Hi,
The IP 131.161.54.11 has just been banned by Fail2Ban after
5 attempts against sshd.
Here is more information about 131.161.54.11 :
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#
#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=131.161.54.11?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#
NetRange: 131.161.0.0 - 131.161.255.255
CIDR: 131.161.0.0/16
NetName: LACNIC-ERX-131-161-0-0
NetHandle: NET-131-161-0-0-1
Parent: NET131 (NET-131-0-0-0-0)
NetType: Transferred to LACNIC
OriginAS:
Organization: Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate: 2010-11-03
Updated: 2010-11-17
Comment: This IP address range is under LACNIC responsibility
Comment: for further allocations to users in LACNIC region.
Comment: Please see http://www.lacnic.net/ for further details,
Comment: or check the WHOIS server located at http://whois.lacnic.net
Ref: https://whois.arin.net/rest/net/NET-131-161-0-0-1
ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink: whois.lacnic.net
OrgName: Latin American and Caribbean IP address Regional Registry
OrgId: LACNIC
Address: Rambla Republica de Mexico 6125
City: Montevideo
StateProv:
PostalCode: 11400
Country: UY
RegDate: 2002-07-27
Updated: 2011-09-24
Ref: https://whois.arin.net/rest/org/LACNIC
ReferralServer: whois://whois.lacnic.net
ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois
OrgTechHandle: LACNIC-ARIN
OrgTechName: LACNIC Whois Info
OrgTechPhone: 999-999-9999
OrgTechEmail: whois-contact@lacnic.net
OrgTechRef: https://whois.arin.net/rest/poc/LACNIC-ARIN
OrgAbuseHandle: LACNIC-ARIN
OrgAbuseName: LACNIC Whois Info
OrgAbusePhone: 999-999-9999
OrgAbuseEmail: whois-contact@lacnic.net
OrgAbuseRef: https://whois.arin.net/rest/poc/LACNIC-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#
Found a referral to whois.lacnic.net.
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2017-05-01 04:10:54 (BRT -03:00)
inetnum: 131.161.52/22
status: allocated
aut-num: AS263686
abuse-c: DAC43
owner: INET Communication
ownerid: HN-INET-LACNIC
responsible: Alejandro Vela
address: Barrio Medina,CURN Contiguo CEUTEC, --, --
address: CT1200 - San Pedro Sula - Co
country: HN
phone: +504 504 5440946 []
owner-c: DAC43
tech-c: DAC43
abuse-c: DAC43
inetrev: 131.161.52/22
nserver: NS1.INETHN.NET
nsstat: 20170428 AA
nslastaa: 20170428
nserver: NS2.INETHN.NET
nsstat: 20170428 AA
nslastaa: 20170428
created: 20140911
changed: 20140911
nic-hdl: DAC43
person: David Alejandro Vela Charnaud
e-mail: alejandrovela@INETHN.COM
address: Boulevard CURN contiguo a CEUTEC, ,
address: 1200 - San Pedro Sula - CT
country: HN
phone: +504 3 2876813 [100]
created: 20130228
changed: 20130809
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
Regards,
Fail2Ban
No comments:
Post a Comment