Hi,
The IP 169.1.11.118 has just been banned by Fail2Ban after
6 attempts against ssh.
Here are more information about 169.1.11.118:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#
#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=169.1.11.118?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#
NetRange: 169.1.0.0 - 169.1.255.255
CIDR: 169.1.0.0/16
NetName: AFRINIC-ERX-169-1-0-0
NetHandle: NET-169-1-0-0-1
Parent: NET169 (NET-169-0-0-0-0)
NetType: Transferred to AfriNIC
OriginAS:
Organization: African Network Information Center (AFRINIC)
RegDate: 2010-11-03
Updated: 2010-11-17
Comment: This IP address range is under AFRINIC responsibility.
Comment: Please see http://www.afrinic.net/ for further details,
Comment: or check the WHOIS server located at whois.afrinic.net.
Ref: https://whois.arin.net/rest/net/NET-169-1-0-0-1
ResourceLink: http://afrinic.net/en/services/whois-query
ResourceLink: whois.afrinic.net
OrgName: African Network Information Center
OrgId: AFRINIC
Address: Level 11ABC
Address: Raffles Tower
Address: Lot 19, Cybercity
City: Ebene
StateProv:
PostalCode:
Country: MU
RegDate: 2004-05-17
Updated: 2015-05-04
Comment: AfriNIC - http://www.afrinic.net
Comment: The African & Indian Ocean Internet Registry
Ref: https://whois.arin.net/rest/org/AFRINIC
ReferralServer: whois://whois.afrinic.net
ResourceLink: http://afrinic.net/en/services/whois-query
OrgTechHandle: GENER11-ARIN
OrgTechName: Generic POC
OrgTechPhone: +230 4666616
OrgTechEmail: abusepoc@afrinic.net
OrgTechRef: https://whois.arin.net/rest/poc/GENER11-ARIN
OrgAbuseHandle: GENER11-ARIN
OrgAbuseName: Generic POC
OrgAbusePhone: +230 4666616
OrgAbuseEmail: abusepoc@afrinic.net
OrgAbuseRef: https://whois.arin.net/rest/poc/GENER11-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#
Found a referral to whois.afrinic.net.
% This is the AfriNIC Whois server.
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '169.1.8.0 - 169.1.15.255'
% No abuse contact registered for 169.1.8.0 - 169.1.15.255
inetnum: 169.1.8.0 - 169.1.15.255
netname: AFRIHOST-FIXED
descr: AFRIHOST-FIXED
country: ZA
admin-c: RL14-AFRINIC
admin-c: ADS6-AFRINIC
tech-c: RL14-AFRINIC
tech-c: ADS6-AFRINIC
tech-c: AN58-AFRINIC
status: ASSIGNED PA
remarks: abuse e-mail: <abuse@afrihost.com>, phone: +27(11) 612 7300
mnt-by: AFRIHOST-MNT
source: AFRINIC # Filtered
parent: 169.0.0.0 - 169.1.255.255
person: Arthur Da Silva
address: Afrihost HQ
address: 376 Rivonia Boulevard
address: Sandton, Johannesburg
address: Gauteng
phone: +27116127300
fax-no: +27865528000
nic-hdl: ADS6-AFRINIC
source: AFRINIC # Filtered
person: AFRIHOST NOC
address: Afrihost HQ
address: 376 Rivonia Boulevard
address: Sandton, Johannesburg
address: Gauteng
phone: +27116127300
fax-no: +27865528000
nic-hdl: AN58-AFRINIC
source: AFRINIC # Filtered
person: Ryan Lumsden
address: Afrihost HQ
address: 376 Rivonia Boulevard
address: Sandton, Johannesburg
address: Gauteng
phone: +27116127300
fax-no: +27865528000
nic-hdl: RL14-AFRINIC
source: AFRINIC # Filtered
% Information related to '169.0.0.0/15AS37611'
route: 169.0.0.0/15
descr: Afrihost
origin: AS37611
mnt-by: AFRIHOST-MNT
source: AFRINIC # Filtered
Regards,
Fail2Ban
No comments:
Post a Comment