone:+1-480-422-2022 (Office)
%ok
Regards,
Fail2Ban
The IP 198.24.179.53 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.24.179.53:
[Querying whois.arin.net]
[Redirected to rwhois.securedservers.com:4321]
[Querying rwhois.securedservers.com]
[rwhois.securedservers.com]
%rwhois V-1.0,V-1.5:00090h:00 portal.securedservers.com (Ubersmith RWhois Server V-2.3.0)
autharea=198.24.160.0/19
xautharea=198.24.160.0/19
network:Class-Name:network
network:Auth-Area:198.24.160.0/19
network:ID:NET-48086.198.24.179.48/29
network:Network-Name:Public
network:IP-Network:198.24.179.48/29
network:IP-Network-Block:198.24.179.48 - 198.24.179.55
network:Org-Name:AnthonyGarcia
network:Street-Address:999 Bennetts Mills Rd.
network:City:Jackson
network:State:NJ
network:Postal-Code:08527
network:Country-Code:US
network:Tech-Contact:MAINT-48086.198.24.179.48/29
network:Created:20130808202256000
network:Updated:20130808202256000
network:Updated-By:dnsadmin@securedservers.com
contact:POC-Name:DNS Administrator
contact:POC-Email:dnsadmin@securedservers.com
contact:POC-Phone:(480) 422-2023
contact:Tech-Name:DNS Administrator
contact:Tech-Email:dnsadmin@securedservers.com
contact:Tech-Phone:(480) 422-2023
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@securedservers.com
contact:Abuse-Phone:+1-480-422-2022 (Office)
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 115.115.95.44
Hi,
The IP 115.115.95.44 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.115.95.44:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '115.112.0.0 - 115.119.255.255'
inetnum: 115.112.0.0 - 115.119.255.255
netname: TATACOMM-IN
descr: Internet Service Provider
descr: TATA Communications formerly VSNL is Leading ISP,
descr: Data and Voice Carrier in India
admin-c: TC651-AP
tech-c: TC651-AP
country: IN
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-TATACOMM-IN
mnt-irt: IRT-TATACOMM-IN
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20080730
changed: hm-changed@apnic.net 20080826
changed: hm-changed@apnic.net 20080827
changed: hm-changed@apnic.net 20120221
source: APNIC
irt: IRT-TATACOMM-IN
address: 6th Floor, LVSB, VSNL
address: Kashinath Dhuru marg, Prabhadevi
address: Dadar(W), Mumbai 400028
address: India
e-mail: ip.admin@tatacommunications.com
abuse-mailbox: 4755abuse@tatacommunications.com
admin-c: IA15-AP
tech-c: IA15-AP
auth: # Filtered
mnt-by: MAINT-TATACOMM-IN
changed: 4755abuse@tatacommunications.com 20101123
source: APNIC
role: TATA Communications
nic-hdl: TC651-AP
address: 6th Floor,A Tower, BKC
address: Plot Nos. C-21 & C-36
address: 'G' Block, Bandra Kurla Complex, Mumbai
phone: +91-22-66591637
country: IN
e-mail: ip.admin@tatacommunications.com
admin-c: IA15-AP
tech-c: VT43-AP
mnt-by: MAINT-TATACOMM-IN
changed: hm-changed@apnic.net 20080826
changed: hm-changed@apnic.net 20080827
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 115.115.95.44 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 115.115.95.44:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '115.112.0.0 - 115.119.255.255'
inetnum: 115.112.0.0 - 115.119.255.255
netname: TATACOMM-IN
descr: Internet Service Provider
descr: TATA Communications formerly VSNL is Leading ISP,
descr: Data and Voice Carrier in India
admin-c: TC651-AP
tech-c: TC651-AP
country: IN
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-TATACOMM-IN
mnt-irt: IRT-TATACOMM-IN
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20080730
changed: hm-changed@apnic.net 20080826
changed: hm-changed@apnic.net 20080827
changed: hm-changed@apnic.net 20120221
source: APNIC
irt: IRT-TATACOMM-IN
address: 6th Floor, LVSB, VSNL
address: Kashinath Dhuru marg, Prabhadevi
address: Dadar(W), Mumbai 400028
address: India
e-mail: ip.admin@tatacommunications.com
abuse-mailbox: 4755abuse@tatacommunications.com
admin-c: IA15-AP
tech-c: IA15-AP
auth: # Filtered
mnt-by: MAINT-TATACOMM-IN
changed: 4755abuse@tatacommunications.com 20101123
source: APNIC
role: TATA Communications
nic-hdl: TC651-AP
address: 6th Floor,A Tower, BKC
address: Plot Nos. C-21 & C-36
address: 'G' Block, Bandra Kurla Complex, Mumbai
phone: +91-22-66591637
country: IN
e-mail: ip.admin@tatacommunications.com
admin-c: IA15-AP
tech-c: VT43-AP
mnt-by: MAINT-TATACOMM-IN
changed: hm-changed@apnic.net 20080826
changed: hm-changed@apnic.net 20080827
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 190.97.83.30
Hi,
The IP 190.97.83.30 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 190.97.83.30:
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-12-05 15:57:40 (BRST -02:00)
inetnum: 190.97.80/20
status: allocated
aut-num: AS27845
abuse-c: CAG23
owner: Empresa de Recursos Tecnologicos S.A E.S.P
ownerid: CO-ERTE-LACNIC
responsible: Becerra, Leonardo
address: Av Vasquez Cobo, 23N-47, --,
address: 0572 - Cali - VA
country: CO
phone: +57 2 6202020 []
owner-c: ERT2
tech-c: CAG23
abuse-c: CAG23
inetrev: 190.97.80/20
nserver: NS1.ERT.COM.CO
nsstat: 20131203 AA
nslastaa: 20131203
nserver: NS2.ERT.COM.CO
nsstat: 20131203 AA
nslastaa: 20131203
nserver: NS3.ERT.COM.CO
nsstat: 20131203 AA
nslastaa: 20131203
created: 20080512
changed: 20080512
nic-hdl: CAG23
person: Carlos Andres Pulgarin Gomez
e-mail: cpulgarin@ERT.NET.CO
address: Av. Vasquez Cobo 23N-47, 57, 6202078
address: 00000 - Cali - VA
country: CO
phone: +57 2 6202020 [2078]
created: 20080225
changed: 20120411
nic-hdl: ERT2
person: ERT - Empresa de Recursos Tecnologicos
e-mail: lbecerra@ERT.NET.CO
address: Avenida Vasques Cobo Nro. 23 N 47, 23, Edificio Ant
address: 0572 - Cali - Va
country: CO
phone: +57 2 6202020 [2045]
created: 20060315
changed: 20090219
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
The IP 190.97.83.30 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 190.97.83.30:
[Querying whois.lacnic.net]
[whois.lacnic.net]
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2013-12-05 15:57:40 (BRST -02:00)
inetnum: 190.97.80/20
status: allocated
aut-num: AS27845
abuse-c: CAG23
owner: Empresa de Recursos Tecnologicos S.A E.S.P
ownerid: CO-ERTE-LACNIC
responsible: Becerra, Leonardo
address: Av Vasquez Cobo, 23N-47, --,
address: 0572 - Cali - VA
country: CO
phone: +57 2 6202020 []
owner-c: ERT2
tech-c: CAG23
abuse-c: CAG23
inetrev: 190.97.80/20
nserver: NS1.ERT.COM.CO
nsstat: 20131203 AA
nslastaa: 20131203
nserver: NS2.ERT.COM.CO
nsstat: 20131203 AA
nslastaa: 20131203
nserver: NS3.ERT.COM.CO
nsstat: 20131203 AA
nslastaa: 20131203
created: 20080512
changed: 20080512
nic-hdl: CAG23
person: Carlos Andres Pulgarin Gomez
e-mail: cpulgarin@ERT.NET.CO
address: Av. Vasquez Cobo 23N-47, 57, 6202078
address: 00000 - Cali - VA
country: CO
phone: +57 2 6202020 [2078]
created: 20080225
changed: 20120411
nic-hdl: ERT2
person: ERT - Empresa de Recursos Tecnologicos
e-mail: lbecerra@ERT.NET.CO
address: Avenida Vasques Cobo Nro. 23 N 47, 23, Edificio Ant
address: 0572 - Cali - Va
country: CO
phone: +57 2 6202020 [2045]
created: 20060315
changed: 20090219
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 108.171.184.147
Hi,
The IP 108.171.184.147 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 108.171.184.147:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 108.171.184.147"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=108.171.184.147?showDetails=true&showARIN=false&ext=netref2
#
Rackspace Hosting RACKS-8-NET-6 (NET-108-171-160-0-1) 108.171.160.0 - 108.171.191.255
Rackspace Cloud Servers RACKS-8-1350332963648826 (NET-108-171-184-0-1) 108.171.184.0 - 108.171.184.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
The IP 108.171.184.147 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 108.171.184.147:
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
#
# Query terms are ambiguous. The query is assumed to be:
# "n 108.171.184.147"
#
# Use "?" to get help.
#
#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=108.171.184.147?showDetails=true&showARIN=false&ext=netref2
#
Rackspace Hosting RACKS-8-NET-6 (NET-108-171-160-0-1) 108.171.160.0 - 108.171.191.255
Rackspace Cloud Servers RACKS-8-1350332963648826 (NET-108-171-184-0-1) 108.171.184.0 - 108.171.184.255
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 46.137.93.27
Hi,
The IP 46.137.93.27 has just been banned by Fail2Ban after
7 attempts against SSH.
Here are more information about 46.137.93.27:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '46.137.0.0 - 46.137.127.255'
% Abuse contact for '46.137.0.0 - 46.137.127.255' is 'ec2-abuse@Amazon.com'
inetnum: 46.137.0.0 - 46.137.127.255
netname: AMAZON-EU-AWS
descr: Amazon Web Services, Elastic Compute Cloud, EC2, EU
remarks: The activity you have detected originates from a
dynamic hosting environment.
For fastest response, please submit abuse reports at
http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse
For more information regarding EC2 see:
http://ec2.amazonaws.com/
All reports MUST include:
* src IP
* dest IP (your IP)
* dest port
* Accurate date/timestamp and timezone of activity
* Intensity/frequency (short log extracts)
* Your contact details (phone and email)
Without these we will be unable to
identify the correct owner of the IP address at that
point in time.
country: IE
admin-c: ADSI2-RIPE
tech-c: AENO1-RIPE
tech-c: AEA61-RIPE
status: ASSIGNED PA
mnt-by: MNT-ADSI
mnt-domains: MNT-ADSI
source: RIPE # Filtered
role: Amazon Data Services Ireland Technical Role Account
address: Amazon Data Services Ireland
address: Digital Depot
address: Thomas Street
address: Dublin 8
address: Ireland
mnt-by: MNT-ADSI
admin-c: MA11338-RIPE
tech-c: AA25560-RIPE
nic-hdl: ADSI2-RIPE
source: RIPE # Filtered
role: Amazon EC2 Abuse
address: 1200 12th Avenue South
Seattle
WA
US
mnt-by: MNT-ADSI
admin-c: TW510-RIPE
tech-c: ADSI2-RIPE
nic-hdl: AEA61-RIPE
source: RIPE # Filtered
role: Amazon EC2 Network Operations
address: 1200 12th Avenue South
Seattle
WA
US
mnt-by: MNT-ADSI
admin-c: TW510-RIPE
tech-c: ADSI2-RIPE
nic-hdl: AENO1-RIPE
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
The IP 46.137.93.27 has just been banned by Fail2Ban after
7 attempts against SSH.
Here are more information about 46.137.93.27:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '46.137.0.0 - 46.137.127.255'
% Abuse contact for '46.137.0.0 - 46.137.127.255' is 'ec2-abuse@Amazon.com'
inetnum: 46.137.0.0 - 46.137.127.255
netname: AMAZON-EU-AWS
descr: Amazon Web Services, Elastic Compute Cloud, EC2, EU
remarks: The activity you have detected originates from a
dynamic hosting environment.
For fastest response, please submit abuse reports at
http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse
For more information regarding EC2 see:
http://ec2.amazonaws.com/
All reports MUST include:
* src IP
* dest IP (your IP)
* dest port
* Accurate date/timestamp and timezone of activity
* Intensity/frequency (short log extracts)
* Your contact details (phone and email)
Without these we will be unable to
identify the correct owner of the IP address at that
point in time.
country: IE
admin-c: ADSI2-RIPE
tech-c: AENO1-RIPE
tech-c: AEA61-RIPE
status: ASSIGNED PA
mnt-by: MNT-ADSI
mnt-domains: MNT-ADSI
source: RIPE # Filtered
role: Amazon Data Services Ireland Technical Role Account
address: Amazon Data Services Ireland
address: Digital Depot
address: Thomas Street
address: Dublin 8
address: Ireland
mnt-by: MNT-ADSI
admin-c: MA11338-RIPE
tech-c: AA25560-RIPE
nic-hdl: ADSI2-RIPE
source: RIPE # Filtered
role: Amazon EC2 Abuse
address: 1200 12th Avenue South
Seattle
WA
US
mnt-by: MNT-ADSI
admin-c: TW510-RIPE
tech-c: ADSI2-RIPE
nic-hdl: AEA61-RIPE
source: RIPE # Filtered
role: Amazon EC2 Network Operations
address: 1200 12th Avenue South
Seattle
WA
US
mnt-by: MNT-ADSI
admin-c: TW510-RIPE
tech-c: ADSI2-RIPE
nic-hdl: AENO1-RIPE
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 1.179.175.22
Hi,
The IP 1.179.175.22 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 1.179.175.22:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '1.179.175.20 - 1.179.175.23'
inetnum: 1.179.175.20 - 1.179.175.23
netname: Maelanoi-Municipality
notify: abuse@totisp.net
descr: Maelanoi Municipality,Saraburi Province
country: th
admin-c: ag100-ap
tech-c: ws431-ap
status: assigned non-portable
mnt-by: MAINT-TH-TOT
mnt-irt: IRT-TOT-TH
changed: apipolg@tot.co.th 20130808
source: APNIC
irt: IRT-TOT-TH
address: TOT Public Company Limited
address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
e-mail: apipolg@tot.co.th
abuse-mailbox: abuse@totisp.net
admin-c: pa82-ap
tech-c: ag100-ap
auth: # Filtered
mnt-by: MAINT-TH-TOT
changed: abuse@totisp.net 20101108
source: APNIC
person: Apipol Gunabhibal
nic-hdl: AG100-AP
e-mail: apipolg@tot.co.th
address: TOT Public Company Limited
address: 89/2 Moo 3 Chaengwattana Rd, Laksi, Bangkok 10210 THAILAND
phone: +66-2574-9178
fax-no: +66-2574-8401
country: TH
changed: apipolg@tot.co.th 20110215
mnt-by: MAINT-TH-TOT
source: APNIC
person: Worawat Songwiwat
nic-hdl: WS431-AP
e-mail: worawat@totbb.com
address: TOT Public Company Limited
address: 89/2 Moo 3, Chaengwattana Rd, Tungsonghong, Laksi, Bangkok 10210
phone: +66-81-876-8917
country: TH
changed: worawat@totbb.com 20061102
mnt-by: MAINT-TH-TOT
source: APNIC
% Information related to '1.179.160.0/19AS9737'
route: 1.179.160.0/19
descr: TOT Public Company Limited
origin: AS9737
mnt-by: MAINT-TH-TOT
changed: boy@totbb.net 20111222
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
The IP 1.179.175.22 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 1.179.175.22:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '1.179.175.20 - 1.179.175.23'
inetnum: 1.179.175.20 - 1.179.175.23
netname: Maelanoi-Municipality
notify: abuse@totisp.net
descr: Maelanoi Municipality,Saraburi Province
country: th
admin-c: ag100-ap
tech-c: ws431-ap
status: assigned non-portable
mnt-by: MAINT-TH-TOT
mnt-irt: IRT-TOT-TH
changed: apipolg@tot.co.th 20130808
source: APNIC
irt: IRT-TOT-TH
address: TOT Public Company Limited
address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
e-mail: apipolg@tot.co.th
abuse-mailbox: abuse@totisp.net
admin-c: pa82-ap
tech-c: ag100-ap
auth: # Filtered
mnt-by: MAINT-TH-TOT
changed: abuse@totisp.net 20101108
source: APNIC
person: Apipol Gunabhibal
nic-hdl: AG100-AP
e-mail: apipolg@tot.co.th
address: TOT Public Company Limited
address: 89/2 Moo 3 Chaengwattana Rd, Laksi, Bangkok 10210 THAILAND
phone: +66-2574-9178
fax-no: +66-2574-8401
country: TH
changed: apipolg@tot.co.th 20110215
mnt-by: MAINT-TH-TOT
source: APNIC
person: Worawat Songwiwat
nic-hdl: WS431-AP
e-mail: worawat@totbb.com
address: TOT Public Company Limited
address: 89/2 Moo 3, Chaengwattana Rd, Tungsonghong, Laksi, Bangkok 10210
phone: +66-81-876-8917
country: TH
changed: worawat@totbb.com 20061102
mnt-by: MAINT-TH-TOT
source: APNIC
% Information related to '1.179.160.0/19AS9737'
route: 1.179.160.0/19
descr: TOT Public Company Limited
origin: AS9737
mnt-by: MAINT-TH-TOT
changed: boy@totbb.net 20111222
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 101.50.17.45
Hi,
The IP 101.50.17.45 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 101.50.17.45:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '101.50.16.0 - 101.50.31.255'
inetnum: 101.50.16.0 - 101.50.31.255
netname: MNET-ID
descr: PT. Mnet Indonesia
descr: Internet Service Provider
descr: Jakarta
country: ID
admin-c: MJ365-AP
tech-c: AW372-AP
remarks: Send Spam & Abuse report to: abuse@mnet.net.id
mnt-by: MNT-APJII-ID
mnt-lower: MAINT-ID-MNET
mnt-irt: IRT-IDNIC-ID
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20101213
source: APNIC
irt: IRT-IDNIC-ID
address: INDONESIA NETWORK INFORMATION CENTER
address: Cyber Building 11th Floor
address: Jl. Kuningan Barat No.8
address: Jakarta Selatan 12710
e-mail: abuse@idnic.net
abuse-mailbox: abuse@idnic.net
admin-c: IA55-AP
tech-c: IH123-AP
auth: # Filtered
mnt-by: MNT-APJII-ID
changed: abuse@idnic.net 20101108
source: APNIC
person: Adisola Wardana
nic-hdl: AW372-AP
e-mail: adisola@mnet.web.id
address: Taman Tirta Golf Blok J No.10
address: Bumi Serpong Damai
address: Serpong, Banten 15322
phone: +62-21-5389905
fax-no: +62-21-5373808
country: ID
changed: marshall@mnet.net.id 20091228
mnt-by: MAINT-ID-MNET
source: APNIC
person: Marshall Jahja
nic-hdl: MJ365-AP
e-mail: marshall@mnet.net.id
address: Taman Tirta Golf Blok J No.10
address: Bumi Serpong Damai
address: Serpong, Banten 15322
address: INDONESIA
phone: +62-21-5389905
fax-no: +62-21-5373808
country: ID
changed: marshall@mnet.net.id 20090903
mnt-by: MAINT-ID-MNET
source: APNIC
% Information related to '101.50.17.0/24AS38202'
route: 101.50.17.0/24
descr: Route object of PT Mnet Indonesia
descr: Internet Service Provider
descr: Jakarta, Indonesia
country: ID
origin: AS38202
mnt-by: MAINT-ID-MNET
changed: adisola@mnet.web.id 20101209
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
The IP 101.50.17.45 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 101.50.17.45:
[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '101.50.16.0 - 101.50.31.255'
inetnum: 101.50.16.0 - 101.50.31.255
netname: MNET-ID
descr: PT. Mnet Indonesia
descr: Internet Service Provider
descr: Jakarta
country: ID
admin-c: MJ365-AP
tech-c: AW372-AP
remarks: Send Spam & Abuse report to: abuse@mnet.net.id
mnt-by: MNT-APJII-ID
mnt-lower: MAINT-ID-MNET
mnt-irt: IRT-IDNIC-ID
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20101213
source: APNIC
irt: IRT-IDNIC-ID
address: INDONESIA NETWORK INFORMATION CENTER
address: Cyber Building 11th Floor
address: Jl. Kuningan Barat No.8
address: Jakarta Selatan 12710
e-mail: abuse@idnic.net
abuse-mailbox: abuse@idnic.net
admin-c: IA55-AP
tech-c: IH123-AP
auth: # Filtered
mnt-by: MNT-APJII-ID
changed: abuse@idnic.net 20101108
source: APNIC
person: Adisola Wardana
nic-hdl: AW372-AP
e-mail: adisola@mnet.web.id
address: Taman Tirta Golf Blok J No.10
address: Bumi Serpong Damai
address: Serpong, Banten 15322
phone: +62-21-5389905
fax-no: +62-21-5373808
country: ID
changed: marshall@mnet.net.id 20091228
mnt-by: MAINT-ID-MNET
source: APNIC
person: Marshall Jahja
nic-hdl: MJ365-AP
e-mail: marshall@mnet.net.id
address: Taman Tirta Golf Blok J No.10
address: Bumi Serpong Damai
address: Serpong, Banten 15322
address: INDONESIA
phone: +62-21-5389905
fax-no: +62-21-5373808
country: ID
changed: marshall@mnet.net.id 20090903
mnt-by: MAINT-ID-MNET
source: APNIC
% Information related to '101.50.17.0/24AS38202'
route: 101.50.17.0/24
descr: Route object of PT Mnet Indonesia
descr: Internet Service Provider
descr: Jakarta, Indonesia
country: ID
origin: AS38202
mnt-by: MAINT-ID-MNET
changed: adisola@mnet.web.id 20101209
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS4)
Regards,
Fail2Ban
Wednesday 4 December 2013
[Fail2Ban] SSH: banned 222.189.239.138
Hi,
The IP 222.189.239.138 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.189.239.138:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.184.0.0 - 222.191.255.255'
inetnum: 222.184.0.0 - 222.191.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: This object can only modify by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your
remarks: organisation account name in the subject line.
changed: hm-changed@apnic.net 20040223
status: ALLOCATED PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 222.189.239.138 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 222.189.239.138:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '222.184.0.0 - 222.191.255.255'
inetnum: 222.184.0.0 - 222.191.255.255
netname: CHINANET-JS
descr: CHINANET jiangsu province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: CJ186-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-JS
mnt-routes: MAINT-CHINANET-JS
remarks: This object can only modify by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your
remarks: organisation account name in the subject line.
changed: hm-changed@apnic.net 20040223
status: ALLOCATED PORTABLE
source: APNIC
role: CHINANET JIANGSU
address: 260 Zhongyang Road,Nanjing 210037
country: CN
phone: +86-25-86588231
phone: +86-25-86588745
fax-no: +86-25-86588104
e-mail: ip@jsinfo.net
remarks: send anti-spam reports to spam@jsinfo.net
remarks: send abuse reports to abuse@jsinfo.net
remarks: times in GMT+8
admin-c: CH360-AP
tech-c: CS306-AP
tech-c: CN142-AP
nic-hdl: CJ186-AP
remarks: www.jsinfo.net
notify: ip@jsinfo.net
mnt-by: MAINT-CHINANET-JS
changed: dns@jsinfo.net 20090831
changed: ip@jsinfo.net 20090831
changed: hm-changed@apnic.net 20090901
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 62.77.39.117
Hi,
The IP 62.77.39.117 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 62.77.39.117:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '62.77.39.96 - 62.77.39.127'
% Abuse contact for '62.77.39.96 - 62.77.39.127' is 'abuse-ripe@telecomitalia.it'
inetnum: 62.77.39.96 - 62.77.39.127
netname: LEARNING-ACADEMY-ASSOCIAZIONE-NO-PROFIT
descr: webservers LEARNINGACADEMYASSOCIAZIONENOPROFIT
country: it
admin-c: ITR2-RIPE
tech-c: AC16619-RIPE
status: assigned PA
mnt-by: FULCOM-MNT-RIPE
source: RIPE # Filtered
role: IT Telecom Role
address: Telecom Italia S.p.A.
address: Via Oriolo Romano, 257
address: Italy
phone: +390636878029
fax-no: +390641862917
remarks: trouble: ripe-noc@telecomitalia.it
admin-c: ITR2-RIPE
tech-c: ITR2-RIPE
nic-hdl: ITR2-RIPE
remarks: ##############################################
remarks: Pay attention
remarks: Any communication sent to email different
remarks: from the following will be ignored !
remarks: ##############################################
remarks: Any abuse and spamming reports, please
remarks: send them to abuse-ripe@telecomitalia.it
remarks: ##############################################
mnt-by: FULCOM-MNT-RIPE
source: RIPE # Filtered
person: Andrea Cristaldi
address: LEARNING ACADEMY ASSOCIAZIONE NO PROFIT
address: Via Raffaello, 26
address: 93100 Caltanissetta (CL)
address: Italy
phone: +39 3929068476
nic-hdl: AC16619-RIPE
mnt-by: FULCOM-MNT-RIPE
source: RIPE # Filtered
% Information related to '62.77.32.0/19AS20746'
route: 62.77.32.0/19
descr: IT Telecom S.p.A. - IDC
origin: AS20746
mnt-by: FULCOM-MNT-RIPE
mnt-lower: FULCOM-MNT-RIPE
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS4)
Regards,
Fail2Ban
The IP 62.77.39.117 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 62.77.39.117:
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '62.77.39.96 - 62.77.39.127'
% Abuse contact for '62.77.39.96 - 62.77.39.127' is 'abuse-ripe@telecomitalia.it'
inetnum: 62.77.39.96 - 62.77.39.127
netname: LEARNING-ACADEMY-ASSOCIAZIONE-NO-PROFIT
descr: webservers LEARNINGACADEMYASSOCIAZIONENOPROFIT
country: it
admin-c: ITR2-RIPE
tech-c: AC16619-RIPE
status: assigned PA
mnt-by: FULCOM-MNT-RIPE
source: RIPE # Filtered
role: IT Telecom Role
address: Telecom Italia S.p.A.
address: Via Oriolo Romano, 257
address: Italy
phone: +390636878029
fax-no: +390641862917
remarks: trouble: ripe-noc@telecomitalia.it
admin-c: ITR2-RIPE
tech-c: ITR2-RIPE
nic-hdl: ITR2-RIPE
remarks: ##############################################
remarks: Pay attention
remarks: Any communication sent to email different
remarks: from the following will be ignored !
remarks: ##############################################
remarks: Any abuse and spamming reports, please
remarks: send them to abuse-ripe@telecomitalia.it
remarks: ##############################################
mnt-by: FULCOM-MNT-RIPE
source: RIPE # Filtered
person: Andrea Cristaldi
address: LEARNING ACADEMY ASSOCIAZIONE NO PROFIT
address: Via Raffaello, 26
address: 93100 Caltanissetta (CL)
address: Italy
phone: +39 3929068476
nic-hdl: AC16619-RIPE
mnt-by: FULCOM-MNT-RIPE
source: RIPE # Filtered
% Information related to '62.77.32.0/19AS20746'
route: 62.77.32.0/19
descr: IT Telecom S.p.A. - IDC
origin: AS20746
mnt-by: FULCOM-MNT-RIPE
mnt-lower: FULCOM-MNT-RIPE
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS4)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 210.51.10.158
Hi,
The IP 210.51.10.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 210.51.10.158:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '210.51.0.0 - 210.51.19.255'
inetnum: 210.51.0.0 - 210.51.19.255
netname: CNC-BJ-IDC
country: CN
descr: Beijing Tongtai IDC of China Netcom
admin-c: CH140-AP
tech-c: TJ35-AP
status: ALLOCATED NON-PORTABLE
changed: cncipaddr@china-netcom.com 20040227
mnt-by: MAINT-CN-ZM28
mnt-lower: MAINT-CN-BJIDC
source: APNIC
role: CNCIDC hostmaster
address: No.1,Beihuan Donglu,BDA,Beijing,China
country: CN
phone: +8610 6787 5599
fax-no: +8610 6787 8624
e-mail: cncipaddr@china-netcom.com
remarks: send spam and abuse reports to tech-group@china-netcom.com
remarks: Please include detailed information and times in UTC
admin-c: TJ35-AP
tech-c: TC254-AP
nic-hdl: Ch140-AP
notify: cncipaddr@china-netcom.com
mnt-by: MAINT-CN-ZM28
changed: hm-changed@apnic.net 20040226
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Tao Jiang
nic-hdl: TJ35-AP
e-mail: bjidc-ipaddr@cnc.cn
address: No.1,Beihuan Donglu, Beijing Economic
address: -TechnologicalDevelopment Area,Beijing
phone: +8610-67878534
fax-no: +8610-67878538
country: CN
changed: jiangtao@cnc.cn 20080221
mnt-by: MAINT-CN-BJIDC
source: APNIC
% Information related to '210.51.0.0/16AS9929'
route: 210.51.0.0/16
descr: CNC Group CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060330
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 210.51.10.158 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 210.51.10.158:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '210.51.0.0 - 210.51.19.255'
inetnum: 210.51.0.0 - 210.51.19.255
netname: CNC-BJ-IDC
country: CN
descr: Beijing Tongtai IDC of China Netcom
admin-c: CH140-AP
tech-c: TJ35-AP
status: ALLOCATED NON-PORTABLE
changed: cncipaddr@china-netcom.com 20040227
mnt-by: MAINT-CN-ZM28
mnt-lower: MAINT-CN-BJIDC
source: APNIC
role: CNCIDC hostmaster
address: No.1,Beihuan Donglu,BDA,Beijing,China
country: CN
phone: +8610 6787 5599
fax-no: +8610 6787 8624
e-mail: cncipaddr@china-netcom.com
remarks: send spam and abuse reports to tech-group@china-netcom.com
remarks: Please include detailed information and times in UTC
admin-c: TJ35-AP
tech-c: TC254-AP
nic-hdl: Ch140-AP
notify: cncipaddr@china-netcom.com
mnt-by: MAINT-CN-ZM28
changed: hm-changed@apnic.net 20040226
source: APNIC
changed: hm-changed@apnic.net 20111114
person: Tao Jiang
nic-hdl: TJ35-AP
e-mail: bjidc-ipaddr@cnc.cn
address: No.1,Beihuan Donglu, Beijing Economic
address: -TechnologicalDevelopment Area,Beijing
phone: +8610-67878534
fax-no: +8610-67878538
country: CN
changed: jiangtao@cnc.cn 20080221
mnt-by: MAINT-CN-BJIDC
source: APNIC
% Information related to '210.51.0.0/16AS9929'
route: 210.51.0.0/16
descr: CNC Group CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060330
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 109.123.220.39
Hi,
The IP 109.123.220.39 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 109.123.220.39:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '109.123.220.0 - 109.123.220.127'
% Abuse contact for '109.123.220.0 - 109.123.220.127' is 'abuse@casablanca.cz'
inetnum: 109.123.220.0 - 109.123.220.127
netname: BurritoCommunications-CZ
descr: Burrito Communications, s.r.o.
country: CZ
admin-c: CASA3-RIPE
tech-c: CASA3-RIPE
status: ASSIGNED PA
mnt-by: CASABLANCA-RIPE-MNT
source: RIPE # Filtered
role: Casablanca INT RIPE manager
address: Casablanca INT
address: Vinohradska 184, Prague 3 - 130 52
address: Czech republic
phone: +420 270 000 270
fax-no: +420 270 000 277
abuse-mailbox: abuse@casablanca.cz
admin-c: LP636-RIPE
tech-c: LP636-RIPE
nic-hdl: CASA3-RIPE
source: RIPE # Filtered
mnt-by: LP636-RIPE-MNT
% Information related to '109.123.192.0/18AS15685'
route: 109.123.192.0/18
descr: Casablanca INT
origin: AS15685
mnt-by: LP636-RIPE-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS2)
Regards,
Fail2Ban
The IP 109.123.220.39 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 109.123.220.39:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '109.123.220.0 - 109.123.220.127'
% Abuse contact for '109.123.220.0 - 109.123.220.127' is 'abuse@casablanca.cz'
inetnum: 109.123.220.0 - 109.123.220.127
netname: BurritoCommunications-CZ
descr: Burrito Communications, s.r.o.
country: CZ
admin-c: CASA3-RIPE
tech-c: CASA3-RIPE
status: ASSIGNED PA
mnt-by: CASABLANCA-RIPE-MNT
source: RIPE # Filtered
role: Casablanca INT RIPE manager
address: Casablanca INT
address: Vinohradska 184, Prague 3 - 130 52
address: Czech republic
phone: +420 270 000 270
fax-no: +420 270 000 277
abuse-mailbox: abuse@casablanca.cz
admin-c: LP636-RIPE
tech-c: LP636-RIPE
nic-hdl: CASA3-RIPE
source: RIPE # Filtered
mnt-by: LP636-RIPE-MNT
% Information related to '109.123.192.0/18AS15685'
route: 109.123.192.0/18
descr: Casablanca INT
origin: AS15685
mnt-by: LP636-RIPE-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 188.92.220.200
Hi,
The IP 188.92.220.200 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 188.92.220.200:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '188.92.216.0 - 188.92.223.255'
% Abuse contact for '188.92.216.0 - 188.92.223.255' is 'kir@arbuz.ru'
inetnum: 188.92.216.0 - 188.92.223.255
netname: RU-ARBUZ-20090504
descr: ARBUZ Co.Ltd
country: RU
org: ORG-AC22-RIPE
admin-c: KGE-RIPE
tech-c: KGE-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: KGE-MNT
mnt-routes: KGE-MNT
source: RIPE # Filtered
organisation: ORG-AC22-RIPE
org-name: ARBUZ Co.Ltd
org-type: LIR
address: ARBUZ Co.Ltd
address: Kirill Ettenko
address: 19 Transportnaya str.
address: 685000
address: Magadan
address: RUSSIAN FEDERATION
phone: +74132622138
fax-no: +74132631023
admin-c: KGE-RIPE
mnt-ref: KGE-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: KGE10-RIPE
abuse-mailbox: kir@arbuz.ru
source: RIPE # Filtered
person: Kirill Ettenko
address: ARBUZ Co.Ltd
address: 19 Transportnaya str.
address: 685000
address: Magadan
address: Russian Federation
phone: +74132622138
fax-no: +74132631023
mnt-by: KGE-MNT
nic-hdl: KGE-RIPE
source: RIPE # Filtered
% Information related to '188.92.216.0/21AS15454'
route: 188.92.216.0/21
descr: ARBUZ LIR route
descr: ARBUZ Co. Ltd.
descr: 16 Pushkina str., #116-A
descr: 685000
descr: Magadan
descr: Russian Federation
descr: +74132622138
descr: +74132631023
descr: +74132628663
origin: AS15454
mnt-by: KGE-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
The IP 188.92.220.200 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 188.92.220.200:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '188.92.216.0 - 188.92.223.255'
% Abuse contact for '188.92.216.0 - 188.92.223.255' is 'kir@arbuz.ru'
inetnum: 188.92.216.0 - 188.92.223.255
netname: RU-ARBUZ-20090504
descr: ARBUZ Co.Ltd
country: RU
org: ORG-AC22-RIPE
admin-c: KGE-RIPE
tech-c: KGE-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: KGE-MNT
mnt-routes: KGE-MNT
source: RIPE # Filtered
organisation: ORG-AC22-RIPE
org-name: ARBUZ Co.Ltd
org-type: LIR
address: ARBUZ Co.Ltd
address: Kirill Ettenko
address: 19 Transportnaya str.
address: 685000
address: Magadan
address: RUSSIAN FEDERATION
phone: +74132622138
fax-no: +74132631023
admin-c: KGE-RIPE
mnt-ref: KGE-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: KGE10-RIPE
abuse-mailbox: kir@arbuz.ru
source: RIPE # Filtered
person: Kirill Ettenko
address: ARBUZ Co.Ltd
address: 19 Transportnaya str.
address: 685000
address: Magadan
address: Russian Federation
phone: +74132622138
fax-no: +74132631023
mnt-by: KGE-MNT
nic-hdl: KGE-RIPE
source: RIPE # Filtered
% Information related to '188.92.216.0/21AS15454'
route: 188.92.216.0/21
descr: ARBUZ LIR route
descr: ARBUZ Co. Ltd.
descr: 16 Pushkina str., #116-A
descr: 685000
descr: Magadan
descr: Russian Federation
descr: +74132622138
descr: +74132631023
descr: +74132628663
origin: AS15454
mnt-by: KGE-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 203.183.25.74
Hi,
The IP 203.183.25.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 203.183.25.74:
[Querying whois.nic.ad.jp]
[whois.nic.ad.jp]
[ JPNIC database provides information regarding IP address and ASN. Its use ]
[ is restricted to network administration purposes. For further information, ]
[ use 'whois -h whois.nic.ad.jp help'. To only display English output, ]
[ add '/e' at the end of command, e.g. 'whois -h whois.nic.ad.jp xxx/e'. ]
Network Information:
a. [Network Number] 203.183.25.0/25
b. [Network Name] AT-LINKNET
g. [Organization] LINK, Inc.
m. [Administrative Contact] GO004JP
n. [Technical Contact] YI1082JP
p. [Nameserver]
[Assigned Date] 2008/10/22
[Return Date]
[Last Update] 2012/12/05 08:36:32(JST)
Less Specific Info.
----------
Yahoo Japan Corporation
[Allocation] 203.183.0.0-203.183.152.255
Yahoo Japan Corporation
SUBA-032-25 [Sub Allocation] 203.183.25.0/24
More Specific Info.
----------
No match!!
Regards,
Fail2Ban
The IP 203.183.25.74 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 203.183.25.74:
[Querying whois.nic.ad.jp]
[whois.nic.ad.jp]
[ JPNIC database provides information regarding IP address and ASN. Its use ]
[ is restricted to network administration purposes. For further information, ]
[ use 'whois -h whois.nic.ad.jp help'. To only display English output, ]
[ add '/e' at the end of command, e.g. 'whois -h whois.nic.ad.jp xxx/e'. ]
Network Information:
a. [Network Number] 203.183.25.0/25
b. [Network Name] AT-LINKNET
g. [Organization] LINK, Inc.
m. [Administrative Contact] GO004JP
n. [Technical Contact] YI1082JP
p. [Nameserver]
[Assigned Date] 2008/10/22
[Return Date]
[Last Update] 2012/12/05 08:36:32(JST)
Less Specific Info.
----------
Yahoo Japan Corporation
[Allocation] 203.183.0.0-203.183.152.255
Yahoo Japan Corporation
SUBA-032-25 [Sub Allocation] 203.183.25.0/24
More Specific Info.
----------
No match!!
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 202.154.31.70
Hi,
The IP 202.154.31.70 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.154.31.70:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.154.31.0 - 202.154.31.127'
inetnum: 202.154.31.0 - 202.154.31.127
netname: RADNET-NOC4-TELEHOUSING
country: ID
descr: NOC4 Telehousing
admin-c: RH243-AP
tech-c: RH243-AP
status: ASSIGNED NON-PORTABLE
changed: hostmaster@rad.net.id 20050124
mnt-by: MAINT-RAD-NET-AP
source: APNIC
person: Radnet Hostmaster
nic-hdl: RH243-AP
e-mail: hostmaster@rad.net.id
address: PT Rahajasa Media Internet - RADNET
address: Jl. Kemang Selatan I/16 Jakarta Selatan, Indonesia 12730
phone: +62-21-7182641
fax-no: +62-21-7182642
country: ID
changed: hostmaster@rad.net.id 20050120
mnt-by: MAINT-RAD-NET-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 202.154.31.70 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 202.154.31.70:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '202.154.31.0 - 202.154.31.127'
inetnum: 202.154.31.0 - 202.154.31.127
netname: RADNET-NOC4-TELEHOUSING
country: ID
descr: NOC4 Telehousing
admin-c: RH243-AP
tech-c: RH243-AP
status: ASSIGNED NON-PORTABLE
changed: hostmaster@rad.net.id 20050124
mnt-by: MAINT-RAD-NET-AP
source: APNIC
person: Radnet Hostmaster
nic-hdl: RH243-AP
e-mail: hostmaster@rad.net.id
address: PT Rahajasa Media Internet - RADNET
address: Jl. Kemang Selatan I/16 Jakarta Selatan, Indonesia 12730
phone: +62-21-7182641
fax-no: +62-21-7182642
country: ID
changed: hostmaster@rad.net.id 20050120
mnt-by: MAINT-RAD-NET-AP
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
Tuesday 3 December 2013
[Fail2Ban] SSH: banned 92.63.96.106
Hi,
The IP 92.63.96.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 92.63.96.106:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.63.96.0 - 92.63.103.255'
% Abuse contact for '92.63.96.0 - 92.63.103.255' is 'abuse@ispsystem.com'
inetnum: 92.63.96.0 - 92.63.103.255
netname: THEFIRST-NET
org: ORG-FVDS1-RIPE
descr: TheFirst-RU clients (WebDC Msk)
country: RU
admin-c: AB11726-RIPE
tech-c: ST6386-RIPE
status: ASSIGNED PA
mnt-by: ISPSYSTEM-MNT
mnt-by: THEFIRST-MNT
mnt-irt: IRT-THEFIRST
source: RIPE # Filtered
organisation: ORG-FVDS1-RIPE
org-name: CJSC THE FIRST
org-type: OTHER
address: CJSC The First, Raduzhny 34a
address: PoBox64, Irkutsk, 664017
address: Russian Federation
abuse-mailbox: abuse@firstvds.ru
mnt-ref: THEFIRST-MNT
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Alexandr Brukhanov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: AB11726-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Stas Titov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: ST6386-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
% Information related to '92.63.96.0/21AS29182'
route: 92.63.96.0/21
descr: TheFirst-RU
origin: AS29182
mnt-by: THEFIRST-MNT
remarks: **************************************
remarks: * For spamming or other abuse issues *
remarks: * please send your requests to *
remarks: * abuse@firstvds.ru *
remarks: **************************************
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
The IP 92.63.96.106 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 92.63.96.106:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '92.63.96.0 - 92.63.103.255'
% Abuse contact for '92.63.96.0 - 92.63.103.255' is 'abuse@ispsystem.com'
inetnum: 92.63.96.0 - 92.63.103.255
netname: THEFIRST-NET
org: ORG-FVDS1-RIPE
descr: TheFirst-RU clients (WebDC Msk)
country: RU
admin-c: AB11726-RIPE
tech-c: ST6386-RIPE
status: ASSIGNED PA
mnt-by: ISPSYSTEM-MNT
mnt-by: THEFIRST-MNT
mnt-irt: IRT-THEFIRST
source: RIPE # Filtered
organisation: ORG-FVDS1-RIPE
org-name: CJSC THE FIRST
org-type: OTHER
address: CJSC The First, Raduzhny 34a
address: PoBox64, Irkutsk, 664017
address: Russian Federation
abuse-mailbox: abuse@firstvds.ru
mnt-ref: THEFIRST-MNT
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Alexandr Brukhanov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: AB11726-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
person: Stas Titov
address: Raduzhny st. 34a
address: Irkutsk, 664017, Russian Federation
phone: +7 3952 525789
nic-hdl: ST6386-RIPE
mnt-by: ISPSYSTEM-MNT
source: RIPE # Filtered
% Information related to '92.63.96.0/21AS29182'
route: 92.63.96.0/21
descr: TheFirst-RU
origin: AS29182
mnt-by: THEFIRST-MNT
remarks: **************************************
remarks: * For spamming or other abuse issues *
remarks: * please send your requests to *
remarks: * abuse@firstvds.ru *
remarks: **************************************
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS3)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 218.89.168.144
Hi,
The IP 218.89.168.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.89.168.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.88.0.0 - 218.89.255.255'
inetnum: 218.88.0.0 - 218.89.255.255
netname: CHINANET-SC
descr: CHINANET sichuan province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XS16-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SC
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20020408
changed: hm-changed@apnic.net 20040927
changed: hm-changed@apnic.net 20041126
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xiaodong Shi
nic-hdl: XS16-AP
e-mail: ipadmin@my-public.sc.cninfo.net
address: No.72,Wen Miao Qian Str.
address: Data Communication Bureau Of Sichuan Province
address: Chengdu
address: PR China
phone: +86-28-6190785
fax-no: +86-28-6190641
country: CN
changed: ipadmin@my-public.sc.cninfo.net 20030317
mnt-by: MAINT-CHINANET-SC
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
The IP 218.89.168.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 218.89.168.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '218.88.0.0 - 218.89.255.255'
inetnum: 218.88.0.0 - 218.89.255.255
netname: CHINANET-SC
descr: CHINANET sichuan province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XS16-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SC
status: ALLOCATED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20020408
changed: hm-changed@apnic.net 20040927
changed: hm-changed@apnic.net 20041126
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Xiaodong Shi
nic-hdl: XS16-AP
e-mail: ipadmin@my-public.sc.cninfo.net
address: No.72,Wen Miao Qian Str.
address: Data Communication Bureau Of Sichuan Province
address: Chengdu
address: PR China
phone: +86-28-6190785
fax-no: +86-28-6190641
country: CN
changed: ipadmin@my-public.sc.cninfo.net 20030317
mnt-by: MAINT-CHINANET-SC
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS2)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 95.39.18.178
Hi,
The IP 95.39.18.178 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 95.39.18.178:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '95.39.0.0 - 95.39.255.255'
% Abuse contact for '95.39.0.0 - 95.39.255.255' is 'abuse@ono.com'
inetnum: 95.39.0.0 - 95.39.255.255
netname: ES-ONO-20081215
descr: Cableuropa S.A.U.
org: ORG-OA4-RIPE
country: ES
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ONO-MNT
mnt-lower: MNT-PROV-AUNA
mnt-routes: ONO-MNT
mnt-domains: ONO-MNT
source: RIPE # Filtered
organisation: ORG-OA4-RIPE
org-name: Cableuropa S.A.U.
org-type: LIR
address: CABLEUROPA S.A.
address: bruno forterre
address: C/ Avila 35-42
address: 08005
address: Barcelona
address: SPAIN
phone: +34 911809300
fax-no: +34 935020509
admin-c: OIM1-RIPE
admin-c: DHC4-RIPE
admin-c: BF1361-RIPE
mnt-ref: ONO-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: OA1773-RIPE
source: RIPE # Filtered
role: ONO IP MANAGER
address: C/ Basauri, 5
address: Urbanizacion La Florida
address: E-28023 Aravaca, Madrid
address: SPAIN
phone: +34911809300
fax-no: +34911809245
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
nic-hdl: OIM1-RIPE
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS16338'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS16338
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS6739'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS6739
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
The IP 95.39.18.178 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 95.39.18.178:
[Querying whois.arin.net]
[Redirected to whois.ripe.net:43]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '95.39.0.0 - 95.39.255.255'
% Abuse contact for '95.39.0.0 - 95.39.255.255' is 'abuse@ono.com'
inetnum: 95.39.0.0 - 95.39.255.255
netname: ES-ONO-20081215
descr: Cableuropa S.A.U.
org: ORG-OA4-RIPE
country: ES
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: ONO-MNT
mnt-lower: MNT-PROV-AUNA
mnt-routes: ONO-MNT
mnt-domains: ONO-MNT
source: RIPE # Filtered
organisation: ORG-OA4-RIPE
org-name: Cableuropa S.A.U.
org-type: LIR
address: CABLEUROPA S.A.
address: bruno forterre
address: C/ Avila 35-42
address: 08005
address: Barcelona
address: SPAIN
phone: +34 911809300
fax-no: +34 935020509
admin-c: OIM1-RIPE
admin-c: DHC4-RIPE
admin-c: BF1361-RIPE
mnt-ref: ONO-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
abuse-c: OA1773-RIPE
source: RIPE # Filtered
role: ONO IP MANAGER
address: C/ Basauri, 5
address: Urbanizacion La Florida
address: E-28023 Aravaca, Madrid
address: SPAIN
phone: +34911809300
fax-no: +34911809245
admin-c: OIM1-RIPE
tech-c: OIM1-RIPE
nic-hdl: OIM1-RIPE
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS16338'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS16338
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% Information related to '95.39.0.0/16AS6739'
route: 95.39.0.0/16
descr: Cableuropa - Ono
descr: Ono network in whole Spain
origin: AS6739
remarks: mail spam reports: abuse@ono.com
remarks: security incidents: security@ono.com
mnt-by: ONO-MNT
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.70.1 (WHOIS1)
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 198.52.100.67
Hi,
The IP 198.52.100.67 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.52.100.67:
[Querying whois.arin.net]
[Redirected to rwhois.multacom.com:4321]
[Querying rwhois.multacom.com]
[Unable to connect to remote host]
Regards,
Fail2Ban
The IP 198.52.100.67 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 198.52.100.67:
[Querying whois.arin.net]
[Redirected to rwhois.multacom.com:4321]
[Querying rwhois.multacom.com]
[Unable to connect to remote host]
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 216.81.149.3
Hi,
The IP 216.81.149.3 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 216.81.149.3:
[Querying whois.arin.net]
[Redirected to rwhois.lh.net:4321]
[Querying rwhois.lh.net]
[rwhois.lh.net]
%rwhois V-1.5 rwhois.lightedge.com (rwhoisd 0.4.1)
network:id:LIGHTEDGE-MICRO-253649
network:class-name:network
network:network-name:LIGHTEDGE-MICRO-253649
network:ip-network:216.81.149.0/28
network:auth-area:216.81.128.0/17
network:org-name:H-Card
network:street-address:
network:city:
network:state:IL
network:postal-code:
network:country-code:US
network:tech-contact:m.defreece@hcardllc.com
network:created:20120417
network:updated:20131203
network:updated-by:support@lightedge.com
%ok
Regards,
Fail2Ban
The IP 216.81.149.3 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 216.81.149.3:
[Querying whois.arin.net]
[Redirected to rwhois.lh.net:4321]
[Querying rwhois.lh.net]
[rwhois.lh.net]
%rwhois V-1.5 rwhois.lightedge.com (rwhoisd 0.4.1)
network:id:LIGHTEDGE-MICRO-253649
network:class-name:network
network:network-name:LIGHTEDGE-MICRO-253649
network:ip-network:216.81.149.0/28
network:auth-area:216.81.128.0/17
network:org-name:H-Card
network:street-address:
network:city:
network:state:IL
network:postal-code:
network:country-code:US
network:tech-contact:m.defreece@hcardllc.com
network:created:20120417
network:updated:20131203
network:updated-by:support@lightedge.com
%ok
Regards,
Fail2Ban
[Fail2Ban] SSH: banned 221.204.245.144
Hi,
The IP 221.204.245.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.204.245.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '221.204.0.0 - 221.205.255.255'
inetnum: 221.204.0.0 - 221.205.255.255
netname: UNICOM-SX
descr: China Unicom Shanxi Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: XH63-AP
remarks: service provider
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-SX
mnt-routes: MAINT-CNCGROUP-RR
status: ALLOCATED PORTABLE
remarks: This object can only be modified by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your organisation
remarks: account name in the subject line.
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20030702
changed: hm-changed@apnic.net 20060124
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
person: xuehong han
address: BingZhou North Road YouDian Front Street NO.2 ShanXi Data Communciation Bureau TaiYuan ShanXi China
country: CN
phone: +86-351-4091749
fax-no: +86-351-4088347
e-mail: hxh@public.ty.sx.cn
nic-hdl: XH63-AP
mnt-by: MAINT-CHINANET-SX
changed: hxh@public.ty.sx.cn 20010208
source: APNIC
% Information related to '221.204.0.0/15AS4837'
route: 221.204.0.0/15
descr: CNC Group CHINA169 Shanxi Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
The IP 221.204.245.144 has just been banned by Fail2Ban after
5 attempts against SSH.
Here are more information about 221.204.245.144:
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '221.204.0.0 - 221.205.255.255'
inetnum: 221.204.0.0 - 221.205.255.255
netname: UNICOM-SX
descr: China Unicom Shanxi Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: XH63-AP
remarks: service provider
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-SX
mnt-routes: MAINT-CNCGROUP-RR
status: ALLOCATED PORTABLE
remarks: This object can only be modified by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your organisation
remarks: account name in the subject line.
mnt-irt: IRT-CU-CN
changed: hm-changed@apnic.net 20030702
changed: hm-changed@apnic.net 20060124
changed: hm-changed@apnic.net 20090508
source: APNIC
irt: IRT-CU-CN
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
e-mail: zhouxm@chinaunicom.cn
abuse-mailbox: zhouxm@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
mnt-by: MAINT-CNCGROUP
changed: zhouxm@chinaunicom.cn 20101110
changed: hm-changed@apnic.net 20101116
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@cnc-noc.net
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
changed: abuse@cnc-noc.net 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC
person: xuehong han
address: BingZhou North Road YouDian Front Street NO.2 ShanXi Data Communciation Bureau TaiYuan ShanXi China
country: CN
phone: +86-351-4091749
fax-no: +86-351-4088347
e-mail: hxh@public.ty.sx.cn
nic-hdl: XH63-AP
mnt-by: MAINT-CHINANET-SX
changed: hxh@public.ty.sx.cn 20010208
source: APNIC
% Information related to '221.204.0.0/15AS4837'
route: 221.204.0.0/15
descr: CNC Group CHINA169 Shanxi Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC
% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (WHOIS1)
Regards,
Fail2Ban
Subscribe to:
Posts (Atom)