Sunday, 30 July 2017

[Fail2Ban] SSH: banned 59.63.166.81 from vps297345.ovh.net

Hi,

The IP 59.63.166.81 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 59.63.166.81 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '59.62.0.0 - 59.63.255.255'

% Abuse contact for '59.62.0.0 - 59.63.255.255' is '[email protected]'

inetnum: 59.62.0.0 - 59.63.255.255
netname: CHINANET-JX
descr: CHINANET Jiangxi province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: CH93-AP
tech-c: JN113-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-IP-WWF
source: APNIC
mnt-irt: IRT-CHINANET-CN
changed: [email protected] 20050208

irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: [email protected]
abuse-mailbox: [email protected]
admin-c: CH93-AP
tech-c: CH93-AP
auth: # Filtered
mnt-by: MAINT-CHINANET
changed: [email protected] 20101115
source: APNIC

role: JXDCB NET
address: Jiangxi telecom network operation support department
address: No.2009, Beijing East Road , nanchang,jiangxi province
country: CN
phone: +86 79186600000
e-mail: [email protected]
remarks: send spam reports to [email protected]
remarks: and abuse reports to [email protected]
remarks: http://www.online.jx.cn
admin-c: XY1-AP
tech-c: WZ1-CN
tech-c: WW49-AP
nic-hdl: JN113-AP
notify: [email protected]
mnt-by: MAINT-IP-WWF
changed: [email protected] 20020812
changed: [email protected] 20130221
source: APNIC

person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: [email protected]
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: [email protected] 20070416
changed: [email protected] 20140227
mnt-by: MAINT-CHINANET
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK3)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 58.242.83.37 from vps297345.ovh.net

Hi,

The IP 58.242.83.37 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 58.242.83.37 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '58.242.81.0 - 58.242.86.255'

% Abuse contact for '58.242.81.0 - 58.242.86.255' is '[email protected]'

inetnum: 58.242.81.0 - 58.242.86.255
netname: HUAIBEIBASIP
country: CN
descr: ANHUI UNICOM
admin-c: CH445-AP
tech-c: zz1045-AP
status: ASSIGNED NON-PORTABLE
changed: [email protected] 20081230
mnt-by: MAINT-CNCGROUP-AH
source: APNIC

person: CHINANET-JS-CZ Hostmaster
address: No.168,HePing South Road,Changzhou 213000
country: CN
phone: +86-519-8130141
phone: +86-519-8150024
fax-no: +86-519-8150026
e-mail: [email protected]
nic-hdl: CH445-AP
remarks: send anti-spam or abuse reports to [email protected]
remarks: or [email protected]
remarks: times in GMT+8
mnt-by: MAINT-CHINANET-JS-CZ
changed: [email protected] 20021210
source: APNIC

person: zhang jinhu
nic-hdl: ZZ1045-AP
e-mail: [email protected]
address: 278,suixi Street,hefei,230041,China
phone: +86-551-5228682
fax-no: +86-551-5229999
country: CN
changed: [email protected] 20070228
mnt-by: MAINT-NEW
source: APNIC

% Information related to '58.242.0.0/15AS4837'

route: 58.242.0.0/15
descr: CNC Group CHINA169 AnHui province network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: [email protected] 20060117
source: APNIC

% Information related to '58.242.0.0/15AS9929'

route: 58.242.0.0/15
descr: CNCGroup AnHui province network
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: [email protected] 20050603
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK3)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 51.255.204.197 from vps297345.ovh.net

Hi,

The IP 51.255.204.197 has just been banned by Fail2Ban after
7 attempts against SSH.


Here is more information about 51.255.204.197 :

[Querying whois.arin.net]
[Redirected to whois.ripe.net]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to '51.254.0.0 - 51.255.255.255'

% Abuse contact for '51.254.0.0 - 51.255.255.255' is '[email protected]'

inetnum: 51.254.0.0 - 51.255.255.255
netname: FR-OVH-20150522
descr: OVH SAS
country: FR
admin-c: OTC2-RIPE
tech-c: OTC2-RIPE
status: LEGACY
mnt-by: OVH-MNT
created: 2015-05-26T08:55:56Z
last-modified: 2015-05-27T15:52:47Z
source: RIPE
org: ORG-OS3-RIPE

organisation: ORG-OS3-RIPE
org-name: OVH SAS
org-type: LIR
address: 2 rue Kellermann
address: 59100
address: Roubaix
address: FRANCE
phone: +33972101007
abuse-c: AR15333-RIPE
admin-c: OTC2-RIPE
admin-c: OK217-RIPE
admin-c: GM84-RIPE
mnt-ref: OVH-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: OVH-MNT
abuse-mailbox: [email protected]
created: 2004-04-17T11:23:17Z
last-modified: 2017-05-30T07:24:52Z
source: RIPE # Filtered

role: OVH Technical Contact
address: OVH SAS
address: 2 rue Kellermann
address: 59100 Roubaix
address: France
admin-c: OK217-RIPE
tech-c: GM84-RIPE
tech-c: SL10162-RIPE
nic-hdl: OTC2-RIPE
abuse-mailbox: [email protected]
mnt-by: OVH-MNT
created: 2004-01-28T17:42:29Z
last-modified: 2014-09-05T10:47:15Z
source: RIPE # Filtered

% Information related to '51.254.0.0/15AS16276'

route: 51.254.0.0/15
descr: OVH
origin: AS16276
mnt-by: OVH-MNT
created: 2015-05-28T17:50:05Z
last-modified: 2015-05-28T17:50:05Z
source: RIPE

% This query was served by the RIPE Database Query Service version 1.89.2 (HEREFORD)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 112.53.78.26 from vps297345.ovh.net

Hi,

The IP 112.53.78.26 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 112.53.78.26 :

[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '112.0.0.0 - 112.63.255.255'

% Abuse contact for '112.0.0.0 - 112.63.255.255' is '[email protected]'

inetnum: 112.0.0.0 - 112.63.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
admin-c: lcj-AP
tech-c: HL1318-AP
remarks: service provider
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
source: APNIC
mnt-irt: IRT-CHINAMOBILE2-CN
changed: [email protected] 20081215

irt: IRT-CHINAMOBILE2-CN
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail: [email protected]
abuse-mailbox: [email protected]
admin-c: JS686-AP
tech-c: CT74-AP
auth: # Filtered
mnt-by: MAINT-CN-CMCC
changed: [email protected] 20101123
source: APNIC

person: haijun li
nic-hdl: HL1318-AP
e-mail: [email protected]
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 1052686688
fax-no: +86 10 52616187
country: CN
changed: [email protected] 20161129
mnt-by: MAINT-CN-CMCC
abuse-mailbox: [email protected]
source: APNIC

person: li changjun
address: 29 jinrong ave. xicheng district, beijing China
country: CN
phone: +86 52686688
e-mail: [email protected]
nic-hdl: lcj-ap
mnt-by: MAINT-CN-CMCC
changed: [email protected] 20071010
source: APNIC

% Information related to '112.48.0.0/13AS9808'

route: 112.48.0.0/13
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
changed: [email protected] 20091020
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK3)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 178.195.188.200 from vps297345.ovh.net

Hi,

The IP 178.195.188.200 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 178.195.188.200 :

[Querying whois.arin.net]
[Redirected to whois.ripe.net]
[Querying whois.ripe.net]
[whois.ripe.net]
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to '178.195.0.0 - 178.195.255.255'

% Abuse contact for '178.195.0.0 - 178.195.255.255' is '[email protected]'

inetnum: 178.195.0.0 - 178.195.255.255
netname: BLUEWINNET
descr: Bluewin is an LIR and ISP in Switzerland.
descr: This range is used for dynamic customer pools.
country: CH
admin-c: BCR1-RIPE
tech-c: BCR1-RIPE
status: ASSIGNED PA
remarks: ************************************************
remarks: In case of hack attacks, spam, scans etc. please
remarks: send abuse notifications to [email protected]
remarks: E-Mails to the persons below will be IGNORED!
remarks: ************************************************
mnt-by: BLUEWINNET-MNT
mnt-lower: BLUEWINNET-MNT
created: 2011-05-23T11:24:32Z
last-modified: 2016-04-11T07:52:13Z
source: RIPE # Filtered

role: Bluewin Contact Role
address: Swisscom (Schweiz) AG
address: Internet Service Core Networks
address: INI-ON-NCO-ICO-ICN
address: Binzring 17
address: CH-8045 Zurich
address: Switzerland
phone: +41 58 221 73 14
abuse-mailbox: [email protected]
remarks: ************************************************
remarks: Swisscom (Schweiz) AG / Bluewin is an
remarks: internet service provider and LIR in CH.
remarks: In case of hack attacks, spam, scans etc. please
remarks: send abuse mail notifications to the abuse-mailbox
remarks: --> [email protected] <--
remarks: E-Mails to the persons below will be IGNORED!
remarks: ************************************************
org: ORG-BA8-RIPE
admin-c: RG3846-RIPE
admin-c: TG267-RIPE
admin-c: GDM658-RIPE
admin-c: SF3464-RIPE
admin-c: HPP34-RIPE
admin-c: RF8568-RIPE
tech-c: RG3846-RIPE
tech-c: TG267-RIPE
tech-c: GDM658-RIPE
tech-c: SF3464-RIPE
tech-c: HPP34-RIPE
tech-c: RF8568-RIPE
nic-hdl: BCR1-RIPE
mnt-by: BLUEWINNET-MNT
created: 2003-04-08T08:53:32Z
last-modified: 2017-06-27T12:59:28Z
source: RIPE # Filtered

% Information related to '178.194.0.0/15AS3303'

route: 178.194.0.0/15
descr: Swisscom (Schweiz) AG - Bluewin
origin: AS3303
mnt-by: CH-UNISOURCE-MNT
created: 2016-01-26T08:15:38Z
last-modified: 2016-01-26T08:15:38Z
source: RIPE

% This query was served by the RIPE Database Query Service version 1.89.2 (BLAARKOP)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 210.22.178.250 from vps297345.ovh.net

Hi,

The IP 210.22.178.250 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 210.22.178.250 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '210.22.178.128 - 210.22.178.255'

% Abuse contact for '210.22.178.128 - 210.22.178.255' is '[email protected]'

inetnum: 210.22.178.128 - 210.22.178.255
netname: shanghai-jinrong-mansion
country: cn
descr: shanghai city
admin-c: YH276-AP
tech-c: YH276-AP
status: ASSIGNED NON-PORTABLE
changed: [email protected] 20021009
mnt-by: MAINT-CN-HY28
source: APNIC

person: yu hu
nic-hdl: YH276-AP
e-mail: [email protected]
address: china netcom
address: shanghai
phone: +86-021-64953694
country: CN
changed: [email protected] 20030107
mnt-by: MAINT-CN-ZM28
source: APNIC

% Information related to '210.22.0.0/16AS9929'

route: 210.22.0.0/16
descr: China Unicom CncNet
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: [email protected] 20060330
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK4)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 223.14.78.253 from vps297345.ovh.net

Hi,

The IP 223.14.78.253 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 223.14.78.253 :

[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '223.14.0.0 - 223.14.255.255'

% Abuse contact for '223.14.0.0 - 223.14.255.255' is '[email protected]'

inetnum: 223.14.0.0 - 223.14.255.255
netname: sxtybas
country: CN
descr: shanxi telecom taiyuan branch ip node links to customer ip address
admin-c: sa49-ap
tech-c: st53-ap
mnt-irt: IRT-CHINANET-SX
status: ASSIGNED NON-PORTABLE
changed: [email protected] 20140219
mnt-by: MAINT-CHINANET-SX
source: APNIC

irt: IRT-CHINANET-SX
address: NO.3,SHUMA ROAD,TAIYUAN
e-mail: sxip[email protected]
abuse-mailbox: [email protected]
admin-c: SA49-AP
tech-c: ST53-AP
auth: # Filtered
mnt-by: MAINT-CHINANET-SX
changed: [email protected] 20110801
source: APNIC

person: shanxitele admin
nic-hdl: SA49-AP
e-mail: [email protected]
address: no.217 nanneihuan street
address: taiyuan city 030012
phone: +86-351-5609863
fax-no: +86-351-5609868
country: cn
changed: [email protected] 20080904
mnt-by: MAINT-CHINANET-SX
source: APNIC

person: shanxitele tech
nic-hdl: ST53-AP
e-mail: [email protected]
address: no.217 nanneihuan street
address: taiyuan city 030012
phone: +86-351-5609963
fax-no: +86-351-5609868
country: cn
changed: [email protected] 20040203
mnt-by: MAINT-CHINATELECOM-SX
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK4)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 219.129.46.133 from vps297345.ovh.net

Hi,

The IP 219.129.46.133 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 219.129.46.133 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '219.129.46.128 - 219.129.46.191'

% Abuse contact for '219.129.46.128 - 219.129.46.191' is '[email protected]'

inetnum: 219.129.46.128 - 219.129.46.191
netname: JIN-TAIYANG-NWTBAT
descr: JIN TAIYANG NWTBAT
country: CN
admin-c: WC53-AP
tech-c: WC53-AP
status: ASSIGNED NON-PORTABLE
changed: [email protected] 20031104
mnt-by: MAINT-CHINANET-GD
source: APNIC

person: WUHONG CHENG
nic-hdl: WC53-AP
e-mail: [email protected]
address: NO 38 RENMING RO ANPU LIANJIANG
country: CN
phone: +86-759-6850506
fax-no: +86-759-6850506
changed: [email protected] 20031104
mnt-by: MAINT-CHINANET-GD
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK4)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 203.192.199.74 from vps297345.ovh.net

Hi,

The IP 203.192.199.74 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 203.192.199.74 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '203.192.192.0 - 203.192.255.255'

% Abuse contact for '203.192.192.0 - 203.192.255.255' is '[email protected]'

inetnum: 203.192.192.0 - 203.192.255.255
netname: IN2CABLE
descr: In2cable (India) Ltd.
country: IN
admin-c: JM1893-AP
tech-c: JM1893-AP
mnt-by: MAINT-IN-IRINN
mnt-lower: MAINT-IN-IN2CABLE
mnt-routes: MAINT-IN-IN2CABLE
status: ALLOCATED PORTABLE
mnt-irt: IRT-IMCL-IN
changed: [email protected] 20041206
changed: [email protected] 20090130
changed: [email protected] 20131127
source: APNIC

irt: IRT-IMCL-IN
address: 49/50, IN CENTRE , 12th ROAD
address: MIDC, ANDHERI(E)
address: MUMBAI-400093
e-mail: [email protected]
abuse-mailbox: [email protected]
admin-c: JM1893-AP
tech-c: JM1893-AP
auth: # Filtered
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20150413
source: APNIC

person: Jayesh Modi
address: 49-50 12th Road MIDC Andheri East Mumbai
country: IN
phone: +91 02228208585
e-mail: [email protected]
nic-hdl: JM1893-AP
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20150413
source: APNIC

% Information related to '203.192.199.0/24AS17665'

route: 203.192.199.0/24
descr: In2cable Route Object
origin: AS17665
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20080522
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK4)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 112.83.91.128 from vps297345.ovh.net

Hi,

The IP 112.83.91.128 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 112.83.91.128 :

[Querying whois.arin.net]
[Redirected to whois.apnic.net]
[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '112.83.91.0 - 112.83.91.255'

% Abuse contact for '112.83.91.0 - 112.83.91.255' is '[email protected]'

inetnum: 112.83.91.0 - 112.83.91.255
netname: JIANGSUGROUP
country: CN
descr: JIANGSU GROUP CO.,NANJING,JIANGSU PROVINCE
admin-c: LL58-AP
tech-c: LL58-AP
status: ASSIGNED NON-PORTABLE
changed: [email protected] 20101022
mnt-by: MAINT-CNCGROUP-JS
source: APNIC

person: Lan Li
nic-hdl: LL58-AP
e-mail: [email protected]
address: No. 65 Beijing West Road,Nanjing,China
phone: +86257900060
fax-no: +86252900280
country: CN
changed: [email protected] 20130815
mnt-by: MAINT-NEW
source: APNIC

% Information related to '112.80.0.0/13AS4837'

route: 112.80.0.0/13
descr: China Unicom CHINA169 Jiangsu Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: [email protected] 20081231
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK3)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 123.66.242.5 from vps297345.ovh.net

Hi,

The IP 123.66.242.5 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 123.66.242.5 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '123.64.0.0 - 123.95.255.255'

% Abuse contact for '123.64.0.0 - 123.95.255.255' is '[email protected]'

inetnum: 123.64.0.0 - 123.95.255.255
netname: CTTNET
descr: China TieTong Telecommunications Corporation
descr: Jinze Mansion, 2 Guangningbo Street,
descr: Xicheng District, Beijing, China, 100032
country: CN
admin-c: WP188-AP
tech-c: LM273-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CN-CRTC
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
changed: [email protected] 20090430
source: APNIC

irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: [email protected]
abuse-mailbox: [email protected]
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
changed: [email protected] 20110428
source: APNIC

person: liu min
nic-hdl: LM273-AP
e-mail: [email protected]
address: 22F Yuetan Mansion, Xicheng District, Beijing, P.R.China
phone: +86-10-51848796
fax-no: +86-10-51842426
country: CN
changed: [email protected] 20120320
mnt-by: MAINT-CNNIC-AP
source: APNIC

person: Wang Pei
nic-hdl: WP188-AP
e-mail: [email protected]
address: Jinze Mansion, 2 Guangningbo Street,
address: Xicheng District, Beijing, China, 100032
phone: +21-51892106
fax-no: +21-51847802
country: CN
changed: [email protected] 20060926
mnt-by: MAINT-CNNIC-AP
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK3)

Regards,

Fail2Ban

[Fail2Ban] ProFTPD: banned 115.159.198.25 from vps297345.ovh.net

Hi,

The IP 115.159.198.25 has just been banned by Fail2Ban after
6 attempts against ProFTPD.


Here is more information about 115.159.198.25 :

[Querying whois.arin.net]
[whois.arin.net]

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 58.242.83.17 from vps297345.ovh.net

Hi,

The IP 58.242.83.17 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 58.242.83.17 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '58.242.81.0 - 58.242.86.255'

% Abuse contact for '58.242.81.0 - 58.242.86.255' is '[email protected]'

inetnum: 58.242.81.0 - 58.242.86.255
netname: HUAIBEIBASIP
country: CN
descr: ANHUI UNICOM
admin-c: CH445-AP
tech-c: zz1045-AP
status: ASSIGNED NON-PORTABLE
changed: [email protected] 20081230
mnt-by: MAINT-CNCGROUP-AH
source: APNIC

person: CHINANET-JS-CZ Hostmaster
address: No.168,HePing South Road,Changzhou 213000
country: CN
phone: +86-519-8130141
phone: +86-519-8150024
fax-no: +86-519-8150026
e-mail: [email protected]
nic-hdl: CH445-AP
remarks: send anti-spam or abuse reports to [email protected]
remarks: or [email protected]
remarks: times in GMT+8
mnt-by: MAINT-CHINANET-JS-CZ
changed: [email protected] 20021210
source: APNIC

person: zhang jinhu
nic-hdl: ZZ1045-AP
e-mail: [email protected]
address: 278,suixi Street,hefei,230041,China
phone: +86-551-5228682
fax-no: +86-551-5229999
country: CN
changed: [email protected] 20070228
mnt-by: MAINT-NEW
source: APNIC

% Information related to '58.242.0.0/15AS4837'

route: 58.242.0.0/15
descr: CNC Group CHINA169 AnHui province network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: [email protected] 20060117
source: APNIC

% Information related to '58.242.0.0/15AS9929'

route: 58.242.0.0/15
descr: CNCGroup AnHui province network
country: CN
origin: AS9929
mnt-by: MAINT-CNCGROUP-RR
changed: [email protected] 20050603
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK4)

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 203.192.226.246 from vps297345.ovh.net

Hi,

The IP 203.192.226.246 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 203.192.226.246 :

[Querying whois.apnic.net]
[whois.apnic.net]
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

% Information related to '203.192.192.0 - 203.192.255.255'

% Abuse contact for '203.192.192.0 - 203.192.255.255' is '[email protected]'

inetnum: 203.192.192.0 - 203.192.255.255
netname: IN2CABLE
descr: In2cable (India) Ltd.
country: IN
admin-c: JM1893-AP
tech-c: JM1893-AP
mnt-by: MAINT-IN-IRINN
mnt-lower: MAINT-IN-IN2CABLE
mnt-routes: MAINT-IN-IN2CABLE
status: ALLOCATED PORTABLE
mnt-irt: IRT-IMCL-IN
changed: [email protected] 20041206
changed: [email protected] 20090130
changed: [email protected] 20131127
source: APNIC

irt: IRT-IMCL-IN
address: 49/50, IN CENTRE , 12th ROAD
address: MIDC, ANDHERI(E)
address: MUMBAI-400093
e-mail: [email protected]
abuse-mailbox: [email protected]
admin-c: JM1893-AP
tech-c: JM1893-AP
auth: # Filtered
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20150413
source: APNIC

person: Jayesh Modi
address: 49-50 12th Road MIDC Andheri East Mumbai
country: IN
phone: +91 02228208585
e-mail: [email protected]
nic-hdl: JM1893-AP
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20150413
source: APNIC

% Information related to '203.192.192.0/18AS10125'

route: 203.192.192.0/18
descr: Entire In2Cable block
origin: AS10125
country: IN
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20050125
source: APNIC

% Information related to '203.192.192.0/18AS17665'

route: 203.192.192.0/18
descr: Entire In2cable Block
origin: AS17665
mnt-by: MAINT-IN-IN2CABLE
changed: [email protected] 20080522
source: APNIC

% This query was served by the APNIC Whois Service version 1.88.15-35 (WHOIS-UK3)

Regards,

Fail2Ban

[Fail2Ban] ProFTPD: banned 60.249.245.180 from vps297345.ovh.net

Hi,

The IP 60.249.245.180 has just been banned by Fail2Ban after
6 attempts against ProFTPD.


Here is more information about 60.249.245.180 :

[Querying whois.apnic.net]
[Redirected to whois.twnic.net]
[Querying whois.twnic.net]
[whois.twnic.net]

Netname: HINET-NET
Netblock: 60.249.245.0/24

Administrator contact:
[email protected]

Technical contact:
[email protected]

Regards,

Fail2Ban

[Fail2Ban] SSH: banned 61.75.109.60 from vps297345.ovh.net

Hi,

The IP 61.75.109.60 has just been banned by Fail2Ban after
6 attempts against SSH.


Here is more information about 61.75.109.60 :

[Querying whois.apnic.net]
[Redirected to whois.krnic.net]
[Querying whois.krnic.net]
[whois.krnic.net]
query : 61.75.109.60


# KOREAN(UTF8)

조회하ì&lsqauo;  IPv4주소ëŠ" 한국인터넷진흥원으로부터 아래의 관리대행자에게 í• ë&lsqauo;¹ë˜ì—ˆìœ¼ë©°, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ˆë&lsqauo;¤.

[ 네트워크 í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 61.72.0.0 - 61.77.255.255 (/14+/15)
기관명 : 주ì&lsqauo;íšŒì‚¬ 케이í&lsqauo;°
서비스명 : KORNET
주소 : 경기도 성남ì&lsqauo;œ 분ë&lsqauo;¹êµ¬ 불정로 90
우편번호 : 13606
í• ë&lsqauo;¹ì¼ìž : 20001212

이름 : IP주소 ë&lsqauo;´ë&lsqauo;¹ìž
ì „í™"번호 : +82-2-500-6630
전자우편 : [email protected]

조회하ì&lsqauo;  IPv4주소ëŠ" 위의 관리대행자로부터 아래의 사용자에게 í• ë&lsqauo;¹ë˜ì—ˆìœ¼ë©°, í• ë&lsqauo;¹ ì •ë³´ëŠ" ë&lsqauo;¤ìŒê³¼ 같습ë&lsqauo;ˆë&lsqauo;¤.
--------------------------------------------------------------------------------


[ 네트워크 í• ë&lsqauo;¹ ì •ë³´ ]
IPv4주소 : 61.75.109.0 - 61.75.109.255 (/24)
기관명 : (주) 케이í&lsqauo;°
네트워크 구분 : CUSTOMER
주소 : 경상남도 창원ì&lsqauo;œ 북면
우편번호 : 641-870
í• ë&lsqauo;¹ë‚´ì—­ ë"±ë¡ì¼ : 20150317

이름 : IP주소 ë&lsqauo;´ë&lsqauo;¹ìž
ì „í™"번호 : +82-2-500-6630
전자우편 : [email protected]


# ENGLISH

KRNIC is not an ISP but a National Internet Registry similar to APNIC.

[ Network Information ]
IPv4 Address : 61.72.0.0 - 61.77.255.255 (/14+/15)
Organization Name : Korea Telecom
Service Name : KORNET
Address : Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro 90
Zip Code : 13606
Registration Date : 20001212

Name : IP Manager
Phone : +82-2-500-6630
E-Mail : [email protected]

--------------------------------------------------------------------------------

More specific assignment information is as follows.

[ Network Information ]
IPv4 Address : 61.75.109.0 - 61.75.109.255 (/24)
Organization Name : KT
Network Type : CUSTOMER
Address : Buk-Myeon Changwon-Si Gyeongsangnam-Do
Zip Code : 641-870
Registration Date : 20150317

Name : IP Manager
Phone : +82-2-500-6630
E-Mail : [email protected]


- KISA/KRNIC WHOIS Service -

Regards,

Fail2Ban