![[たつきち]](images/tatsukichi-title.gif)
since 2001.4.29
[40860]
| 年中無休不定休 00:00-24:00 | |
![[おしながき]](images/oshinagaki.gif)
| |
| お飲みもの | 日本酒を各種取り揃えております |
| コース料理 | MacOS X, unix 等の美しく確かな技をご堪能下さい |
| 季節料理 | PIC, H8 等のご紹介 |
| おつまみ | 毒のあるつまみのようです |
| たつきちのご紹介 | 駐車場はございませんので散歩がてらご来店下さい |
| ご予約・お問い合わせは info3@tatsukichi.gr.jp まで (このメールアドレスへの特定電子メールの送信を拒否します) | |
| たつきち小路でひとときのお安らぎを | |
![[たつきち小路]](images/kouji.gif)
| |
| はむすたあのあにさん | たつきちのおっしょさんです ひさしぶりに元気なおっしょさんに出会えました ^^; |
| 浅草散歩 | たつきち小路から近くて遠い浅草の町 |
| 呑み喰い処 | たつきちが好きならこの店も好き? |
| 本屋 | 様々な本のご紹介 |
ぽっぽっぽ〜
|
とらすで〜す みぃで〜す ふたりあわせてとらすとみぃどぇ〜す |
| 大通りのお店 | |
![[電車通り]](images/densha.gif)
| |
| YAHOO! JAPAN | |
| google 検索 | |
| たつきちからのお知らせ | |
|
[インシデント・レスポンスについて] 弱小なたつきちネットワークでも最近多くのインシデントがありますので「たつきちネットワークにおけるインシデントの扱いについて」を作成しました。 [ウィルスからの攻撃について] ウィルスに感染したマイクロソフト・ウィンドウズからの攻撃は目に余るものがあります。ブラスターワームが猛威を振るった 2003 年 12 月には一日あたり約 18,251 回, 2004 年 7 月でも一日あたり約 4,229 回の攻撃があり,そのほとんどがウィルス感染したウィンドウズからと思われます。 2005 年 8 月の ZOTOB/IRCBot ワームでも1日あたり 5,000 回程度の攻撃を受けています。 エンドユーザやサーバ管理者の方は手を抜かず,周りに迷惑をかけない運用管理を徹底していただきたいものです(この部分はウィンドウズには限りませんが)。 |
/ 2010.5 / 2010.4 / 2010.3 / 2010.2 / 2010.1 / 2009.12 / 2009.11 / 2009.10 / 2009.9 / 2009.8 / 2009.7 / 2009.6 / 2009.5 / 2009.4 / 2009.3 / 2009.2 / 2009.1 / 2008.12 / 2008.11 / 2008.10 / 2008.9 / 2008.8 / 2008.7 / 2008.6 / 2008.5 / 2008.4 / 2008.3 / 2008.2 / 2008.1
| CRACKERS' HEAVEN HOST/NETWORK - rejected networks (listed last 3 months) | |
| ip address | reason |
|---|---|
| 61.83.228.109/14+ |
61.83.228.109 in jaedanbeobinanyangjisigsaneobjinheungwon (재단법인안양지식산업진흥원) in Korea Telecom (케이티) (KR) (2010.7.29) Malicious and huge ssh brute force attack (43 login attempts) focusing on the root password. Add 61.72.0.0/13, 61.80.0.0/14 and 61.84.0.0/15 to the permanent block list. |
| 141.85.254.152/16 |
The criminals' host 141.85.254.152 (uhv.helios.pub.ro) in OEDUPERCO in "Politehnica" University of Bucharest (Universitatea POLITEHNICA din Bucuresti) (RO) (2010.7.29) Malicious and huge ssh brute force attack (469 and more login attempts). This is the 2nd attack by the criminals' host 141.85.254.152 (uhv.helios.pub.ro) since Jul 20 2010 (today). |
| 155.158.107.126/16 |
155.158.107.126 (luke2.dtc.mfc.us.edu.pl) in University of Silesia in Katowice (Uniwersytet Śląski w Katowicach) (PL) (2010.7.29) Malicious and huge ssh brute force attack (259 and more login attempts). |
| 60.28.27.14/11 |
The criminal 60.28.27.14 in the criminal China Unicom Tianjin province network (中国联合通信有限公司天津分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.29) Malicious and huge ssh brute force attack (16 and more login attempts) focusing on the root password only. This is the 5th attack by the criminals' host 60.28.27.14 since Jul 29 2010 (twice), Jul 26 2010 and Jul 18 2010. Add 60.0.0.0/11 to the permanent block list. |
| 60.28.27.14/11 |
The criminal 60.28.27.14 in the criminal China Unicom Tianjin province network (中国联合通信有限公司天津分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.29) Malicious and huge ssh brute force attack (10 login attempts) focusing on the root password only. This is the 4th attack by the criminals' host 60.28.27.14 since Jul 29 2010, Jul 26 2010 and Jul 18 2010. Add 60.0.0.0/11 to the permanent block list. |
| 60.28.27.14/11 |
The criminal 60.28.27.14 in the criminals' network China Unicom Tianjin province network (中国联合通信有限公司天津分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.29) Malicious and huge ssh brute force attack (18 login attempts) focusing on the root password only. This is the 3rd attack by the criminals' host 60.28.27.14 since Jul 26 2010 and Jul 18 2010. Add 60.0.0.0/11 to the permanent block list. |
| 141.85.254.152/16 |
141.85.254.152 (uhv.helios.pub.ro) in OEDUPERCO in "Politehnica" University of Bucharest (Universitatea POLITEHNICA din Bucuresti) (RO) (2010.7.29) Malicious and huge ssh brute force attack (469 login attempts). |
| 201.80.211.118/7 |
201.80.211.118 in NET Vírtua (BR) (2010.7.28) Malicious and huge ssh brute force attack (75 login attempts). Add 200.0.0.0/7 to the permanent block list. |
| 87.252.2.168/19 |
87.252.2.168 (87-252-2-168.oxyd.net) in OXYD Hosted Services (FR) (2010.7.28) Malicious and huge ssh brute force attack (52 and more login attempts). |
| 210.212.112.130/20 |
210.212.112.130 in PDM College Of Engineering in Bharat Sanchar Nigam Limited (IN) (2010.7.28) Malicious and huge ssh brute force attack (31 login attempts) focusing on the root password only. |
| 173.45.97.235/18 |
173.45.97.235 (eb.61.2d.static.xlhost.com) in XLHost.com Inc in eNET Inc. (US) (2010.7.27) Malicious and huge ssh brute force attack (817 login attempts). |
| 210.51.180.212/16+ |
The criminal 210.51.180.212 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.27) Malicious and huge ssh brute force attack (26 login attempts) focusing on the root password only. This is the 9th attack by the criminal 210.51.180.212 since Jul 26 2010, Jul 8 2010, Jul 7 2010, May 26 2010, May 15 2010, Mar 14 2010, Jan 12 2010 and Jan 5 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 60.195.250.54/15 |
The criminal 60.195.250.54 in the criminal Beijing Teletron Telecom Engineering Co., Ltd. (Jian Guo Road, Chaoyang District, Beijing, PR.China) (Donghai Liu, liudonghai@btte.net, No. 20, Fuxing Road, Beijing, phone:+86-010-65661868-230, fax-no:+86-010-65660882) (北京电信通) in one of the most famous lawless area in the world (CN) (20010.7.27) Malicious and huge ssh brute force attack (6 login attempts) focusing on the root password. This is the 11th attack by the criminal 60.195.250.54 since Jun 15 2010, Apr 20 2010, Mar 29 2010, Feb 18 2010, Jan 14 2010, Jan 10 2010, Jan 6 2010, Nov 25 2009, Nov 24-25 2009 and Jul 9 2009. Add 60.194.0.0/15 to the permanent block list. |
| 113.130.71.81/19 |
113.130.71.81 in ONSE Telecom (온세텔레콤) (KR) (2010.7.26) Malicious and huge ssh brute force attack (156 login attempts) focusing on the root passowrd. Add 113.130.64.0/19 to the permanent block list. |
| 93.184.71.14/20 |
93.184.71.14 in VNET a.s. (SK) (2010.7.26) Malicious and huge ssh brute force attack (497 login attempts) focusing on the root password. |
| 178.63.43.58/16 |
178.63.43.58 (web1.serverpalace.net) in Server Palace Internet Solutions™ in Hetzner Online AG (DE) (2010.7.26) Malicious and huge ssh brute force attack (37 login attempts) focusing on the root password. We received an automatic receipt from Hetzner Online AG. (2010.7.26). |
| 60.28.27.14/11 |
The criminals' host 60.28.27.14 in the criminals' heaven network China Unicom Tianjin province network (中国联合通信有限公司天津分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.26) Malicious and huge ssh brute force attack (41 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 60.28.27.14 since Jul 18 2010. Add 60.0.0.0/11 to the permanent block list. |
| 210.51.180.212/16+ |
The criminal 210.51.180.212 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.26) Malicious and huge ssh brute force attack (19 login attempts) focusing on the root password only. This is the 8th attack by the criminal 210.51.180.212 since Jul 8 2010, Jul 7 2010, May 26 2010, May 15 2010, Mar 14 2010, Jan 12 2010 and Jan 5 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 110.172.174.50/18 |
110.172.174.50 (kailashbroadband.com) in Kailash in World Phone (IN) (2010.7.25) Malicious and huge ssh brute force attack (168 login attempts). |
| 99.192.163.105/17 |
99.192.163.105 in Konge Tech Corp (Miami Beach, FL) in MojoHost (US) (2010.7.25) Malicious and huge ssh brute force attack (37 login attempts) focusing on the root password. |
| 219.143.8.130/11 |
219.143.8.130 in CHINANET Beijing Province Network (中国电信北京分公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.7.23-25) Malicious and huge ssh brute force attack (32 login attempts) focusing on the root passowrd. Add 219.128.0.0/11 to the permanent block list. |
| 87.192.50.43/16 |
87.192.50.43 in Irish Broadban (IE) (2010.7.25) Malicious and huge pop login attempts (41 login attempts). |
| 221.11.4.10/12 |
221.11.4.10 in vod in CNC Group CHINA169 Shanxi Province Network (NO.2 GuangDe Road, High Tec Zone, Xi'an, Shannxi, China) in China Unicom (中国联通) (CN) (2010.7.24) Malicious and huge ssh brute force attack (94 login attempts). Add 221.0.0.0/12 to the permanent block list. |
| 219.95.126.130/17 |
219.95.126.130 (mail.metechal.com.my) in METECH Aluminium Industries Sdn. Bhd. in TMNET (MY) (2010.7.24) Malicious and huge ssh brute force attack (119 login attempts). We received an automatic receipt from TMNET. (2010.7.24). |
| 91.192.158.207/22 |
91.192.158.207 in MariupolTechSvyaz Ltd (Mariupol, 87525, Ukraine) (UA) (2010.7.23) Malicious and huge ssh probes (35 connection attempts). |
| 80.248.222.71/20 |
80.248.222.71 (vds1578.sivit.org = www.ne-xe.com) in NEXE in SIVIT SARL (FR) (2010.7.23) Malicious and huge ssh brute force attack (649 login attempts). |
| 212.174.130.150/16 |
212.174.130.150 in AKTEK_BILGI_ILETISIM in TurkTelecom (TR) (2010.7.23) Malicious and huge ssh brute force attack (373 login attempts). |
| 178.237.17.199/20 |
178.237.17.199 (hssdn-m14.blue.icq.com) in @MAIL.RU in iCnet (RU) (2010.7.23) Malicious and huge ssh brute force attack (37 login attempts) focusing on the root passowrd. |
| 202.149.81.254/28 |
202.149.81.254 (host81-254.sat.net.id) in Universitas Muhammadiyah Yogyakarta in Sat.Net.Id (ID) (2010.7.23) Malicious and huge ssh brute force attack (334 login attempts) focusing on the root passowrd only. |
| 218.83.150.170/11+ |
The crimianls' host 218.83.150.170 in WLZX (YiFeng Zhu) in the criminals' heaven network CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.7.23) Malicious and huge ssh brute force attack (893 login attempts). This is the 2nd attack by the crimianls' host 218.83.150.170 since Jun 9 2010. Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 211.154.215.174/12+ |
The criminal 211.154.215.174 in the criminal China Netcom(GROUP) Company Limited, Beijing Branch (中国联通北京市分公司) (805#, Changhua Building, No.97 Inner Fuxingmen Road, Beijing, China, 100800, phone:+86-010-63060025, fax-no:+86-010-66030659) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.17, mail error 2010.7.22) Malicious and huge ssh brute force attack (38 and more login attempts) focusing on the root password only. This is the 3rd attack by the criminal 211.154.215.174 since May 28 2010 and May 7 2010. The contact e-mail address supeng@bjtelecom.com.cn does not work because of '<supeng@bjtelecom.com.cn>: connect to ml12.bjtelecom.com.cn[202.96.18.70]: Connection timed out' (2010.7.22) Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 218.61.141.107/13+ |
218.61.141.107 in China Unicom Liaoning province network (中国联合网络通信有限公司辽宁省分公司) in China Unicom (中国联通) (CN) (2010.7.22) Malicious and huge ssh brute force attack (5 login attempts) focusing on the root password only. This is the 2nd attack by 218.61.141.107 since Feb 2 2010. Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 61.151.246.140/10 |
The criminal 61.151.246.140 in the criminal Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.7.22) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 7th attack by the criminal 61.151.246.140 since Jul 5 2010, Jul 2 2010, Jun 28 2010, Jun 2 2010, May 31 2010 and May 12-24 2010. Add 61.128.0.0/10 to the permanent block list. |
| 210.21.221.156/16+ |
210.21.221.156 in shenzhen branch, china netcom corp (yumei sun, sz-ipaddress@china-netcom.com, china netcom, shenzhen, phone:+86-0755-6983588) in China Unicom (中国联通) (CN) (2010.7.10-22) Malicious and huge ssh brute force attack (64 login attempts). Add 210.21.0.0/16 and 210.22.0.0/16 to the permanent block list. |
| 203.193.132.20/18 |
203.193.132.20 (www.mohali.stpi.in) in Software Technology Parks of India (IN) (2010.7.21) Malicious and huge ssh brute force attack (435 login attempts) focusing on the root passowrd. |
| 187.10.186.235/7 |
187.10.186.235 in the criminals' heaven network TELECOMUNICACOES DE SAO PAULO S.A. - TELESP (BR) (2010.7.15, mail error 2010.7.20) Malicious smtp relay attempts (30 attempts). The contact e-mail address security@telesp.net.br does not work because of '<security@telesp.net.br>: connect to gbrsecurity02.telesp.net.br[200.171.222.87]: Connection timed out' (2010.7.20) Add 186.0.0.0/7 to the permanent block list. |
| 217.92.59.216/12 |
217.92.59.216 (pd95c3bd8.dip0.t-ipconnect.de) in Deutsche Telekom AG (DE) (2010.7.20) Malicious and huge ssh brute force attack (55 login attempts). We received an automatic receipt from Deutsche Telekom AG. (2010.7.23). |
| 114.80.224.126/12+ |
114.80.224.126 in CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.7.20) Malicious and huge ssh brute force attack (49 login attempts) focusing on the root password. Add 114.80.0.0/12, 114.96.0.0/13 and 114.104.0.0/14 to the permanent block list. |
| 83.96.235.2/19 |
83.96.235.2 (it01.itrends.eu) in Information Trends B.V. in ProServe NL (NL) (2010.7.19) Malicious and huge ssh brute force attack (77 and more login attempts). |
| 133.220.110.100/16 |
133.220.110.100 (dslab.ci.seikei.ac.jp) in Seikei University (JP) (2010.7.19) Malicious and huge ssh brute force attack (77 login attempts). |
| 60.220.224.103/12+ |
60.220.224.103 in China Unicom Shanxi Province Network (中国联合网络通信有限公司山西省分公司) in China Unicom (中国联通) (CN) (2010.7.19) Malicious and huge ssh brute force attack (469 and more login attempts) focusing on the root password. Add 60.200.0.0/13 and 60.208.0.0/12 to the permanent block list. |
| 95.50.29.194/14 |
95.50.29.194 (jzd194.internetdsl.tpnet.pl) in TPNET (PL) (2010.7.19) Malicious and huge ssh brute force attack (129 login attempts). We received an automatic receipt from TPNET. (2010.7.19). |
| 60.28.27.14/11 |
60.28.27.14 in China Unicom Tianjin province network (中国联合通信有限公司天津分公司) in China Unicom (中国联通) (CN) (2010.7.18) Malicious and huge ssh brute force attack (41 login attempts) focusing on the root password. Add 60.0.0.0/11 to the permanent block list. |
| 217.16.83.178/19 |
217.16.83.178 in On.net (MK) (2010.7.18) Malicious and huge ssh brute force attack (20 and more login attempts). This is the 2nd attack by 217.16.83.178 since Jan 21 2010. |
| 116.74.105.2/14 |
116.74.105.2 (105.74.116.2.hathway.com) in Hathway (IN) (2010.7.17) Malicious and huge ssh brute force attack (485 login attempts). |
| 202.124.138.197/19 |
202.124.138.197 in the criminals' heaven network Christian Santos (Makati City, PH) in Globalreach eBusiness Networks, Inc. (PO Box 459, Drums, PA 18222, US, 570-708-8780) (PH) (2010.7.17) Malicious and huge ssh brute force attack (68 and more login attempts). The contact e-mail address chris@pbgroupltd.com does not work because of '<chris@pbgroupltd.com>: host sitemail.everyone.net[216.200.145.235] said: 550 Recipient Rejected: No account by that name here (in reply to RCPT TO command)' (2010.7.17) Add 202.124.128.0/19 to the permanent block list. |
| 95.156.202.92/18 |
95.156.202.92 in Optimate-Server (DE) (2010.7.17) Malicious and huge ssh brute force attack (68 and more login attempts). This is the 2nd attack from Optimate-Server since Jul 9 2010 (by 95.156.202.96). |
| 119.188.7.159/12 |
119.188.7.159 in China Unicom Shandong province network (中国联合网络通信有限公司山东省分公司) in CHINA UNICOM (中国联通) (CN) (2010.7.17) Malicious and huge ssh brute force attack (30 login attempts) focusing on the root password. Add 119.176.0.0/12 to the permanent block list. |
| 218.241.139.67/13+ |
218.241.139.67 in the crimial Beijing Bitone United Networks (No.26 Chaowai Str., Chaoyang District,Beijing,P.R.C / Jonson Li, bill.pang@bj.datadragon.net, 2nd Floor,BLDG HP No.112 Jian Guo Street,Chaoyang District,Beijing, phone:+86-010-65661862-232, fax-no:+86-010-65660882) (CN) (2010.7.16) Malicious and huge ssh brute force attack (43 login attempts) focusing on the root password only. Beijing Bitone United Networks is also famous for spammers' paradise. Add 218.240.0.0/13 and 218.249.0.0/16 to the permanent block list. |
| 119.201.19.40/11 |
119.201.19.40 (www.davs.or.kr) in Dae-A Vocational School (대아직업전문학교) in Korea Telecom (케이티) (KR) (2010.7.16) Malicious and huge ssh brute force attack (531 login attempts) focusing on the root password. Add 119.192.0.0/11 to the permanent block list. |
| 202.137.23.137/28 |
202.137.23.137 in PT. LINKNET (ID) (2010.7.15) Malicious and huge ssh brute force attack (178 login attempts). |
| 202.117.3.30/13+ |
The criminal 202.117.3.30 in the criminals' network Xian Jiaotong University (西安交通大学) in CERNET : China Education and Research Network (中国教育网-中国教育和科研计算机网) (CN) (2010.7.15) Malicious and huge ssh brute force attack (808 login attempts) focusing on the root password. This is the 3rd attack by the criminal 202.117.3.30 since Jul 30 2009 and Jul 2 2009. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 61.76.46.200/13+ |
61.76.46.200 in Korea Telecom (케이티) (KR) (2010.7.15) Malicious and huge ssh brute force attack (3,037 login attempts). Add 61.72.0.0/13, 61.80.0.0/14 and 61.84.0.0/15 to the permanent block list. |
| 218.234.33.31/13 |
The criminals' host 218.234.33.31 in SK Broadband Co Ltd (SK브로드밴드) (Hanaro Telecom Inc.) (KR) (2010.7.14) Malicious and huge ssh brute force attack (150 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 218.234.33.31 since Mar 30 2010. Add 218.232.0.0/13 to the permanent block list. |
| 65.111.174.124/121+ |
65.111.174.124 (124-174.111.65.serverpronto.com) in Server Pronto in Infolink (US) (2010.7.14) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. |
| 203.172.248.172/18 |
203.172.248.172 (www.maejedee.ac.th) in MaejedeeWithayakhomSchool in the criminals' heaven network Ministry of Education Network Operation Center (TH) (2010.7.8, mail error 2010.7.13) Malicious and huge ssh brute force attack (964 login attempts). The contact e-mail address charnsak@emisc.moe.go.th does not work because of '<charnsak@emisc.moe.go.th>: host emisc.moe.go.th[203.146.15.2] said: 452 4.2.2 Over quota (in reply to end of DATA command)' (2010.7.13) Add 203.172.192.0/18 to the permanent block list. |
| 211.43.195.170/11 |
211.43.195.170 in INEMPIRE in LG DACOM KIDC (LG유플러스 KIDC) (KR) (2010.7.12) Malicious and huge ssh brute force attack (3,697 login attempts). Add 211.32.0.0/11 to the permanent block list. |
| 200.61.165.65/7 |
The criminal 200.61.165.65 (customer-static-165-65.iplannetworks.net) in the criminals' network IPLAN (AR) (2010.7.12) Malicious and huge ssh brute force attack (481 login attempts). This is the 3rd attack by the criminal 200.61.165.65 (customer-static-165-65.iplannetworks.net) since Mar 1 2010 and Dec 22 2009. Add 200.0.0.0/7 to the permanent block list. |
| 209.59.151.2/18 |
209.59.151.2 (lander.tech-dns.net) in Liquid Web, Inc. (US) (2010.7.12) Malicious and huge pop login attempts (159 login attempts). |
| 58.137.18.109/28 |
58.137.18.109 in Assumption Commercial College (ACC) in Loxinfo (TH) (2010.7.10) Malicious and huge ssh brute force attack (135 login attempts). |
| 208.127.244.61/16 |
208.127.244.61 (netblock-208-127-244-61.dslextreme.com) in DSL Extreme (US) (2010.7.10) Malicious and huge pop login attempts (159 login attempts). |
| 118.69.220.73/16 |
118.69.220.73 in FPT Telecom (VN) (2010.7.10) Malicious and huge ssh brute force attack (150 and more login attempts). |
| 89.107.123.123/21 |
89.107.123.123 (resource-2.canmos.ru) in Canmos (RU) (2010.7.10) Malicious and huge ssh brute force attack (53 login attempts) focusing on the root password. |
| 112.78.200.144/19 |
112.78.200.144 (www.azass.com) in azass.com in BET Inc. in SAKURA Internet Inc. (JP) (2010.7.10) Malicious and huge ssh brute force attack (138 and more login attempts). |
| 202.107.233.163/12+ |
202.107.233.163 in Jiaxing Telecom CO.,LTD (Hao Wang) (CN) (2010.7.10) Malicious and huge ssh brute force attack (76 login attempts) focusong on the root password only. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 222.41.213.238/11+ |
222.41.213.238 in CRTC - CHINA RAILWAY TELECOMMUNICATIONS CENTER (中国铁通在线) (CN) (2010.7.10) Malicious and huge ssh brute force attack (893 login attempts). Add 222.16.0.0/12, 222.32.0.0/11 and 222.64.0.0/11 to the permanent block list. |
| 95.156.202.96/18 |
95.156.202.96 in Optimate-Server (DE) (2010.7.9) Malicious and huge ssh brute force attack (287 login attempts). |
| 210.123.79.136/11+ |
210.123.79.136 in Korea Telecom (KR) (2010.7.8) Malicious and huge ssh brute force attack (342 login attempts) focusing on the root password only. Add 210.90.0.0/15, 210.92.0.0/14 and 210.96.0.0/11 to the permanent block list. |
| 210.51.180.212/16+ |
The criminal 210.51.180.212 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.7.8) Malicious and huge ssh brute force attack (8 login attempts) focusing on the root password only. This is the 7th attack by the criminal 210.51.180.212 since Jul 7 2010, May 26 2010, May 15 2010, Mar 14 2010, Jan 12 2010 and Jan 5 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 109.230.193.20/20 |
109.230.193.20 in Optimate Server (DE) (2010.7.7) Malicious and huge ssh brute force attack (29 and more login attempts) focusing on the root password. |
| 210.51.180.212/16+ |
The criminal 210.51.180.212 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) (CN) (2010.7.7) Malicious and huge ssh brute force attack (3 login attempts) focusing on the root password only. This is the 6th attack by the criminal 210.51.180.212 since May 26 2010, May 15 2010, Mar 14 2010, Jan 12 2010 and Jan 5 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 203.65.162.165/13+ |
The criminal 203.65.162.165 in the criminals' heaven network Global Communication Network Corp. (TW) (2010.7.7) Malicious and huge ssh brute force attack (1,576 login attempts). This is the 4th attack by the criminal 203.65.162.165 since Mar 13 2010, Nov 20 2009 and Sep 27 2009. Add 203.64.0.0/13 and 203.72.0.0/14 to the permanent block list. |
| 76.191.100.182/22 |
76.191.100.182 in vanoppen.biz LLC in Spectrum Networks in Sentris Network LLC (US) (2010.7.6) Malicious and huge ssh brute force attack (113 login attempts) focusing on the root password. |
| 150.188.32.42/15+ |
150.188.32.42 in :: Cenit :: Fundación Centro Nacional de Innovación Tecnológica (VE) (2010.7.6) Malicious and huge ssh brute force attack (97 login attempts) focusing on the root passowrd. Add 150.185.0.0/16, 150.186.0.0/15 and 150.188.0.0/15 to the permanent block list. |
| 70.183.24.162/11 |
70.183.24.162 in Cox Communications Inc. (US) (2010.7.6) Malicious and huge ssh brute force attack (6,382 login attempts). We received an automatic receipt from Cox Communications Inc. (2009.7.6) |
| 221.238.129.108/12+ |
The criminal 221.238.129.108 (www.chinastemcell.com) in the criminal UNION STEMCELL & GENE ENGINEERING CO.LTD (协和干细胞基因工程有限公司) in the criminal TIANJIN-DINGZHICHENGKEJI-NETWORK (No.11 LIUJING ROAD ,HEDONG ,TIANJIN,CHINA, phone:+86-22-85580499, fax-no:+86-22-85580970) (CN) (2010.6.30, mail error 2010.7.5) Malicious and huge ssh brute force attack (6 login attempts). This is the 3rd attack by the criminal 221.238.129.108 (www.chinastemcell.com) since Jun 29 2010 and Jun 29 2010. The contact e-mail address ipadmin@north.cn.net does not work because of '<ipadmin@north.cn.net>: Name service error for north.cn.net: Host not found, try again' (2010.7.5) Add 221.192.0.0/11 and 221.224.0.0/12 to the permanent block list. |
| 221.238.129.108/12+ |
The criminal 221.238.129.108 (www.chinastemcell.com) in the criminal UNION STEMCELL & GENE ENGINEERING CO.LTD (协和干细胞基因工程有限公司) in TIANJIN-DINGZHICHENGKEJI-NETWORK (No.11 LIUJING ROAD ,HEDONG ,TIANJIN,CHINA, phone:+86-22-85580499, fax-no:+86-22-85580970) (CN) (2010.6.29, mail error 2010.7.5) Malicious and huge ssh brute force attack (6 login attempts). This is the 2nd attack by the criminal 221.238.129.108 (www.chinastemcell.com) since Jun 29 2010. The contact e-mail address ipadmin@north.cn.net does not work because of '<ipadmin@north.cn.net>: Name service error for north.cn.net: Host not found, try again' (2010.7.5) Add 221.192.0.0/11 and 221.224.0.0/12 to the permanent block list. |
| 211.142.70.163/13+ |
211.142.70.163 in China Mobile Communications Corporation - anhui company (中国移动通信集团山西有限公司) in China Mobile Communications Corporation (中国移动通信) (CN) (2010.7.5) Malicious and huge ssh probes (35 connection attempts). Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 61.151.246.140/10 |
The criminal 61.151.246.140 in the criminal Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.7.5) Malicious and huge ssh brute force attack (3 login attempts) focusing on the root password only. This is the 6th attack by the criminal 61.151.246.140 since Jul 2 2010, Jun 28 2010, Jun 2 2010, May 31 2010 and May 12-24 2010. Add 61.128.0.0/10 to the permanent block list. |
| 221.238.129.108/12+ |
The crimianl 221.238.129.108 (www.chinastemcell.com) in the crimianls' network UNION STEMCELL & GENE ENGINEERING CO.LTD (协和干细胞基因工程有限公司) in TIANJIN-DINGZHICHENGKEJI-NETWORK (No.11 LIUJING ROAD ,HEDONG ,TIANJIN,CHINA, phone:+86-22-85580499, fax-no:+86-22-85580970) (CN) (2010.6.15-29, mail error 2010.7.4) Malicious and huge ssh brute force attack (62 login attempts). The contact e-mail address ipadmin@north.cn.net does not work because of '<ipadmin@north.cn.net>: Name service error for north.cn.net: Host not found, try again' (2010.7.4) Add 221.192.0.0/11 and 221.224.0.0/12 to the permanent block list. |
| 187.45.221.101/7 |
187.45.221.101 (xxxcnn3986.hospedagemdesites.ws) in HOSIT - Locaweb Servi?os de Internet S/A (BR) (2010.7.4) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. Add 186.0.0.0/7 to the permanent block list. |
| 189.33.198.201/8+ |
189.33.198.201 in the criminals' heaven network Grupo de Seguran?a V?rtua (BR) (2010.6.28. mail error 2010.7.3) Malicious and huge ssh brute force attack (221 login attempts) focusing on the root password only. The contact e-mail address virtua@virtua.com.br does not work because of '<virtua@virtua.com.br>: connect to smtp.virtua.com.br[201.6.0.214]: Connection timed out' (2010.7.3) Add 189.0.0.0/8 and 190.0.0.0/8 to the permanent block list. |
| 203.131.229.178/19 |
203.131.229.178 in HKNet Company Limited (HK) (2010.7.3) Malicious and huge ssh brute force attack (893 login attempts) focusing on the root password. |
| 61.107.122.67/12 |
61.107.122.67 in DREAMLINE CO. (드림라인) (KR) (2010.7.2) Malicious and huge ssh brute force attack (91 login attempts) focusing on the root password. Add 61.96.0.0/12 to the permanent block list. |
| 58.248.253.171/12 |
58.248.253.171 in China Unicom Guangdong province network (中国联通广东分公司) in China Unicom (中国联通) (CN) (2010.7.2) Malicious and huge ssh brute force attack (75 login attempts). Add 58.240.0.0/12 to the permanent block list. |
| 83.221.124.209/20 |
83.221.124.209 in OAKNET S.R.L. in Telecom Italia (IT) (2010.7.2) Malicious and huge ssh brute force attack (156 login attempts) focusing on the root password. |
| 94.126.17.235/21 |
94.126.17.235 in METANET AG (US) (2010.7.2) Malicious and huge ssh brute force attack (188 login attempts) focusing on the root password. |
| 61.151.246.140/10 |
The criminal 61.151.246.140 in the criminal Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.7.2) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 5th attack by the criminal 61.151.246.140 since Jun 28 2010, Jun 2 2010, May 31 2010 and May 12-24 2010. Add 61.128.0.0/10 to the permanent block list. |
| 173.203.105.210/18(/16) |
173.203.105.210 (173-203-105-210.static.cloud-ips.com = east-cloud.co.jp) in East Cloud, Inc. in Slicehost (San Antonio, TX) in Rackspace.com, Ltd. (US) (2010.7.2) Malicious and huge ssh brute force attack (294 login attempts). We received an automatic receipt from Rackspace.com. (2009.7.2) |
| 58.251.46.9/12 |
58.251.46.9 (reverse.gdsz.cncnet.net) in China Unicom Guangdong province network (中国联通广东分公司) in China Unicom (中国联通) (CN) (2010.7.1) Malicious and huge ssh brute force attack (214 and more login attempts) focusing on the root password. Add 58.240.0.0/12 to the permanent block list. |
| 210.83.70.250/15 |
210.83.70.250 in rongzhi-electron (ningbo city,zhejiang province) in the criminal China Unicom (中国联通) in one of the most famous lawless area oin the world (CN) (2010.6.23, mail error 2010.6.29) Malicious and huge ssh brute force attack (75 and more login attempts). The contact e-mail address tech-group@china-netcom.com does not work because of '<tech-group@china-netcom.com>: connect to china-netcom.com[210.53.66.251]: Connection timed out' (2010.6.29) Add 210.82.0.0/15 to the permanent block list. |
| 189.80.20.189/8+ |
189.80.20.189 in the criminals' heaven network Tele Norte Leste Participa??es S.A. (BR) (2010.6.23, mail error 2010.6.29) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. The contact e-mail address abuse@telemar.net.br does not work because of '<abuse@telemar.net.br>: lost connection with mail.telemar.net.br[200.222.0.38] while receiving the initial server greeting' (2010.6.29) Add 189.0.0.0/8 and 190.0.0.0/8 to the permanent block list. |
| 211.174.160.146/13+ |
211.174.160.146 in ELIMNET, INC. (엘림넷) (KR) (2010.6.29) Malicious and huge ssh brute force attack (716 login attempts) focusing on the root password. Add 211.168.0.0/13, 211.176.0.0/12 and 211.192.0.0/10 to the permanent block list. |
| 222.221.2.210/11+ |
The criminal 222.221.2.210 in the criminal CHINANET yunnan province network in the criminal CHINA TELECOM (中国电信集团公司) (CN) (2010.6.29) Malicious and huge ssh brute force attack (9 login attempts). This is the 7th attack by the criminal 222.221.2.210 since Feb 9 2010, Dec 16 2009, Jun 1 2009, Apr 30 2009, Feb 26 2009 and Nov 22 2008. Add 222.168.0.0/13, 222.176.0.0/12 and 222.192.0.0/11 to the permanent block list. |
| 61.151.246.140/10 |
The criminal 61.151.246.140 in the criminal Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.6.28) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password only. This is the 4th attack by the criminal 61.151.246.140 since Jun 2 2010, May 31 2010 and May 12-24 2010. Add 61.128.0.0/10 to the permanent block list. |
| 217.65.8.121/20 |
217.65.8.121 (avtobc.ru) in AvtoBC.ru in CityTelecom (RU) (2010.6.28) Malicious and huge ssh brute force attack (46 and more login attempts). |
| 190.26.212.20/8+ |
190.26.212.20 (corporat190-026128020.sta.etb.net.co) in ETB - Colombia (CO) (2010.6.28) Malicious and huge ssh brute force attack (168 login attempts). Add 189.0.0.0/8 and 190.0.0.0/8 to the permanent block list. |
| 195.34.119.207/19 |
195.34.119.207 in Spectrum NET (BG) (2010.6.28) Malicious and huge ssh brute force attack (219 login attempts) focusing on the root password only. |
| 210.47.0.155/12 |
210.47.0.155 (www.cust.edu.cn) in the criminals' heaven network Changchun University of Science and Technoogy (长春理工大学) (CN) (2010.6.28) Malicious and huge ssh brute force attack (363 login attempts) focusing on the root password. The contact e-mail address lqm@public.cc.jl.cn does not work because of '<lqm@public.cc.jl.cn>: host public.cc.jl.cn[218.27.126.111] said: 550 <lqm:cc>, No such user. (in reply to RCPT TO command)' (2010.6.28) Add 210.32.0.0/12 to the permanent block list. |
| 121.100.113.122/18 |
121.100.113.122 in Gyounggidongbu cable tv co., Ltd. (!!! CAUTION !!! MALWARE SITE ALERT POPUPS !!!) (KR) (2010.6.27-28) Malicious and huge ssh brute force attack (24 and more login attempts) focusing on the root password only. Add 121.100.64.0/18 to the permanent block list. |
| 201.92.151.234/7 |
201.92.151.234 in TELECOMUNICACOES DE SAO PAULO S.A. - TELESP (BR) (2010.6.27) Malicious and huge ssh brute force attack (19 and more login attempts) focusing on the root password only. Add 200.0.0.0/7 to the permanent block list. |
| 60.48.48.115/14+ |
60.48.48.115 (115.48.48.60.kmr03-home.tm.net.my) in Telekom Malaysia Berhad (MY) (2010.6.27) Malicious and huge ssh brute force attack (137 and more login attempts) focusing on the root password only. We received an automatic receipt from Telekom Malaysia Berhad. (2010.6.27). |
| 218.75.79.18/11+ |
The criminal 218.75.79.18 in the criminal Zhejiang Telecom Hulianxinkong in the crimianls' network CHINANET-ZJ Hangzhou (中国电信杭州分公司) in the crimianls' network CHINA TELECOM (中国电信集团公司) (CN) (2010.6.27) Malicious and huge ssh brute force attack (4 login attempts) focusing on the root password. This is the 4th attack by the criminal 218.75.79.18 since Jun 6 2010, Jun 5 2010, Apr 19 2010 and Feb 16 2010. Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 66.128.55.220/20 |
66.128.55.220 in Global IP Networks INC (US) (2010.6.27) Malicious and huge ssh brute force attack (109 and more login attempts). |
| 61.150.96.110/10 |
The criminals' host 61.150.96.110 in the criminals' network hanzhong teacher-training institute (kun wang, 1# qianjin road hanzhong shaanxi, CN, phone:+86916-221-2299, fax-no:+86916-225-0300) (CN) (2010.6.27) Malicious and huge ssh brute force attack (20 login attempts) focusing on the root password only. This is the 3nd attack by the criminals' host 61.150.96.110 since Jun 1 2010. The contact e-mail address wangku123@163.net does not work because of '<wangku123@163.net>: host 163mx.cdn.163.net[202.108.255.224] said: 550, <wangku123@163.net>: Invalid User (in reply to RCPT TO command)' (2010.6.27) Add 61.128.0.0/10 to the permanent block list. |
| 114.255.209.145/11+ |
114.255.209.145 in China Unicom Beijing province network (中国联合网络通信有限公司北京市分公司) in China Unicom (中国联通) (CN) (2010.6.26) Malicious and huge ssh brute force attack (439 login attempts) focusing on the root password. Add 114.208.0.0/12 and 114.224.0.0/11 to the permanent block list. |
| 24.114.227.114/17 |
24.114.227.114 (rogerscaps.com) in rogerscaps.com in Rogers Cable Communications Inc (CA) (2010.6.26) Malicious and huge ssh brute force attack (959 login attempts) focusing on the root password. No contact e-mail address. Add 24.114.128.0/17 to the permanent block list. |
| 211.154.142.153/12+ |
211.154.142.153 (mail.ehxprint.com) in Shenzhen Huaxin Printing Co., Ltd. (深圳市华信图文印务有限公司) in the criminal China Motion Network Communication (润迅集团有限公司) (Binghua Yang, idc-service@hotmail.com, 9F,Yu Hua Industrial & Trading Building,Bao Gang Rd.Luo, Hu District,Shenzhen, phone:+86-0755-82189782, fax-no:+86-755-82189789) (CN) (2010.6.25) Malicious and huge ssh brute force attack (191 and more login attempts). The contact e-mail address idc-service@hotmail.com does not work because of 'smtp;550 Requested action not taken: mailbox unavailable' (2010.6.25) And the contact e-mail address hxpr@ehxprint.com does not work because of '<hxpr@ehxprint.com>: host ehxprint.com[211.154.142.153] said: 550 5.1.1 <hxpr@ehxprint.com>: Recipient address rejected: User unknown in virtual mailbox table (in reply to RCPT TO command)' (2010.6.25) Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 122.155.1.176/20 |
The criminals' host 122.155.1.176 in the criminals' heaven network CAT Telecom (TH) (2010.6.25) Malicious and huge ssh brute force attack (109 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 122.155.1.176 since Jun 19 2010. We received an automatic receipt from CAT Telecom. (2010.6.19). Add 122.155.0.0/20 to the permanent block list. |
| 210.123.7.11/11+ |
210.123.7.11 (www.asaanm.co.kr) in asaanm.co.kr ((주)아산엠 그룹) in Korea Telecom (KR) (2010.6.24) Malicious and huge pop login attempts (53 login attempts). Add 210.90.0.0/15, 210.92.0.0/14 and 210.96.0.0/11 to the permanent block list. |
| 173.193.2.180/15 |
The crimianls' host 173.193.2.180 (173.193.2.180-static.reverse.softlayer.com) in the crimianls' heaven network SoftLayer Technologies Inc. (US) (2010.6.19) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. This is the 2nd attack by the crimianls' host 173.193.2.180 (173.193.2.180-static.reverse.softlayer.com) since Hyn 19 2010. Add 173.192.0.0/15 to the permanent block list. |
| 220.170.193.139/11+ |
220.170.193.139 in CHINANET-HN Shaoyang node network (中国电信湖南公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.22-24) Malicious and huge ssh brute force attack (25 login attempts) focusing on the root password only. Add 220.160.0.0/11 and 220.192.0.0/12 to the permanent block list. |
| 203.94.155.59/25 |
203.94.155.59 (bandroomrecords.com.au = vm-mn-02.mironet.com.au = mn17mel.mironet.com.au) in BANDROOM RECORDS in Uecomm (AU) (2010.6.24) Malicious and huge ssh brute force attack (23,606 and more login attempts). |
| 67.228.177.220/24(/16) |
The criminals' host 67.228.177.220 (mysql.imajhost.com) in Hosting Services Inc. in SoftLayer Technologies Inc. (US) (2010.6.23) Malicious and huge ssh brute force attack (21 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 67.228.177.220 (mysql.imajhost.com) since Jun 23 2010 (today). |
| 222.127.212.82/18 |
222.127.212.82 in GlobeNet (PH) (2010.6.23) Malicious and huge ssh brute force attack (439 login attempts) focusing on the root password. |
| 67.228.177.220/24(/16) |
67.228.177.220 (mysql.imajhost.com) in Hosting Services Inc. in SoftLayer Technologies Inc. (US) (2010.6.23) Malicious and huge ssh brute force attack (42 login attempts) focusing on the root password. |
| 112.187.20.17/11 |
112.187.20.17 in Korea Telecom (KR) (2010.6.22) Malicious and huge ssh brute force attack (90 login attempts). Add 112.160.0.0/11 to the permanent block list. |
| 211.141.240.66/13+ |
211.141.240.66 in China Mobile Communications Corporation - anhui company (中国移动通信集团安徽有限公司) in China Mobile Communications Corporation (中国移动通信) (CN) (2010.6.21) Malicious and huge ssh brute force attack (85 login attempts) focusing on the root password only. Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 140.115.52.4/16 |
140.115.52.4 in National Central University (國立中央大學) in Taiwan Academic Network (TW) (2010.6.21) Malicious and huge ssh brute force attack (144 login attempts). |
| 112.168.91.252/11+ |
The criminal 112.168.91.252 in the criminals' network Korea Telecom (KR) (2010.6.21) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 5th attack by the criminal 112.168.91.252 since Jun 8 2010, Jun 6 2010, May 28 2010 and May 27 2010. Add 112.144.0.0/12 and 112.160.0.0/11 to the permanent block list. |
| 119.146.188.86/14+ |
The criminals' host 119.146.188.86 in the criminals' network CHINANET Guangdong province network (中国电信股份有限公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.6.20) Malicious and huge ssh brute force attack (2 login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 119.146.188.86 since Jun 15-17 2010. Add 119.112.0.0/12, 119.128.0.0/12 and 119.144.0.0/14 to the permanent block list. |
| 119.40.100.114/21 |
119.40.100.114 in TOPNET (Топика) (MN) (2010.6.20) Malicious and huge pop login attempts (20 and more login attempts). |
| 193.0.70.155/18 |
193.0.70.155 (SzJO-193-0-70-155.noname.net.icm.edu.pl) in Interdisciplinary Centre for Mathematical and Computational Modelling in University of Warsaw (PL) (2010.6.20) Malicious and huge ssh brute force attack (169 login attempts) focusing on the root password. |
| 220.90.139.45/11 |
220.90.139.45 in Korea Telecom (KR) (2010.6.20) Malicious and huge ssh brute force attack (49 login attempts). Add 220.64.0.0/11 to the permanent block list. |
| 123.140.178.15/14 |
123.140.178.15 in BORANET : LG TELECOM (LG DACOM) Corporation (통합LG텔레콤) (KR) (2010.6.20) Malicious and huge ssh brute force attack (5,929 login attempts). Add 123.140.0.0/14 to the permanent block list. |
| 80.52.213.251/13 |
80.52.213.251 (gxh251.internetdsl.tpnet.pl) in TPNET (PL) (2010.6.20) Malicious and huge ssh brute force attack (1,776 login attempts). We received an automatic receipt from TPNET. (2010.6.20). |
| 61.168.227.12/10 |
The crimial 61.168.227.12 (pc12.zz.ha.cn) in the criminals' paradise China Unicom Henan province network (中国联通河南省分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.6.19) Malicious and huge ssh brute force attack (66 and more login attempts) focusing on the root password only. This is the 14th attack by the crimial 61.168.227.12 (pc12.zz.ha.cn) since Jun 17 2010, May 25 2010, May 19 2010, Apr 22 2010, Mar 26 2010, Feb 18 2010, Jan 26 2010, Jan 18 2010, Dec 24 2009, Dec 17 2009, Oct 2 2009, Sep 26 2009 and Sep 22 2009. Add 61.128.0.0/10 to the permanent block list. |
| 149.166.168.83/16 |
149.166.168.83 (drug-development.compbio.iupui.edu) in Indiana University-Purdue University at Indianapolis (US) (2010.6.19) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. We received an automatic receipt from Indiana University. (2010.6.20). We received a good report from Indiana University. (2010.6.21). |
| 173.193.2.180/15 |
173.193.2.180 (173.193.2.180-static.reverse.softlayer.com) in SoftLayer Technologies Inc. (US) (2010.6.19) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. |
| 122.155.1.176/20 |
122.155.1.176 in CAT Telecom (TH) (2010.6.19) Malicious and huge ssh brute force attack (142 login attempts) focusing on the root password. We received an automatic receipt from CAT Telecom. (2010.6.19). |
| 116.228.10.74/12 |
116.228.10.74 in BUS ONLINE MEDIA CO., LTD. (巴士在线) in CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.18) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. Add 116.224.0.0/12 to the permanent block list. |
| 119.146.188.86/14+ |
119.146.188.86 in the criminals' heaven network CHINANET Guangdong province network (中国电信股份有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.15-17) Malicious and huge ssh brute force attack (30 login attempts) focusing on the root password. Add 119.112.0.0/12, 119.128.0.0/12 and 119.144.0.0/14 to the permanent block list. |
| 61.168.227.12/10 |
The crimial 61.168.227.12 (pc12.zz.ha.cn) in the criminals' paradise China Unicom Henan province network (中国联通河南省分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.6.17) Malicious and huge ssh brute force attack (516 login attempts) focusing on the root password. This is the 13th attack by the crimial 61.168.227.12 (pc12.zz.ha.cn) since May 25 2010, May 19 2010, Apr 22 2010, Mar 26 2010, Feb 18 2010, Jan 26 2010, Jan 18 2010, Dec 24 2009, Dec 17 2009, Oct 2 2009, Sep 26 2009 and Sep 22 2009. Add 61.128.0.0/10 to the permanent block list. |
| 210.248.89.243/29(/16) |
210.248.89.243 (www.awards2010-alinamin.jp) in Kreis Corporation (JP) (2010.6.17) Malicious and huge ssh brute force attack (243 and more login attempts). |
| 218.249.47.96/16+ |
218.249.47.96 in Beijing Sun Rise Technology CO.LTD (北京日升天信科技有限公司) (CN) (2010.6.17) Malicious and huge ssh brute force attack (489 login attempts). Add 218.240.0.0/13 and 218.249.0.0/16 to the permanent block list. |
| 212.117.167.145/19 |
212.117.167.145 in root SA (LU) (2010.6.16) Malicious and huge ssh brute force attack (959 login attempts) focusing on the root password. |
| 121.10.121.21/13+ |
The criminals' host 121.10.121.21 in the criminals' heaven network maomingshichengtianwangluokejiy in the criminals' heaven network CHINANET Guangdong province network (中国电信股份有限公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.6.16) Malicious and huge ssh brute force attack (1,047 login attempts). This is the 2nd attack by the criminals' host 121.10.121.21 since May 25 2010. Add 121.8.0.0/13, 121.16.0.0/12, 121.32.0.0/13 and 121.40.0.0/14 to the permanent block list. |
| 211.232.117.240/10+ |
211.232.117.240 in VAAN in Korea Economic Justice Institute (경실련) in NexG (KR) (2010.6.16) Malicious and huge ssh brute force attack (847 login attempts) focusing on the root password. Add 211.168.0.0/13, 211.176.0.0/12 and 211.192.0.0/10 to the permanent block list. |
| 211.144.78.133/12+ |
211.144.78.133 (www.flaginfo.com.cn) in flaginfo.com.cn (上海帜讯信息技术有限公司) in Oriental Cable Network Co., Ltd. (东方有线网络有限公司) in CNC Group CHINA169 Hubei Province Network (中国联合网络通信有限公司湖北省分公司) in China Unicom (中国联通) (CN) (2010.6.15) Malicious and huge ssh brute force attack (162 login attempts) focusing on the root password only. Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 124.5.165.29/16 |
The criminals' host 124.5.165.29 in KuRO TV in the criminals' netowrk C&M Communication Co.,Ltd. (씨앤앰커뮤니케이션(주)) (KR) (2010.6.15) Malicious and huge ssh brute force attack (43 login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 124.5.165.29 since May 20 2010. Add 124.5.0.0/16 to the permanent block list. |
| 218.241.236.86/13+ |
The criminals' host 218.241.236.86 in the criminals' network Beijing Bitone United Networks (Jonson Li, bill.pang@bj.datadragon.net, 2nd Floor,BLDG HP No.112 Jian Guo Street,Chaoyang District,Beijing, phone:+86-010-65661862-232, fax-no:+86-010-65660882) (CN) (2010.6.15) Malicious and huge ssh brute force attack (727 login attempts). Beijing Bitone United Networks is also famous for spammers' paradise. This is the 2nd attack by the criminals' host 218.241.236.86 since May 19 2010. Add 218.240.0.0/13 and 218.249.0.0/16 to the permanent block list. |
| 221.131.43.198/15+ |
221.131.43.198 in China Mobile Communications Corporation (中国移动通信) (CN) (2010.6.15) Malicious and huge pop login attempts (797 and more login attempts). Add 221.129.0.0/16 and 221.130.0.0/15 to the permanent block list. |
| 216.59.17.220/25(/18) |
216.59.17.220 (infra220.ecompanyonline.net) in FiberMAX Networks in NETRIPLEX LLC (US) (2010.6.15) Malicious and huge ssh brute force attack (1,281 and more login attempts) focusing on the root passowrd. |
| 60.195.250.54/15 |
The criminal 60.195.250.54 in the criminal Beijing Teletron Telecom Engineering Co., Ltd. (Jian Guo Road, Chaoyang District, Beijing, PR.China) (Donghai Liu, liudonghai@btte.net, No. 20, Fuxing Road, Beijing, phone:+86-010-65661868-230, fax-no:+86-010-65660882) (北京电信通) in one of the most famous lawless area in the world (CN) (20010.6.15) Malicious and huge ssh brute force attack (12 login attempts). This is the 10th attack by the criminal 60.195.250.54 since Apr 20 2010, Mar 29 2010, Feb 18 2010, Jan 14 2010, Jan 10 2010, Jan 6 2010, Nov 25 2009, Nov 24-25 2009 and Jul 9 2009. Add 60.194.0.0/15 to the permanent block list. |
| 212.14.228.46/19 |
212.14.228.46 in Palestine Telecommunications Co. (PS) (2010.6.14) Malicious and huge ssh brute force attack (39 login attempts) focusing on the root passowrd only. |
| 202.159.215.204/18 |
202.159.215.204 in Mahanagar Telephone Nigam Limited. (IN) (2010.6.14) Malicious and huge ssh brute force attack (108 login attempts). |
| 148.244.158.80/13+ |
148.244.158.80 (static-148-244-158-80.alestra.net.mx) in Universidad Madero in AOL México (MX) (2010.6.14) Malicious and huge ssh brute force attack (73 login attempts). Add 148.201.0.0/16, 148.202.0.0/15, 148.204.0.0/14, 148.208.0.0/12, 148.224.0.0/12, 148.240.0.0/13, 148.248.0.0/15 and 148.250.0.0/16 to the permanent block list. |
| 112.133.193.189/18 |
112.133.193.189 in the criminals' heaven network RailTel Corporation (IN) (2010.6.13) Malicious and huge ssh brute force attack (41 login attempts) focusing on the root password. The contact e-mail address pradeep@railtelindia.com does not work because of '<pradeep@railtelindia.com>: host 203.153.43.75[203.153.43.75] said: 550 Requested action not taken: mailbox unavailable (in reply to RCPT TO command)' (2010.6.13) Add 112.133.192.0/18 to the permanent block list. |
| 149.166.168.36/16 |
149.166.168.36 (meroueh04.compbio.iupui.edu) in Indiana University-Purdue University at Indianapolis (US) (2010.6.13) Malicious and huge ssh brute force attack (83 login attempts). We received an automatic receipt from University Information Policy Office, Indiana University. (2010.6.13). |
| 114.255.100.163/11+ |
The criminal 114.255.100.163 in the criminal Qi zhengwei (wanshoulu, phone:+86-10 -15601325887, fax-no:+86-10 -66878019, CN, 123@263.com) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.6.7, mail error 2010.6.13) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. This is the 3rd attack by the criminal 114.255.100.163 since Jun 6 2010 and Apr 23 2010. The contact e-mail address 123@263.com does not work because of '<123@263.com>: connect to 263.com[211.100.66.69]: Connection timed out' (2010.6.13) Add 114.208.0.0/12 and 114.224.0.0/11 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing / Jiaqiang Li, ljq@263.net, ROOM 1904 No.1 Building Jia Caihuying Fengtai Dist.Beijing, phone:+86-010-63357053, fax-no:+86-010-63357053) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.6.13) Malicious and huge ssh brute force attack (17 and more login attempts) focusing on the root password only. This is the 11th attack by the criminal 122.102.64.54 since Jun 12 2010, Jun 11 2010, May 27 2010, May 26 2010, May 25 2010, May 8 2010, May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 202.105.49.16/12+ |
The criminal 202.105.49.16 in the criminals' heaven network CHINANET Guangdong province network (中国电信股份有限公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.6.13) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 202.105.49.16 since Jun 7 2010 and Jun 6-7 2010. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 67.101.115.108/14 |
67.101.115.108 (h-67-101-115-108.snfccasy.static.covad.net) in Covad Communications Co. (US) (2010.6.12) Malicious and huge ssh brute force attack (44 and more login attempts) focusing on the root password. |
| 200.124.240.104/7 |
200.124.240.104 (mail.nuquesyluque.com.ec) in nuquesyluque.com.ec (Nuques y Luque Ingenieros Consultores Cia. Ltda.) in Ecuador Telecom (EC) (2010.6.12) Malicious and huge ssh brute force attack (1,207 and more login attempts). Add 200.0.0.0/7 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing / Jiaqiang Li, ljq@263.net, ROOM 1904 No.1 Building Jia Caihuying Fengtai Dist.Beijing, phone:+86-010-63357053, fax-no:+86-010-63357053) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.6.12) Malicious and huge ssh brute force attack (17 login attempts) focusing on the root password only. This is the 10th attack by the criminal 122.102.64.54 since Jun 11 2010, May 27 2010, May 26 2010, May 25 2010, May 8 2010, May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 61.143.178.194/10 |
The criminal 61.143.178.194 in the criminals' network CHINANET Guangdong province network (中国电信股份有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.12) Malicious and huge ssh brute force attack (6 login attempts) . This is the 3rd attack by the criminal 61.143.178.194 since Apr 12 2010 and Feb 9 2010. Add 61.128.0.0/10 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing / Jiaqiang Li, ljq@263.net, ROOM 1904 No.1 Building Jia Caihuying Fengtai Dist.Beijing, phone:+86-010-63357053, fax-no:+86-010-63357053) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.6.11) Malicious and huge ssh brute force attack (17 login attempts) focusing on the root password only. This is the 9th attack by the criminal 122.102.64.54 since May 27 2010, May 26 2010, May 25 2010, May 8 2010, May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 114.255.100.163/11+ |
The criminals' host 114.255.100.163 in the criminals' network Qi zhengwei (wanshoulu, phone:+86-10 -15601325887, fax-no:+86-10 -66878019, CN, 123@263.com) in the criminals' heaven network China Unicom (中国联通) (CN) (2010.6.6, mail error 2010.6.11) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 114.255.100.163 since Apr 23 2010. The contact e-mail address 123@263.com does not work because of '<123@263.com>: connect to 263.com[211.100.66.69]: Connection timed out' (2010.6.11) Add 114.208.0.0/12 and 114.224.0.0/11 to the permanent block list. |
| 125.62.15.227/15+ |
125.62.15.227 in ChongQing Broadcast & TV Transfer Network Co. Ltd (ShiPingQiao,JiuLongPo district,ChongQing) (CN) (2010.6.9-11) Malicious and huge ssh brute force attack (47 login attempts). Add 125.61.128.0/17, 125.62.0.0/15, 125.64.0.0/11, 125.96.0.0/15 and 125.98.0.0/16 to the permanent block list. |
| 202.107.228.137/12+ |
202.107.228.137 in Jinhua Telecommunication Co.ltd in CHINANET-ZJ Jinhua (中国电信杭州分公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.10) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password only. This is the 2nd attack by 202.107.228.137 since Jan 18 2010,>br /> Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 202.51.228.193/20 |
202.51.228.193 (ip-228-193.jalawave.net.id) in Jalawave (ID) (2010.6.10) Malicious and huge ssh brute force attack (121 login attempts) focusing on the root password. |
| 69.28.51.209/20 |
69.28.51.209 in Shanghai Incesoft Inc (Los Angeles, CA) in ChinaCache North America, Inc (US) (2010.6.10) Malicious and huge ssh brute force attack (121 login attempts) focusing on the root password. |
| 203.98.166.147/18 |
203.98.166.147 (www.narrygsm.com) in Narry GSM Telecom in New World Telecom (HK) (2010.6.10) Malicious and huge ssh brute force attack (31 login attempts) focusing on the root password. |
| 79.164.40.81/15 |
79.164.40.81 (host-79-164-40-81.qwerty.ru) in qwerty in Central Telegraph (RU) (2010.6.10) Malicious and huge ssh brute force attack (221 login attempts) focusing on the root password only. |
| 87.110.41.86/16 |
87.110.41.86 in Lattelecom (LV) (2010.6.10) Malicious and huge ssh brute force attack (221 login attempts) focusing on the root password only. |
| 87.247.100.9/18 |
87.247.100.9 (client-87-247-100-9.inturbo.lt) in Mikrovisatos TV (LT) (2010.6.10) Malicious and huge ssh brute force attack (220 login attempts) focusing on the root password only. |
| 41.251.78.141/18 |
41.251.78.141 in PoP-fida-adsl (elasri merouane) in menara.ma in Maroc Telecom (MA) (2010.6.10) Malicious and huge ssh brute force attack (49 login attempts) focusing on the root password only. PoP-fida is also famous for spammers' paradise. |
| 93.48.97.72/11 |
93.48.97.72 in Fastweb Networks (IT) (2010.6.10) Malicious and huge ssh brute force attack (219 login attempts) focusing on the root password only. |
| 218.83.150.170/11+ |
218.83.150.170 in WLZX (YiFeng Zhu) in CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.9) Malicious and huge ssh brute force attack (893 login attempts). Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 112.168.91.252/11+ |
The criminal 112.168.91.252 in the criminals' network Korea Telecom (KR) (2010.6.8) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 4th attack by the criminal 112.168.91.252 since Jun 6 2010, May 28 2010 and May 27 2010. Add 112.144.0.0/12 and 112.160.0.0/11 to the permanent block list. |
| 150.185.75.26/15+ |
150.185.75.26 in Universidad Central de Venezuela (VE) (2010.6.8) Malicious and huge ssh brute force attack (1,770 and more login attempts). Add 150.185.0.0/16, 150.186.0.0/15 and 150.188.0.0/15 to the permanent block list. |
| 60.191.93.125/11 |
60.191.93.125 in Hangzhou Dongshuo Information Technology Ltd in CHINANET-ZJ Hangzhou (中国电信杭州分公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.7) Malicious and huge ssh brute force attack (20 and more login attempts). Add 60.160.0.0/11 to the permanent block list. |
| 202.105.49.16/12+ |
The criminals' host 202.105.49.16 in CHINANET Guangdong province network (中国电信股份有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.7) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 202.105.49.16 since Jun 6-7 2010. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 190.90.144.16/8+ |
190.90.144.16 in INTERNEXA S.A. E.S.P (C0) (2010.6.7) Malicious and huge ssh brute force attack (59 login attempts) focusing on the root password. Add 189.0.0.0/8 and 190.0.0.0/8 to the permanent block list. |
| 219.134.186.247/11 |
219.134.186.247 in CHINANET Guangdong province network (中国电信股份有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.7) Malicious and huge ssh brute force attack (248 login attempts). Add 219.128.0.0/11 to the permanent block list. |
| 202.105.49.16/12+ |
202.105.49.16 in CHINANET Guangdong province network (中国电信股份有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.6-7) Malicious and huge ssh brute force attack (30 and more login attempts) focusing on the root password. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 218.75.79.18/11+ |
The criminal 218.75.79.18 in the criminal Zhejiang Telecom Hulianxinkong in CHINANET-ZJ Hangzhou (中国电信杭州分公司) in the crimianls' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.6.6) Malicious and huge ssh brute force attack (3 login attempts). This is the 4th attack by the criminal 218.75.79.18 since Jun 5 2010, Apr 19 2010 and Feb 16 2010. Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 112.78.197.13/19 |
112.78.197.13 (mail.humanreg.co.jp) in HumanReg.Co.,Ltd. in SAKURA Internet Inc. (JP) (2010.6.6) Malicious and huge ssh brute force attack (127 and more login attempts). |
| 112.168.91.252/11+ |
The criminal 112.168.91.252 in the criminals' heaven network Korea Telecom (KR) (2010.6.6) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 3rd attack by the criminal 112.168.91.252 since May 28 2010 and May 27 2010. Add 112.144.0.0/12 and 112.160.0.0/11 to the permanent block list. |
| 58.217.255.103/11 |
58.215.65.2 in CHINANET jiangsu province network (江苏音符) in CHINA TELECOM (中国电信集团公司). (CN) (2010.6.6) Malicious and huge ssh brute force attack (76 login attempts) focusing on the root password Add 58.192.0.0/11 to the permanent block list. |
| 218.106.120.90/14+ |
The criminals' host 218.106.120.90 (mail.usisensor.com) in the criminals' heaven network sanxiang-mansion (jinhua city,zhejiang province) in the criminals' heaven network usisensor.com (湖北泓盈传感技术有限公司) in the criminals' heaven network CNC Group CHINA169 Hubei Province Network (中国联合网络通信有限公司湖北省分公司) in the criminals' heaven network China Unicom (中国联通) (CN) (2010.6.6) Malicious and huge ssh brute force attack (932 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 218.106.120.90 (mail.usisensor.com) since Jun 3 2010. Add 218.104.0.0/14 and 218.108.0.0/15 to the permanent block list. |
| 218.75.79.18/11+ |
The criminal 218.75.79.18 in the criminals' network Zhejiang Telecom Hulianxinkong in CHINANET-ZJ Hangzhou (中国电信杭州分公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.6.5) Malicious and huge ssh brute force attack (2 login attempts). This is the 3rd attack by the criminal 218.75.79.18 since Apr 19 2010 and Feb 16 2010. Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 114.200.199.26/13 |
114.200.199.26 (www.cwec.co.kr) in Chamwoo E&C ((주)참우엔씨) in SK Broadband Co Ltd (SK브로드밴드) (Hanaro Telecom Inc.) (KR) (2010.6.5) Malicious and huge ssh brute force attack (1,973 and more login attempts). Add 114.200.0.0/13 to the permanent block list. |
| 212.19.159.68/19 |
212.19.159.68 (di68.alma-di-2.online.kz) in JSC Kazakhtelecom, Kazakhstan Online (KZ) (2010.6.5) Malicious and huge ssh brute force attack (68 login attempts). |
| 74.53.136.82/14 |
74.53.136.82 (server5.wowservers.com) in ThePlanet.com Internet Services, Inc. (US) (2010.6.4) Malicious and huge ssh brute force attack (33 login attempts) focusing on the root password only. We received an automatic receipt from The Planet Abuse Team. (2010.6.4). We received a report from The Planet Abuse Team. (2010.6.4). |
| 218.106.120.90/14+ |
218.106.120.90 (mail.usisensor.com) in sanxiang-mansion (jinhua city,zhejiang province) in usisensor.com (湖北泓盈传感技术有限公司) in CNC Group CHINA169 Hubei Province Network (中国联合网络通信有限公司湖北省分公司) in China Unicom (中国联通) (CN) (2010.6.3) Malicious and huge ssh brute force attack (932 login attempts) focusing on the root password. Add 218.104.0.0/14 and 218.108.0.0/15 to the permanent block list. |
| 81.109.165.37/29(/12) |
81.109.165.37 (37-165-109-81.static.virginmedia.com) in George Spencer School in Advanced IT Services in Virgin Media (GB) (2010.6.3) Malicious and huge ssh brute force attack (68 login attempts). |
| 190.24.168.251/8+ |
190.24.168.251 (corporat190-024168251.sta.etb.net.co) in ETB - Colombia (CO) (2010.6.2) Malicious and huge ssh brute force attack (58 login attempts). Add 189.0.0.0/8 and 190.0.0.0/8 to the permanent block list. |
| 61.151.246.140/10 |
The criminal 61.151.246.140 in the criminals' network Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.6.2) Malicious and huge ssh brute force attack (12 login attempts) focusing on the root password only. This is the 3rd attack by the criminal 61.151.246.140 since May 31 2010 and May 12-24 2010. Add 61.128.0.0/10 to the permanent block list. |
| 61.19.127.44/18 |
61.19.127.44 in CAT Telecom (TH) (2010.6.2) Malicious and huge ssh brute force attack (168 login attempts). |
| 218.240.44.18/13 |
The criminal 218.240.44.18 in the crimianl Beijing Neteon Tech Co, Ltd. (网联光通) in one of the most famous lawless area in the world. (CN) (2010.6.2) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. This is the 5th attack by the criminal 218.240.44.18 since May 28 2010, May 27 2010, May 25 2010 and May 20 2010. Add 218.240.0.0/13 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in the criminals' heaven network JSC Rostelecom (Ростелеком) (RU) (2010.6.2) Malicious and huge ssh brute force attack (10 and more login attempts). This is the 27th attack by the criminal 109.207.1.132 since Jun 1 2010, May 16 2010 (thirteen times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in the criminals' heaven network JSC Rostelecom (Ростелеком) (RU) (2010.6.1) Malicious and huge ssh brute force attack (9 login attempts). This is the 26th attack by the criminal 109.207.1.132 since May 16 2010 (thirteen times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 87.57.94.34/12 |
87.57.94.34 in TDC Bredbaand (DK) (2010.6.1) Malicious and huge pop login attempts (43 and more pop login attempts). We received an automatic receipt from TDC Computer Security Incident Response Team. (2010.6.1). |
| 61.150.96.110/10 |
61.150.96.110 in the criminals' heaven network hanzhong teacher-training institute (kun wang, 1# qianjin road hanzhong shaanxi, CN, phone:+86916-221-2299, fax-no:+86916-225-0300) (CN) (2010.6.1) Malicious and huge ssh brute force attack (188 login attempts) focusing on the root password. The contact e-mail address wangku123@163.net does not work because of '<wangku123@163.net>: host 163mx.cdn.163.net[202.108.255.224] said: 550, <wangku123@163.net>: Invalid User (in reply to RCPT TO command)' (2010.6.1) Add 61.128.0.0/10 to the permanent block list. |
| 61.151.246.140/10 |
The criminals' host 61.151.246.140 in the criminals' heaven network Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.5.31) Malicious and huge ssh brute force attack (9 login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 61.151.246.140 since May 12-24 2010. Add 61.128.0.0/10 to the permanent block list. |
| 210.193.16.75/18 |
210.193.16.75 (75.210-193-16.static.qala.com.sg) in qala.com.sg in M1 (SG) (2010.5.31) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password We received an automatic receipt from qala.com.sg. (2010.5.31). |
| 123.232.43.68/14 |
The criminal 123.232.43.68 in the criminal JiNan-jinanshilixiaqushequfuwuzhongxin in the criminal CNC Group CHINA169 Shandong Province Network (中国联合网络通信有限公司山东省分公司) in China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.29) Malicious and huge ssh brute force attack (14 login attempts) focusing on the root password only. This is the 5th attack by the criminal 123.232.43.68 since May 3 2010, Mar 10 2010 (twice) and Mar 4-5 2010. Add 123.232.0.0/14 to the permanent block list. |
| 203.86.41.46/18+ |
203.86.41.46 in Beijing CBD TELECOM Co.,Ltd (B312 HanweiPlaza ?No.7G uanghualu,Chaoyang District,Beijing) (北京商务中心区通信科技有限公司) (CN) (2010.5.29) Malicious and huge ssh brute force attack (58 login attempts) focusing on the root password only. Add 203.86.0.0/18 and 203.86.64.0/19 to the permanent block list. |
| 218.16.129.140/11 |
The criminals' host 218.16.129.140 in the criminal CHINANET Guangdong province network (中国电信股份有限公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.5.29) Malicious and huge ssh brute force attack (109 and more login attempts). This is the 2nd attack by the criminals' host 218.16.129.140 since Apr 27 2010. Add 218.0.0.0/11 to the permanent block list. |
| 112.168.91.252/11+ |
The criminals' host 112.168.91.252 in Korea Telecom (KR) (2010.5.28) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 112.168.91.252 since May 27 2010. Add 112.144.0.0/12 and 112.160.0.0/11 to the permanent block list. |
| 211.154.215.174/12+ |
The criminals' host 211.154.215.174 in the criminals' heaven network China Netcom(GROUP) Company Limited, Beijing Branch (中国联通北京市分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.28) Malicious and huge ssh brute force attack (112 login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 211.154.215.174 since May 7 2010. Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 81.7.185.77/18 |
81.7.185.77 (www1.ajourdot.com) in Ajour Data & Musik in jay.net a/s (DK) (2010.5.28) Malicious and huge ssh brute force attack (237 login attempts) focusing on the root password only. |
| 218.240.44.18/13 |
The criminal 218.240.44.18 in the crimianls' heaven network Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.28) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. This is the 4th attack by the criminal 218.240.44.18 since May 27 2010, May 25 2010 and May 20 2010. Add 218.240.0.0/13 to the permanent block list. |
| 119.167.247.40/14+ |
119.167.247.40 in China Unicom Shandong province network (中国联合网络通信有限公司山东省分公司) in CHINA UNICOM (中国联通) (CN) (2010.5.28) Malicious and huge ssh brute force attack (59 login attempts) focusing on the root password. Add 119.161.128.0/17, 119.162.0.0/15 and 119.164.0.0/14 to the permanent block list. |
| 211.138.112.32/13+ |
211.138.112.32 (kuters.com) in kuters.com (访问酷透社) in China Mobile Communications Corporation - zhejiang (浙江移动_中国移动通信) in China Mobile Communications Corporation (中国移动通信) (CN) (2010.5.27) Malicious and huge ssh brute force attack (44 and more login attempts) focusing on the root password. Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 189.61.206.30/8 |
189.61.206.30 in Grupo de Seguran?a V?rtua (BR) (2010.5.22, mail error 2010.5.27) Malicious and huge ssh brute force attack (147 login attempts) focusing on the root password only. The contact e-mail address virtua@virtua.com.br does not work because of '<virtua@virtua.com.br>: delivery temporarily suspended: connect to smtp.virtua.com.br[201.6.0.214]: Connection timed out' (2010.5.27) Add 189.0.0.0/8 to the permanent block list. |
| 112.168.91.252/11+ |
112.168.91.252 in Korea Telecom (KR) (2010.5.25-27) Malicious and huge ssh brute force attack (30 login attempts) focusing on the root password. Add 112.144.0.0/12 and 112.160.0.0/11 to the permanent block list. |
| 221.120.239.213/18 |
221.120.239.213 in in Pakistan Telecommunication Company Limited (PK) (2010.5.27) Malicious and huge ssh brute force attack (523 login attempts) focusing on the root password only. The contact e-mail address imtiaz@ptcl.net does not work because of 'Remote MTA cpms03.ptcl.net: SMTP diagnostic: 552 RCPT TO:<imtiaz@ptcl.net> Mailbox disk quota exceeded' (2010.5.27) Add 221.120.192.0/18 to the permanent block list. |
| 218.240.44.18/13 |
The criminal 218.240.44.18 in the crimianls' heaven network Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.27) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. This is the 3rd attack by the criminal 218.240.44.18 since May 25 2010 and May 20 2010. Add 218.240.0.0/13 to the permanent block list. |
| 60.173.240.5/11 |
60.173.240.5 in CHINANET Anhui province network in CHINA TELECOM (中国电信集团公司) (2010.5.27) Malicious and huge ssh brute force attack (35 login attempts) focusing on the root password. Add 60.160.0.0/11 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing / Jiaqiang Li, ljq@263.net, ROOM 1904 No.1 Building Jia Caihuying Fengtai Dist.Beijing, phone:+86-010-63357053, fax-no:+86-010-63357053) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.27) Malicious and huge ssh brute force attack (17 login attempts) focusing on the root password only. This is the 8th attack by the criminal 122.102.64.54 since May 26 2010, May 25 2010, May 8 2010, May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 89.106.25.98/19 |
89.106.25.98 (mail.sugraphic.com) in sugraphic.com in the criminals' heaven network Grid Telekom (TR) (2010.5.27) Malicious and huge ssh brute force attack (333 and more login attempts) focusing on the root password. The contact e-mail address ripe-adm@grid.com.tr does not work because of '<ripe-adm@grid.com.tr> (5.7.1 Message rejected as spam by Content Filtering.)' (2010.5.27) Add 89.106.0.0/19 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing / Jiaqiang Li, ljq@263.net) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.26) Malicious and huge ssh brute force attack (17 login attempts) focusing on the root password only. This is the 7th attack by the criminal 122.102.64.54 since May 25 2010, May 8 2010, May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 220.231.128.151/16 |
The criminals' host 220.231.128.151 in the criminals' network China Motion Network Communication (润迅集团有限公司) (CN) (2010.5.26) Malicious and huge ssh brute force attack (29 and more login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 220.231.128.151 since May 26 2010 (today). The contact e-mail address idc-service@hotmail.com does not work because of 'smtp;550 Requested action not taken: mailbox unavailable' (2010.5.26) Add 220.231.0.0/16 to the permanent block list. |
| 220.231.128.151/16 |
220.231.128.151 in the criminals' heaven network China Motion Network Communication (润迅集团有限公司) (CN) (2010.5.26) Malicious and huge ssh brute force attack (29 login attempts) focusing on the root password only. The contact e-mail address idc-service@hotmail.com does not work because of 'smtp;550 Requested action not taken: mailbox unavailable' (2010.5.26) Add 220.231.0.0/16 to the permanent block list. |
| 210.51.180.212/16+ |
The criminal 210.51.180.212 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) (CN) (2010.5.26) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password. This is the 5th attack by the criminal 210.51.180.212 since May 15 2010, Mar 14 2010, Jan 12 2010 and Jan 5 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 202.106.62.193/12+ |
202.106.62.193 in the criminals' heaven network China Unicom Beijing province network (中国联合网络通信有限公司北京市分公司) in China Unicom (中国联通) (CN) (2010.5.26) Malicious and huge ssh brute force attack (523 login attempts) focusing on the root password only. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 202.108.212.36/12+ |
202.108.212.36 in China Unicom Beijing province network (中国联合网络通信有限公司北京市分公司) in China Unicom (中国联通) (CN) (2010.5.26) Malicious and huge ssh brute force attack (445 login attempts) focusing on the root password only. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 218.240.44.18/13 |
The criminals' host 218.240.44.18 in Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.25) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. This is the 2nd attack by the criminals' host 218.240.44.18 since May 20 2010. Add 218.240.0.0/13 to the permanent block list. |
| 202.106.15.210/12+ |
202.106.15.210 in China Unicom Beijing province network (中国联合网络通信有限公司北京市分公司) in China Unicom (中国联通) (CN) (2010.5.25) Malicious and huge ssh brute force attack (57 and more login attempts) focusing on the root password only. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 212.156.65.78/16 |
The criminals' host 212.156.65.78 (static.turktelekom.com.tr) in the criminals' heaven network Turk Telekom (TR) (2010.1.29) Malicious and huge ssh brute force attack (31 login attempts). This is the 2nd attack by the criminals' host 212.156.65.78 (static.turktelekom.com.tr) since Jan 20 2010. Add 212.156.0.0/16 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.25) Malicious and huge ssh brute force attack (17 login attempts) focusing on the root password only. This is the 6th attack by the criminal 122.102.64.54 since May 8 2010, May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 61.168.227.12/10 |
The crimial 61.168.227.12 (pc12.zz.ha.cn) in the criminal China Unicom Henan province network (中国联通河南省分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.25) Malicious and huge ssh brute force attack (214 login attempts) focusing on the root password. This is the 12th attack by the crimial 61.168.227.12 (pc12.zz.ha.cn) since May 19 2010, Apr 22 2010, Mar 26 2010, Feb 18 2010, Jan 26 2010, Jan 18 2010, Dec 24 2009, Dec 17 2009, Oct 2 2009, Sep 26 2009 and Sep 22 2009. Add 61.128.0.0/10 to the permanent block list. |
| 218.240.44.19/13 |
The criminals' host 218.240.44.19 in the crimials' paradise Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.25) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. This is the 2nd attack by the criminals' host 218.240.44.19 since May 20 2010. Add 218.240.0.0/13 to the permanent block list. |
| 81.66.146.51/14 |
81.66.146.51 (81-66-146-51.rev.numericable.fr) in NC Numericable S.A. (FR) (2010.5.25) Malicious and huge ssh brute force attack (1,007 and more login attempts). |
| 121.10.121.21/13+ |
121.10.121.21 in maomingshichengtianwangluokejiy in CHINANET Guangdong province network (中国电信股份有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.5.25) Malicious and huge ssh brute force attack (1,206 login attempts). Add 121.8.0.0/13, 121.16.0.0/12, 121.32.0.0/13 and 121.40.0.0/14 to the permanent block list. |
| 60.173.12.10/11 |
60.173.12.10 in CHINANET Anhui province network in CHINA TELECOM (中国电信集团公司) (2010.5.25) Malicious and huge ssh brute force attack (1,138 and more login attempts). Add 60.160.0.0/11 to the permanent block list. |
| 83.246.118.3/20(/18) |
83.246.118.3 (server832461183.serverpool.info) in SERVERPOOL (Am Mittelfelde 25, 30519 Hannover) in FirstDedicated Data Communications AG (DE) (2010.5.19, mail error 2010.5.24) Malicious and huge ssh brute force attack (2,226 and more login attempts). The contact e-mail address abuse@serverpool.info does not work because of '<abuse@serverpool.info>: connect to serverpool.info[83.246.94.254]: Connection refused' (2010.5.24) Add 83.246.112.0/20 to the permanent block list. |
| 61.151.246.140/10 |
61.151.246.140 in Stateline Network Co., Ltd. Shanghai (国通网络) (CN) (2010.5.24) Malicious and huge ssh brute force attack (49 login attempts) focusing on the root password. Add 61.128.0.0/10 to the permanent block list. |
| 95.104.44.153/17 |
95.104.44.153 (ip-95-104-44-153.caucasus.net) in Caucasus Online Broadband network (GE) (2010.5.24) Malicious and huge ssh brute force attack (232 login attempts) focusing on the root password only. |
| 122.146.174.3/15 |
122.146.174.3 (122-146-174-3.static.sparqnet.net) in New Century InfoComm Tech. Co., Ltd. (新世紀資通股份有限公司) (TW) (2010.5.11-24) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. Add 122.146.0.0/15 to the permanent block list. |
| 222.73.230.172/11+ |
222.73.230.172 in CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.5.24) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password only. Add 222.16.0.0/12, 222.32.0.0/11 and 222.64.0.0/11 to the permanent block list. |
| 124.124.204.94/15 |
124.124.204.94 in Reliance Communications Ltd (IN) (2010.5.23) Malicious and huge ssh brute force attack (73 login attempts). |
| 195.134.90.93/18 |
195.134.90.93 in University of Athens (GR) (2010.5.23) Malicious and huge ssh brute force attack (232 login attempts) focusing on the root password only. We received a good report from University of Athens. (2010.5.26). |
| 218.108.85.244/15+ |
218.108.85.244 in WASU TV & Communication Holding Co.,Ltd. (CN) (2010.5.23) Malicious and huge ssh brute force attack (418 login attempts) focusing on the root password. Add 218.104.0.0/14 and 218.108.0.0/15 to the permanent block list. |
| 66.103.118.152/20 |
66.103.118.152 in Chickasaw Telecommunications Services, Inc. (US) (2010.5.22) Malicious and huge ssh brute force attack (219 login attempts) focusing on the root password only. |
| 202.70.54.5/24 |
202.70.54.5 in Smart Telecom (ID) (2010.5.22) Malicious and huge ssh brute force attack (60 login attempts) focusing on the root password only. |
| 210.51.171.93/16+ |
The criminals' host 210.51.171.93 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) (CN) (2010.5.16, mail error 201-.5.21) Malicious and huge ssh brute force attack (136 login attempts). This is the 2nd attack by the criminals' host 210.51.171.93 since May 16 2010 (today). The contact e-mail address tech-group@china-netcom.com does not work because of '<tech-group@china-netcom.com>: connect to china-netcom.com[210.53.66.251]: Connection timed out' (2010.5.21) Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 210.51.171.93/16+ |
210.51.171.93 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) (CN) (2010.5.16, mail error 2010.5.21) Malicious and huge ssh brute force attack (136 login attempts). The contact e-mail address tech-group@china-netcom.com does not work because of '<tech-group@china-netcom.com>: connect to china-netcom.com[210.53.66.251]: Connection timed out' (2010.5.21) Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 80.191.177.8/26(/16) |
80.191.177.8 in the criminals' heaven network NasleNo-Qeshm (EBRAHIM POURDAVAR, P.O.BOX: 79515-1341 QESHM FREE ZONE AREA) in Data Communications of Iran (IR) (2010.5.21) Malicious and huge ssh brute force attack (120 login attempts). The contact e-mail address a_pourdavar@yahoo.com does not work because of '<a_pourdavar@yahoo.com>: host g.mx.mail.yahoo.com[98.137.54.238] said: 554 delivery error: dd This user doesn't have a yahoo.com account' (2010.5.21) Add 80.191.0.0/16 to the permanent block list. |
| 217.72.168.229/19 |
217.72.168.229 (217-72-168-229.no-dns-yet.hotchilli.net) in Hotchilli Internet Solutions Network (GB) (2010.5.21) Malicious and huge ssh brute force attack (3,395 login attempts) focusing on the root password. We received an automatic receipt from Hotchilli. (2010.5.21). |
| 119.225.16.98/16 |
119.225.16.98 (mail.graphos.com.au) in GRAPHOS (AUST) PTY LTD in Optus Telecommunications (AU) (2010.5.21) Malicious and huge ssh brute force attack (39 login attempts) focusing on the root password only. |
| 218.27.198.221/11 |
The criminal 218.27.198.221 in the criminal China Unicom Jilin province network (中国联合通信有限公司吉林分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.21) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. This is the 3rd attack by the criminal 218.27.198.221 since Apr 24 2010 and Apr 18 2010. Add 218.0.0.0/11 to the permanent block list. |
| 218.27.198.224/11 |
The criminal 218.27.198.224 in the criminal China Unicom Jilin province network (中国联合通信有限公司吉林分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.21) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. This is the 3rd attack by the criminal 218.27.198.224 since Apr 25 2010 and Apr 18 2010. Add 218.0.0.0/11 to the permanent block list. |
| 211.232.94.20/10+ |
211.232.94.20 (static.211-232-94-20.nexg.net) in VAAN in Edam Information Communication Corporation (이담정보통신) in NexG (KR) (2010.5.20) Malicious and huge ssh brute force attack (52 and more login attempts). Add 211.168.0.0/13, 211.176.0.0/12 and 211.192.0.0/10 to the permanent block list. |
| 218.28.46.139/11 |
218.28.46.139 (pc0.zz.ha.cn) in Henan Information Engineering Educational Institute (No 10 Xinyuan Road,, Zhengzhou City,, Henan Province) in CNC Group CHINA169 Henan Province Network (中国联通河南省分公司) in China Unicom (中国联通) (CN) (2010.5.20) Malicious and huge ssh brute force attack (41 and more login attempts) focusing on the root password only. Add 218.0.0.0/11 to the permanent block list. |
| 212.74.97.135/19 |
The criminal 212.74.97.135 in the criminals' network Tiscali UK Limited (GB) (2010.5.20) Malicious and huge ssh brute force attack (68 login attempts). This is the 3rd attack by the criminal 212.74.97.135 since May 14 2010 and May 8 2010. Add 212.74.96.0/19 to the permanent block list. |
| 141.213.15.174/16 |
141.213.15.174 (positano.eecs.umich.edu) in University of Michigan College of Engineering in University of Michigan (US) (2010.5.20) Malicious and huge ssh brute force attack (216 login attempts). |
| 112.78.204.160/20 |
112.78.204.160 (lesson-pc.com) in Kohichi Matsuno in SAKURA Internet Inc. (JP) (2010.5.20) Malicious and huge ssh brute force attack (13,877 and more login attempts). |
| 218.240.44.18/13 |
218.240.44.18 in Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.20) Malicious and huge ssh brute force attack (3 login attempts) focusing on the root password only. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. Add 218.240.0.0/13 to the permanent block list. |
| 218.240.44.19/13 |
218.240.44.19 in Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.20) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. Add 218.240.0.0/13 to the permanent block list. |
| 218.240.44.20/13 |
218.240.44.20 in Beijing Neteon Tech Co, Ltd. (网联光通) (CN) (2010.5.20) Malicious and huge ssh brute force attack (1 login attempts) focusing on the root password. Beijing Neteon Tech Co, Ltd. is also famous for spammers' paradise. Add 218.240.0.0/13 to the permanent block list. |
| 188.132.193.134/17 |
The crimianls' host 188.132.193.134 (134-193-132-188.sadecehosting.net = lnx1.istanbultescil.org) in ISTANBULTESCIL.NET in Mars Telekominikasyon ve Iletisim Hizm Ltd Sti in SadeceHosting (TR) (2010.5.20) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. This is the 2nd attack by the crimianls' host 188.132.193.134 (134-193-132-188.sadecehosting.net = lnx1.istanbultescil.org) since May 15 2010. Add 188.132.128.0/17 to the permanent block list. |
| 218.76.194.138/11+ |
The criminals' host 218.76.194.138 in CHINANET HuNan Shaoyang in CHINANET Hunan province network (中国电信股份有限公司湖南分公司) in the criminal CHINA TELECOM HUNAN BRANCH (中国电信湖南公司) in the criminal CHINA TELECOM (中国电信集团公司) (CN) (2010.5.20) Malicious and huge ssh brute force attack (30 login attempts) focusing on the root password. This is the 2nd attack by the criminals' host 218.76.194.138 since Apr 22 2010. Add 218.56.0.0/13, 218.64.0.0/11 and 218.96.0.0/14 to the permanent block list. |
| 124.5.165.29/16 |
124.5.165.29 in KuRO TV in the criminals' heaven netowrk C&M Communication Co.,Ltd. (씨앤앰커뮤니케이션(주)) (KR) (2010.5.20) Malicious and huge ssh brute force attack (30 login attempts). The contact e-mail address noc@cnm.co.kr does not work because of 'noc@cnm.co.kr 보안 정책 때문에 메시지가 배달되지 않았습니다. Microsoft Exchange는 사용자를 위해 이 메시지를 다시 배달하지 않습니다. 시스템 관리자에게 다음 진단 텍스트를 제공하십시오.' (2010.5.20) Add 124.5.0.0/16 to the permanent block list. |
| 211.140.122.227/13+ |
211.140.122.227 in China Mobile Communications Corporation - zhejiang (浙江移动_中国移动通信) in China Mobile Communications Corporation (中国移动通信) (CN) (2010.5.20) Malicious and huge ssh brute force attack (357 login attempts). Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 61.168.227.12/10 |
The crimial 61.168.227.12 (pc12.zz.ha.cn) in the criminal China Unicom Henan province network (中国联通河南省分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.19) Malicious and huge ssh brute force attack (214 login attempts) focusing on the root password. This is the 11th attack by the crimial 61.168.227.12 (pc12.zz.ha.cn) since Apr 22 2010, Mar 26 2010, Feb 18 2010, Jan 26 2010, Jan 18 2010, Dec 24 2009, Dec 17 2009, Oct 2 2009, Sep 26 2009 and Sep 22 2009. Add 61.128.0.0/10 to the permanent block list. |
| 80.65.231.58/20 |
The criminals' host 80.65.231.58 (pfkey-231-58.pck.nerim.net) in The Disney Store Limited in Nerim (FR) (2010.5.19) Malicious and huge ssh brute force attack (233 and more login attempts). This is the 2nd attack by the criminals' host 80.65.231.58 (pfkey-231-58.pck.nerim.net) since May 19 2010 (today). |
| 80.65.231.58/20 |
80.65.231.58 (pfkey-231-58.pck.nerim.net) in The Disney Store Limited in Nerim (FR) (2010.5.19) Malicious and huge ssh brute force attack (98 login attempts). |
| 211.101.137.58/13+ |
211.101.137.58 in Beijing Netbro Technology Co., ltd. (北京网宽天地科技有限公司) (Dongcheng, Beijing) (CN) (2010.5.19) Malicious and huge ssh brute force attack (26 login attempts) focusing on the root password only. We received a report from Beijing Netbro Technology Co., ltd. (2010.5.20) Add 211.80.0.0/12 and 211.96.0.0/13 to the permanent block list. |
| 60.210.8.234/12+ |
60.210.8.234 in China Unicom Shandong province network (中国联合网络通信有限公司山东省分公司) in CHINA UNICOM (中国联通) (CN) (2010.5.19) Malicious and huge ssh brute force attack (68 login attempts) focusing on the root password. Add 60.200.0.0/13 and 60.208.0.0/12 to the permanent block list. |
| 218.241.236.86/13+ |
218.241.236.86 in Beijing Bitone United Networks (Jonson Li, bill.pang@bj.datadragon.net, 2nd Floor,BLDG HP No.112 Jian Guo Street,Chaoyang District,Beijing, phone:+86-010-65661862-232, fax-no:+86-010-65660882) (CN) (2010.5.19) Malicious and huge ssh brute force attack (727 login attempts). Beijing Bitone United Networks is also famous for spammers' paradise. Add 218.240.0.0/13 and 218.249.0.0/16 to the permanent block list. |
| 116.125.126.40/13 |
116.125.126.40 in SK Broadband Co Ltd (SK브로드밴드) (Hanaro Telecom Inc.) (KR) (2010.5.19) Malicious and huge ssh brute force attack (107 login attempts). Add 116.120.0.0/13 to the permanent block list. |
| 140.128.102.150/13 |
140.128.102.150 (space150.csie.thu.edu.tw) in Tunghai University (東海大學) in Taiwan Academic Network (TANet) (TW) (2010.5.18) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password only. |
| 211.44.183.77/11 |
211.44.183.77 (lecture.study25.com) in Study25 in SK Broadband Co Ltd (SK브로드밴드) (Hanaro Telecom Inc.) (KR) (2010.5.17) Malicious and huge ssh brute force attack (1,042 login attempts). Add 211.32.0.0/11 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 and more login attempts) focusing on the root password only. This is the 25th attack by the criminal 109.207.1.132 since May 16 2010 (twelve times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 222.240.223.88/13+ |
The criminal 222.240.223.88 in the criminal CHINANET HuNan Changsha in the criminal CHINANET Hunan province network (中国电信股份有限公司湖南分公司) in the criminal CHINA TELECOM HUNAN BRANCH (中国电信湖南公司) in the criminal CHINA TELECOM (中国电信集团公司) in one of the most famous lawless area in the world. (CN) (2010.5.16) Malicious and huge ssh brute force attack (2 login attempts) focusing on the root password only. This is the 7th attack by the criminal 222.240.223.88 since Apr 27 2010, Apr 19 2010, Apr 17 2010, Mar 8 2010, Jan 19 2010 and Jan 14 2010. Add 222.240.0.0/13 and 222.248.0.0/15 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 24th attack by the criminal 109.207.1.132 since May 16 2010 (eleven times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 220.225.86.118/14 |
220.225.86.118 in Reliance Communications Ltd (IN) (2010.5.16) Malicious and huge ssh brute force attack (36 login attempts) focusing on the root password. We received a good report from Reliance Communications Ltd. (2010.5.29). |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 23th attack by the criminal 109.207.1.132 since May 16 2010 (ten times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 22th attack by the criminal 109.207.1.132 since May 16 2010 (nine times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 21th attack by the criminal 109.207.1.132 since May 16 2010 (eight times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 20th attack by the criminal 109.207.1.132 since May 16 2010 (seven times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 19th attack by the criminal 109.207.1.132 since May 16 2010 (six times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 18th attack by the criminal 109.207.1.132 since May 16 2010 (five times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 17th attack by the criminal 109.207.1.132 since May 16 2010 (four times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 59.39.66.30/11 |
The criminal 59.39.66.30 in shanghaidilianxinxikejifazhanyo in the criminal CHINANET Guangdong province network (中国电信股份有限公司) in the criminals' network CHINA TELECOM (中国电信集团公司) (CN) (2010.5.16) Malicious and huge ssh brute force attack (21 login attempts) focusing on the root password only. This is the 3rd attack by the criminal 59.39.66.30 since May 10 2010 and Apr 28 2010. Add 59.32.0.0/11, 59.64.0.0/12 and 59.80.0.0/14 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 16th attack by the criminal 109.207.1.132 since May 16 2010 (three times) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 15th attack by the criminal 109.207.1.132 since May 16 2010 (twice) and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 14th attack by the criminal 109.207.1.132 since May 16 2010 and May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 217.168.44.130/19 |
217.168.44.130 in cablecom GmbH (CH) (2010.5.16) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. We received an automatic receipt from cablecom GmbH. (2010.5.16). |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.16) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 13th attack by the criminal 109.207.1.132 since May 15 2010 (twelve times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 12th attack by the criminal 109.207.1.132 since May 15 2010 (eleven times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 11th attack by the criminal 109.207.1.132 since May 15 2010 (ten times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 9th attack by the criminal 109.207.1.132 since May 15 2010 (eight times). Add 109.207.0.0/20 to the permanent block list. |
| 188.132.193.134/17 |
188.132.193.134 (134-193-132-188.sadecehosting.net = lnx1.istanbultescil.org) in ISTANBULTESCIL.NET in Mars Telekominikasyon ve Iletisim Hizm Ltd Sti in SadeceHosting (TR) (2010.5.15) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. No contact e-mail address. Add 188.132.128.0/17 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 8th attack by the criminal 109.207.1.132 since May 15 2010 (seven times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 7th attack by the criminal 109.207.1.132 since May 15 2010 (six times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 6th attack by the criminal 109.207.1.132 since May 15 2010 (five times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 5th attack by the criminal 109.207.1.132 since May 15 2010 (four times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 4th attack by the criminal 109.207.1.132 since May 15 2010 (three times). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminal 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 3rd attack by the criminal 109.207.1.132 since May 15 2010 (twice). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
The criminals' host 109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (15 login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 109.207.1.132 since May 15 2010 (today). Add 109.207.0.0/20 to the permanent block list. |
| 109.207.1.132/20 |
109.207.1.132 in JSC Rostelecom (Ростелеком) (RU) (2010.5.15) Malicious and huge ssh brute force attack (16 login attempts) focusing on the root password only. |
| 210.51.180.212/16+ |
The criminal 210.51.180.212 in the criminal Beijing YiZhuang IDC of China Netcom in the criminal China Unicom (中国联通) (CN) (2010.5.15) Malicious and huge ssh brute force attack (6 login attempts) focusing on the root password only. This is the 4th attack by the criminal 210.51.180.212 since Mar 14 2010, Jan 12 2010 and Jan 5 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 211.192.213.10/10+ |
211.192.213.10 in Korea Telecom (KR) (2010.5.15) Malicious and huge ssh brute force attack (3,487 login attempts) focusing on the root password. Add 211.168.0.0/13, 211.176.0.0/12 and 211.192.0.0/10 to the permanent block list. |
| 124.7.152.4/16 |
124.7.152.4 (segment-124-7.sify.net) in the criminals' heaven network Sify Limited (IN) (2010.5.14) Malicious and huge ssh brute force attack (293 login attempts). The contact e-mail address ipadmin@sifycorp.com does not work because of '<ipadmin@sifycorp.com>: Account ipadmin@sifycorp.com locked/overquota 219663760/209715200. sifymail (#5.1.1)' (2010.5.14) Add 124.7.0.0/16 to the permanent block list. |
| 212.74.97.135/19 |
The criminals' host 212.74.97.135 in the criminals' heaven network Tiscali UK Limited (GB) (2010.5.14) Malicious and huge ssh brute force attack (68 login attempts). This is the 2nd attack by the criminals' host 212.74.97.135 since May 8 2010. Add 212.74.96.0/19 to the permanent block list. |
| 210.75.24.200/14+ |
210.75.24.200 in NovaNetwork (南凌科技) (CN) (2010.5.14) Malicious and huge ssh brute force attack (32 login attempts) focusing on the root password only. Add 210.72.0.0/14, 210.76.0.0/15 and 210.78.0.0/16 to the permanent block list. |
| 202.96.199.150/12+ |
The criminal 202.96.199.150 in the criminals' heaven network CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in the criminakl's heavne network CHINA TELECOM (中国电信集团公司) (CN) (2010.5.14) Malicious and huge ssh brute force attack (224 login attempts) focusing on the root password. This is the 4th attack by the criminals' host 202.96.199.150 since May 1 2010, Oct 12 2009 and Feb 26 2009. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 124.127.117.165/15+ |
124.127.117.165 (165.117.127.124.broad.bj.bj.static.163data.com.cn) in Research Institution of Telecom (CN) (2010.5.13) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. Add 124.126.0.0/15 and 124.128.0.0/13 to the permanent block list. |
| 218.27.198.220/11 |
The criminal 218.27.198.220 in the criminal China Unicom Jilin province network (中国联合通信有限公司吉林分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.13) Malicious and huge ssh brute force attack (98 and more login attempts) focusing on the root password. This is the 4th attack by the criminal 218.27.198.220 since May 6 2010, Apr 24 2010 and Apr 18 2010. Add 218.0.0.0/11 to the permanent block list. |
| 212.34.155.6/19 |
212.34.155.6 in RAN Networks S.L (ES) (2010.5.13) Malicious and huge ssh brute force attack (46 login attempts) focusing on the root password. |
| 187.59.2.122/7 |
187.59.2.122 (estacaoconvention122.static.gvt.net.br) in CONSORCIO ESTACAO NATTCA in GVT (BR) (2010.5.12) Malicious and huge ssh brute force attack (53 login attempts) focusing on the root password only. Add 186.0.0.0/7 to the permanent block list. |
| 187.33.1.30/7 |
187.33.1.30 (187.33.1.30.static.cloudtecla.com.br) in TECLA - Dominio BR Consultoria em Informatica LTDA (BR) (2010.5.12) Malicious and huge ssh brute force attack (206 login attempts) focusing on the root password. Add 186.0.0.0/7 to the permanent block list. |
| 69.25.178.103/27(/16) |
69.25.178.103 in PingPong Telecom, Inc in InterNap (US) (2010.5.12) Malicious and huge ssh brute force attack (40 login attempts) focusing on the root password. |
| 211.157.2.94/12+ |
211.157.2.94 (anti-spam.org.cn) in China Anti-Spam Alliance (中国反垃圾邮件联盟) (CN) (2010.5.12) They seems to protect the criminals (crackers and spammers) in China by blocking many incident reports about them. Add 1211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 219.150.161.20/11 |
219.150.161.20 in the criminals' neteork CHINANET henan province network (河南省电信公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.5.12) Malicious and huge ssh brute force attack (2,728 login attempts) focusing on the root password. The contact e-mail address ip@hntele.com does not work because of '<ip@hntele.com>: host mgt.hntele.com[222.85.93.69] said: 554 Service unavailable; Client host blocked by cblless.anti-spam.org.cn' (2010.5.12) Add 219.128.0.0/11 to the permanent block list. |
| 180.0.194.26/17(/10) |
180.0.194.26 in OCN - Open Computer Network (JP) (2010.5.11) Malicious and huge ssh brute force attack (223 and more login attempts). |
| 80.50.136.126/13 |
80.50.136.126 in TPNET (PL) (2010.5.11) Malicious and huge ssh brute force attack (455 login attempts) focusing on the root password only.. We received an automatic receipt from TPNET. (2010.5.11). |
| 89.202.108.60/25(/17) |
89.202.108.60 in Screensaver Media Ltd (No.1 Wang Yuen Street, Kowloon, Hongkong) (HK) (2010.5.11) Malicious and huge ssh brute force attack (380 login attempts). Add 89.202.108.0/25 to the permanent block list. |
| 195.47.227.54/24 |
195.47.227.54 in Totolotek S.A. (PL) (2010.5.11) Malicious and huge ssh brute force attack (96 login attempts). No contact e-mail address. Add 195.47.227.0/24 to the permanent block list. |
| 218.202.130.81/12 |
218.202.130.81 in the criminals' heaven netowrk China Mobile Communications Corporation - neimeng (内蒙古移动_中国移动通信) in China Mobile Communications Corporation (中国移动通信) (CN) (2010.5.5, mail error 2010.5.10) Malicious and huge pop login attempts (740 pop login attempts). The contact e-mail address 13847138820@monternet.com does not work because of '<13847138820@monternet.com>: connect to smtp.monternet.com[211.136.16.108]: Connection timed out' (2010.5.10) Add 218.192.0.0/12 to the permanent block list. |
| 59.39.66.30/11 |
The criminals' host 59.39.66.30 in shanghaidilianxinxikejifazhanyo in the criminals' neteork CHINANET Guangdong province network (中国电信股份有限公司) in the criminals' heaven network CHINA TELECOM (中国电信集团公司) (CN) (2010.5.10) Malicious and huge ssh brute force attack (7 login attempts) focusing on the root password only. This is the 2nd attack by the criminals' host 59.39.66.30 since Apr 28 2010. Add 59.32.0.0/11, 59.64.0.0/12 and 59.80.0.0/14 to the permanent block list. |
| 69.164.207.250/19 |
69.164.207.250 (li121-250.members.linode.com) in Linode, LLC (US) (2010.5.10) Malicious and huge ssh brute force attack (67 and more login attempts). |
| 202.191.124.67/21 |
202.191.124.67 in Bijoy Online Limited (BD) (2010.5.10) Malicious and huge ssh brute force attack (130 login attempts). We received a good response from BIJOY ONLINE LTD. (2010.5.11). |
| 218.211.235.212/15 |
The crimianls' host 218.211.235.212 (adsl-218-211-235-212.sparqnet.net = www.g-e.tw) in the crimianls' heaven network G.E. Interior Design & Construction (居逸室內裝修設計工程有限公司) in the criminals' heaven network New Century InfoComm Tech. Co., Ltd. (新世紀資通股份有限公司) (TW) (2010.5.10) Malicious and huge ssh brute force attack (56 login attempts) focusing on the root password. This is the 2nd attack by the crimianls' host 218.211.235.212 (adsl-218-211-235-212.sparqnet.net = www.g-e.tw) since May 4 2010. Add 218.210.0.0/15 to the permanent block list. |
| 222.37.37.47/11+ |
222.37.37.47 in CRTC - CHINA RAILWAY TELECOMMUNICATIONS CENTER (中国铁通在线) (CN) (2010.5.8) Malicious and huge pop login attempts (1,306 and more pop login attempts). Add 222.16.0.0/12, 222.32.0.0/11 and 222.64.0.0/11 to the permanent block list. |
| 212.74.97.135/19 |
212.74.97.135 in Tiscali UK Limited (GB) (2010.5.8) Malicious and huge ssh brute force attack (68 login attempts). |
| 121.52.215.133/20+ |
121.52.215.133 (www.8xin.net) in 8xin.net (八信网购) in TOPNEW GROUP (北京铜牛集团) (CN) (2010.5.8) Malicious and huge ssh brute force attack (4,755 login attempts). Add 121.52.208.0/20 and 121.52.224.0/19 to the permanent block list. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminal Beijing SHUXUNDA Communicate Technology Co.,LTD (ROOM 1904 No.1 Building Jia Caihuying, Fengtai Dist.Beijing) in the criminal CNC Group Guangdong province network (中国联通有限公司广东分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.8) Malicious and huge ssh brute force attack (12 login attempts) focusing on the root password only. This is the 5th attack by the criminal 122.102.64.54 since May 7 2010, Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 85.114.141.35/19 |
85.114.141.35 (s035.silver.fastwebserver.de) in fast IT in fibre one networks GmbH (DE) (2010.5.7) Malicious and huge ssh brute force attack (45 and more login attempts) focusing on the root password only. |
| 122.102.64.54/19 |
The criminal 122.102.64.54 in the criminals' network Beijing SHUXUNDA Communicate Technology in the criminals' network CNC Group Guangdong province network (中国联通有限公司广东分公司) in China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.7) Malicious and huge ssh brute force attack (3 login attempts) focusing on the root password only. This is the 4th attack by the criminals' host 122.102.64.54 since Apr 20 2010, Apr 19 2010 and Apr 1-18 2010, Add 122.102.64.0/19 to the permanent block list. |
| 82.211.241.122/19 |
82.211.241.122 in ComX Networks (DK) (2010.5.7) Malicious and huge ssh brute force attack (205 login attempts). |
| 211.154.215.174/12+ |
211.154.215.174 in China Netcom(GROUP) Company Limited, Beijing Branch (中国联通北京市分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.7) Malicious and huge ssh brute force attack (39 login attempts) focusing on the root password only. Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 218.27.198.220/11 |
The criminal 218.27.198.220 in the criminal China Unicom Jilin province network (中国联合通信有限公司吉林分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.6) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. This is the 3rd attack by the criminal 218.27.198.220 since Apr 24 2010 and Apr 18 2010. Add 218.0.0.0/11 to the permanent block list. |
| 211.144.135.170/12+ |
211.144.135.170 in Development & Research Center of State Council Net. (国研网) (CN) (2010.5.6) Malicious and huge ssh brute force attack (48 login attempts) focusing on the root password only. Add 211.136.0.0/13, 211.144.0.0/12 and 211.160.0.0/13 to the permanent block list. |
| 204.13.5.107/21 |
204.13.5.107 in Digiport (US) (2010.5.5) Malicious and huge ssh brute force attack (59 login attempts) focusing on the root password. |
| 173.203.115.229/16 |
173.203.115.229 (asd2835.sivit.org) in Slicehost (San Antonio, TX) in Rackspace.com, Ltd. (US) (2010.5.5) Malicious and huge ssh brute force attack (62 login attempts) focusing on the root password. We received an automatic receipt from Rackspace.com. (2009.5.5) |
| 93.184.32.135/20 |
93.184.32.135 (asd2835.sivit.org) in SIVIT SARL (FR) (2010.5.4) Malicious and huge ssh brute force attack (324 login attempts) focusing on the root password only. |
| 218.211.235.212/15 |
218.211.235.212 (adsl-218-211-235-212.sparqnet.net = www.g-e.tw) in G.E. Interior Design & Construction (居逸室內裝修設計工程有限公司) in New Century InfoComm Tech. Co., Ltd. (新世紀資通股份有限公司) (TW) (2010.5.4) Malicious and huge ssh brute force attack (466 login attempts) focusing on the root password. |
| 208.79.90.123/22(/21) |
208.79.90.123 in Flux Telecom, LLC (601 Wilshire Blvd., Suite #879, Los Angeles, CA, 90017) in ARP NETWORKS, INC. (US) (2010.5.4) This is the 2nd attack from Flux Telecom, LLC since Apr 30 2010. Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. |
| 123.232.43.68/14 |
The criminal 123.232.43.68 in the criminal's network JiNan-jinanshilixiaqushequfuwuzhongxin in the criminals' network CNC Group CHINA169 Shandong Province Network (中国联合网络通信有限公司山东省分公司) in China Unicom (中国联通) (CN) (2010.5.3) Malicious and huge ssh brute force attack (7 login attempts) focusing on the root password only. This is the 4th attack by the criminal 123.232.43.68 since Mar 10 2010 (twice) and Mar 4-5 2010. Add 123.232.0.0/14 to the permanent block list. |
| 88.191.76.11/11 |
88.191.76.11 (1foded002.1fopresta.com) in 1FOPRESTA in ProXad network / Free SAS (FR) (2010.5.3) Malicious and huge ssh brute force attack (234 login attempts) focusing on the root password only. |
| 210.51.52.132/16+ |
The criminal 210.51.52.132 in the criminals' network Shanghai Caohejing IDC of China Netcom in the criminals' network China Unicom (中国联通) (CN) (2010.5.1) Malicious and huge login attempts (2 login attempts) focusing on the root password only. This is the 5th attack by the criminal 210.51.52.132 since May 1 2010 (today), Apr 6 2010, Apr 5 2010 and Mar 15 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 208.43.68.44/16 |
208.43.68.44 (208.43.68.44-static.reverse.softlayer.com = wook.intus.cl) in SoftLayer Technologies Inc. (US) (2010.5.1) Malicious and huge ssh brute force attack (35 and more login attempts) focusing on the root password only. |
| 210.51.52.132/16+ |
The criminal 210.51.52.132 in the criminals' network Shanghai Caohejing IDC of China Netcom in the criminals' network China Unicom (中国联通) (CN) (2010.5.1) Malicious and huge login attempts (5 login attempts) focusing on the root password only. This is the 4th attack by the criminal 210.51.52.132 since Apr 6 2010, Apr 5 2010 and Mar 15 2010. Add 210.51.0.0/16 and 210.52.0.0/15 to the permanent block list. |
| 202.96.199.150/12+ |
The criminals' host 202.96.199.150 in CHINANET shanghai province network (中国电信上海信息产业(集团)有限公司) in CHINA TELECOM (中国电信集团公司) (CN) (2010.5.1) Malicious and huge ssh brute force attack (5 login attempts) focusing on the root password only. This is the 3rd attack by the criminals' host 202.96.199.150 since Oct 12 2009 and Feb 26 2009. Add 202.90.0.0/15, 202.92.0.0/14, 202.96.0.0/12, 202.112.0.0/13 and 202.120.0.0/15 to the permanent block list. |
| 58.1.245.164/17(/15) |
58.1.245.164 in @nifty : InfoWeb(Fujitsu Ltd.) (JP) (2010.5.1 14:49-15:00 JST) Malicious and huge pop login attempts (39 and more pop login attempts). The contact e-mail address n.nakahara@web.ad.jp does not work because of '<n.nakahara@web.ad.jp>: maildir delivery failed: Sorry, the user's maildir has overdrawn his diskspace quota, please try again later.' (2010.5.1) We received a receipt from @nifty customer service. (2009.5.6) |
| 64.15.156.152/27(/19) |
64.15.156.152 in Netpickle, Inc in iWeb Technologies Inc. (US) (2010.5.1) Malicious and huge ssh brute force attack (181 and more login attempts). |
| 218.107.139.2/14+ |
The criminal 218.107.139.2 in the criminal China Unicom Beijing province network (中国联合网络通信有限公司北京市分公司) in the criminal China Unicom (中国联通) in one of the most famous lawless area in the world. (CN) (2010.5.1) Malicious and huge pop access attempts (445 pop login attempts). This is the 9th attack by the criminal 218.107.139.2 since Feb 10 2010, Feb 8 2010, Feb 7 2010 (twice), Feb 3 2010, Dec 25 2009, Dec 11 2009 and Dec 7 2009. Add 218.104.0.0/14 and 218.108.0.0/15 to the permanent block list. |
| 125.210.34.228/15 |
The criminal 125.210.34.228 in the criminal network WASU TV & Communication Holding Co.,Ltd. (CN) (2010.4.30) Malicious and huge ssh brute force attack (87 login attempts) focusing on the root passwprd. This is the 4th attack by the criminal 125.210.34.228 since Apr 26 2010, Mar 6 2010 and Dec 10 2009. Add 125.210.0.0/15 to the permanent block list. |
| 208.79.90.125/22(/21) |
208.79.90.125 in Flux Telecom, LLC (Los Angeles, CA, US) in ARP NETWORKS, INC. (US) (2010.4.30) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. |
| 208.85.88.3/22 |
208.85.88.3 in Alpine Internet Solutions (US) (2010.4.30) Malicious and huge ssh brute force attack (216 login attempts) focusing on the root password. We received a good report from Alpine Internet Solutions. (2009.5.1) |
| 58.144.8.100/16 |
58.144.8.100 in China Unicom Chongqing province network (中国联通重庆分公司) in China Unicom (中国联通) (CN) (2010.4.30) Malicious and huge ssh brute force attack (727 and more login attempts). Add 58.144.0.0/16 to the permanent block list. |
| networks permanently rejected | |
|
24.123.0.0/17 24.199.39.226/18 24.199.204.175/17 69.134.205.250/14 68.205.122.176/13 70.60.0.0/14 |
Road Runner (US) |
|
58.64.0.0/17 |
Advance Datanetwork Communications Co.,Ltd. (TH) |
|
58.68.0.0/17 |
Dishnet Wireless Limited (IN) |
|
59.106.49.96/27 |
日本空間情報技術株式会社 (JP) |
|
59.148.0.0/15 |
City Telecom (H.K.) Ltd. (HK) |
|
60.198.0.0/15 |
Taiwan Fixed Network CO.,LTD. (台灣大電訊) (TW) |
|
61.16.128.0/17 |
TATA Communications Internet Services Ltd (IN) |
|
61.59.0.0/16 |
Seednet / Digital United Inc. (TW) |
|
61.90.0.0/15 |
True Corporation (TH) |
|
61.199.200.80/29 |
Vector International (ベクターインターナショナル株式会社) (JP) |
|
62.26.219.0/24 |
JSis Network Solutions (DE) |
|
62.39.117.136/29 |
OLYMPIQUE DE MARSEILLE (FR) |
|
62.63.64.0/18 |
ArtX (RU) |
|
62.72.110.116/19 |
Respons Advertising BVBA in COLT-BE (BE) |
|
62.75.128.0/17 |
plusserver (intergenia AG) |
|
62.81.241.208/29 |
Colegio Oficial de ingenieros Tecnicos Industriales in Ono.com (ES) |
|
62.84.144.130/27 |
Martin Dohnal (CZ) |
|
62.112.132.50/19 |
Tardeinfo GmbH in Netdiscounter GmbH (DE) |
|
63.81.36.0/22 |
Top Speed Internet Service, LLC (US) |
|
64.15.128.0/19 |
iWeb Technologies Inc. (US) |
|
64.80.197.80/28 |
Anycolor Inc. in PaeTec Communications, Inc. (US) |
|
64.169.45.66/12 64.171.127.90/12 65.67.13.26/13 66.121.145.195/13 66.139.79.199/13 68.75.86.8/13 69.208.29.243/12 69.215.39.177/12 69.228.253.114/12 |
SBC Internet Services (US) |
|
64.237.96.0/20 |
ThruPort Technologies, Inc. (US) |
|
64.0.0.0/14 65.104.0.0/14 67.88.0.0/13 67.152.0.0/14 207.101.0.0/16 216.112.0.0/16 |
XO Communications (US) |
|
65.19.234.0/23 |
Interbel Telephone (US) |
|
65.116.31.0/24 |
LAREDO COMMUNITY COLLEGE (US) |
|
66.152.160.0/19 |
MULTACOM CORPORATION (US) |
|
66.230.192.0/19 66.230.231.73/20 |
Neucom, Inc. (US) |
|
67.18.216.226/15 |
ThePlanet.com Internet Services, Inc. (US) |
|
67.202.0.0/18 |
Amazon.com, Inc. (US) |
|
69.20.54.51/17 |
Rackspace.com, Ltd. (US) |
|
70.88.0.0/14 |
Comcast Business Communications, Inc. (US) |
|
74.52.0.0/15 74.54.0.0/16 |
ThePlanet.com Internet Services, Inc. (US) |
|
75.127.64.0/18 |
Amazonas Filmes in Global Net Access, LLC (US) |
|
75.144.0.0/13 |
Comcast Business Communications, Inc. (US) |
|
76.197.19.48/28 |
PRAKASH BALEBAI-070221231148 (US) |
|
77.91.192.0/21 |
Vermont-IT (RU) |
|
77.233.192.0/19 |
ROSS Limited Company in IZMAYROVO.RU (RU) |
|
77.245.144.0/20 |
Niobe Bilisim Teknolojileri Yazilim San. Tic. Ltd. Sti. (TR) |
|
78.110.160.0/20 |
UK Dedicated Servers Limited, VAServe LTD (GB) |
|
79.170.192.0/22 |
Intrahost Limited (GB) |
|
80.71.240.0/20 |
vnicsmv.ru in Rial Com JSC (RU) |
|
80.74.128.0/19 |
METANET AG, Switzerland (CH) |
|
80.90.112.0/20 |
SmartLogic Ltd. (RU) |
|
80.91.160.0/19 |
Nibulon Nikolaev in DATAGROUPDATAGROUP (UA) |
|
80.191.0.0/16 |
Data Communications of Iran (IR) |
|
80.200.0.0/15 |
Skynet (BE) |
|
80.233.128.0/17 |
Telia Latvija (LV) |
|
81.52.240.0/20 |
WebSatMedia Pte Ltd in France Telecom (SG) |
|
81.209.149.64/26 |
Mathias Goldhan in Keyweb AG (DE) |
|
82.135.156.41/23 |
UAB "Elektronine prekyba ir Ko" (LT) |
|
82.151.128.0/19 |
Doruk.net (TR) |
|
82.165.29.132/16 82.165.182.20/16 212.227.21.108/16 212.227.49.34/16 217.160.131.147/16 217.160.185.217/16 |
Schlund + Partner AG (DE/US) |
|
82.193.128.0/19 |
Ural Regional Bank Net "UralWES" (RU) |
|
83.0.0.0/11 |
Polish Telcom TPNET (PL) |
|
83.246.112.0/20 |
SERVERPOOL (DE) |
|
84.128.0.0/10 |
Deutsche Telekom AG (DE) |
|
84.235.0.0/17 |
Saudi Telecom Co. (SA) |
|
84.246.144.0/22 |
Legatel Telecom Srl (IT) |
|
85.38.0.0/16 88.48.0.0/15 (part of 88.32.0.0/11) |
Telecom Italia (IT) |
|
85.112.96.0/20 |
Centaur Telecom (RU) |
|
86.34.0.0/16 |
Romtelecom Data Network (RO) |
|
88.86.64.0/19 |
Quantum Communications (RU) |
|
88.191.0.0/16 |
Dedibox (FR) |
|
89.21.128.0/22 |
TZ-Telecom (includes Ermakov Aleksey) |
|
89.106.0.0/19 |
Grid Telekom (TR) |
|
89.107.224.0/21 |
DGN Dedicated, Co-Located Network (TR) |
|
89.216.0.0/16 |
Serbia Broadband (RS) |
|
90.189.128.0/17 |
Sibirtelecom (RU) |
|
91.151.240.0/20 |
Novotelecom ltd. (RU) |
|
93.100.0.0/16 |
SkyNet Network (RU) |
|
93.180.88.0/21 |
Point To Point Ltd. in Bulgarian Internet Company Ltd. (BG) |
|
94.243.0.0/18 |
MULTISERVICENETWORK (RU) |
|
98.142.208.0/20 |
WireSix (US) |
|
109.207.0.0/20 |
JSC Rostelecom (RU) |
|
112.133.192.0/18 |
RailTel Corporation (IN) |
|
112.137.160.0/20 |
TM NET SDN BHD (MY) |
|
116.66.160.0/20 |
Illuminate Internet Services Pty Ltd = Hostcentral (AU) |
|
118.98.128.0/17 |
Departemen Pendidikan Nasional Tim Data Center Jardiknas (ID) |
|
118.100.0.0/15 |
TELEKOM MALAYSIA BERHAD (MY) |
|
122.152.128.0/18 |
Asia Netcom Corporation (JP) |
|
122.183.128.0/17 |
Bharti Telenet Ltd. Tamilnadu |
|
122.160.234.0/23 |
ABTS DELHI (IN) |
|
122.252.224.0/19 |
RailTel Corporation of India Ltd. (IN) |
124.7.0.0/16 |
Sify Limited (IN) |
124.30.0.0/16 |
Sify Limited (IN) |
|
124.195.0.0/17 |
INDOSAT (ID) |
|
125.215.128.0/17 |
PCCW Business Netvigator (HK) |
|
128.177.224.0/21 |
Fision - Digital Fiber Entertainment in AboveNet (US) |
|
131.236.0.0/16 |
University College, Australian Defense Force Academy (AU) |
|
139.223.0.0/16 |
TISNET: TATUNG (TW) |
|
147.83.5.57/16 147.83.50.71/16 |
Universitat Politecnica de Catalunya (ES) |
|
149.156.0.0/16 |
Academic Computer Centre CYFRONET (PL) |
|
161.139.0.0/16 |
Universiti Teknologi Malaysia (MY) |
|
188.132.128.0/17 |
SadeceHosting (TR) |
|
193.24.212.0/20 |
cdedie in V-COM Network Ips (FR) |
|
193.34.120.0/22 |
SDV Server Services (DE) |
|
193.87.160.64/28 |
Joint Vocational Secondary School (Zdruzena stredna skola, Bratislava, SK) in sanet. (SK) |
|
193.107.16.0/22 |
Ideal Solution Ltd (SC) |
|
193.231.39.0/24 |
University of Craiova (RO) |
|
193.254.2.0/24 |
Polytechnic University of Tirana Albania (AL) |
|
194.88.96.0/19 |
Online Internet nv/sa (BE) |
|
194.103.218.0/23 |
Arjeplog Kommun (SE) |
|
194.204.212.0/24 |
Ministere des Peches Maritimes (MA) |
|
195.20.206.0/23 |
GleSYS - Serverhotell (SE) |
|
195.47.227.0/24 |
Totolotek S.A. (PL) |
|
195.93.144.0/23 |
Limited company Elektrosvyaz (RU) |
|
195.140.140.0/22 |
CTN1 (FR) |
|
195.140.176.0/22 |
PEACE-NET in HansaWorld International (Internet Invest Ltd) (UA) |
|
195.224.0.0/16 |
Pipex Communications (GB) |
|
196.0.0.0/8 |
AfriNIC |
|
202.28.0.0/15 |
UniNet (Inter-university network) (TH) |
|
202.46.0.0/20 |
IPTEKNET, Indonesian Science and Technology Network (ID) |
|
202.46.24.0/21 |
Widya Mandala Catholic University Surabaya (ID) |
|
202.55.180.162/20 |
SKYCC, VoIP and ISP, Ulaanbaatar, Mongolia (MN) |
|
202.57.128.0/18 202.142.221.246/19 |
Internet Service Provider Co., Ltd. (TH) |
|
202.60.64.0/19 |
DedicatedServers (AU) |
|
202.60.240.2/19 |
Cyber Express Communication Ltd. (HK) |
|
202.63.160.0/19 |
Exatt Technologies Pvt. Ltd. (IN) |
|
202.64.0.0/16 |
Pacific Internet (Hong Kong) Ltd (HK) |
|
202.65.128.0/19 |
Pioneer Online Pvt. Ltd. (IN) |
|
202.66.0.0/16 |
CPCNet Hong Kong Ltd. (HK) |
|
202.70.192.0/20 |
India Online Network Ltd (IN) |
|
202.67.155.250/17 |
HKNet Company Limited (HK) |
|
202.88.128.0/18 |
Hathway IP Over Cable Internet Access Service (IN) |
|
202.123.64.0/19 |
Henderson Data Centre Limited (HK) |
|
202.142.64.0/18 |
Zee Telefilms Ltd (IN) |
|
202.144.0.0/17 |
Sify Limited (IN) |
|
202.155.32.0/19 |
Indosat (ID) |
|
202.155.196.100/18 202.155.230.231/18 |
Wharf T&T Limited (HK) |
|
202.175.192.0/18 |
Eastern Telecoms Philippines, Inc. (PH) |
|
202.181.128.0/19 |
Hongkong Commercial Internet Exchange (HK) |
|
202.222.28.84/32 |
www.utsunomiya-fudousan.com in SAKURA Internet 宇都宮不動産のれん会 (JP) |
|
203.34.37.0/24 |
YOKOZUNANET (MN) |
|
203.64.0.0/13 203.72.0.0/14 |
Global Communication Network Corp., CHTD (TW) |
|
203.81.32.0/19 |
Pacific Internet Limited (SG) |
|
203.110.208.0/20 |
India Online Network Ltd. (IN) |
|
203.116.0.0/15 203.118.0.0/18 |
StarHub (SG) |
|
203.133.27.117/17 |
Hoshin Gigamedia Center Inc. (TW) |
|
203.141.141.192/29 |
Business Flow Technologies Inc. (株式会社 ビジネスフローテクノロジーズ) in Interlink co., ltd (JP) |
|
203.146.251.0/24 |
Loxinfo (TH) |
|
KSC Commercial Internet |
KSC Commercial Internet (TH) |
|
203.157.0.0/16 |
Ministry of Public Health, Thailand (TH) |
|
203.167.96.0/19 |
Eastern Telecoms Phils., Inc. (PH) |
|
203.171.16.0/20 |
New Generations Telecommunication Corporation (VN) |
|
203.185.0.0/18 |
CITY TELECOM (HK) LTD |
|
203.193.0.0/18 |
Verizon Hong Kong Limited (HK) |
|
203.198.0.0/16 |
PCCW, NETVIGATOR (HK) |
|
206.124.0.0/19 |
foreThought.net (US) |
|
207.44.128.0/17 |
Anita Limanto in OESM Group in The Planet (Everyones Internet) (US) |
|
207.80.142.5/16 |
Univ. of Texas System Office of Telecom. Services (US) |
|
207.192.64.0/18 |
Linode.com in Net Access Corporation (US) |
|
207.210.0.0/18 |
Source Cable Ltd. (CA) |
|
207.253.73.0/24 |
Cooperative de cablodistribution de l'arriere-pays (CA) |
|
209.101.200.116/24 |
Comdepot Dallas Pop (US) |
|
210.1.0.0/18 |
CS Loxinfo (TH) |
|
210.6.0.0/16 |
City Telecom (H.K.) Ltd. (HK) |
|
210.17.0.0/17 |
Taiwan Telecommunication Network Services Co.,LTD. (TW) |
|
210.18.57.3/17 |
Sify Limted (IN) |
|
210.48.144.0/20 |
TM NET (MY) |
|
210.67.0.0/18 |
Sysware Corporation, Systex Corporation (TW) |
|
210.68.0.0/16 |
firefoxlanka.com in Digital United Inc. / SEEDNET (TW) |
|
210.81.0.0/19 |
WorldCom Japan Ltd. (JP) |
|
210.87.240.0/20 |
PCCW (Pacific Century Cyberworks) Business Internet Access (HK) |
|
210.188.206.76/32 |
creators union 株式会社クリエイターズユニオン (JP) |
|
210.209.13.0/24 |
TWNAP (TW) |
|
210.210.0.0/17 |
Sify Technologies Limited (IN) |
|
210.212.0.0/16 |
BSNL Internet (IN) |
|
210.228.173.144/24 210.228.174.0/23 210.228.176.0/24 |
Momotarou Internet Club (NIHONKOUSHIN Co.) (JP) |
|
210.243.128.0/17 210.244.0.0/17 |
DIGITAL UNITED INC (TW) |
|
210.245.0.0/17 |
FPT Telecom (VN) |
|
211.78.80.0/20 |
DWINS Digital Service Corp. (TW) |
|
212.12.224.0/19 |
Wayout Internet Solutions (EG) |
|
212.72.192.0/19 |
NET IS SAT ltd. (BG) |
|
212.74.96.0/19 |
Tiscali UK Limited (GB) |
|
212.122.160.0/19 |
Bulgarian Government Network (BG) |
|
213.16.56.0/24 |
SKAT TV Ltd. (BG) |
|
213.19.163.0/24 |
THAIINTERNATIONAL-NL (TH) |
|
213.112.0.0/14 |
Bredbandsbolaget Routing Registry (SE) |
|
213.176.96.0/24 |
Malek Ashtar University (IR) |
|
213.195.64.0/19 |
Ibercom (ES) |
|
213.223.64.10/29 |
HUMBERT FRANCK, VAINCRE_LA_MUCO (FR) |
|
213.228.128.0/18 |
Soabor - Comercio de Prendas Lda in Cabovisao - Televisao por Cabo, S.A (PT) |
|
216.133.224.0/19 |
Roth Williams International Societies of Orthodontists in Vitalstream Holdings, Inc. (US) |
|
216.144.224.0/20 |
Secured Private Network (US) |
|
216.176.176.0/20 |
Wowrack.com (US) |
|
216.177.128.0/20 |
Alentus Corporation (US) |
|
216.219.128.0/17 |
Affinity Internet, Inc (US) |
|
217.20.118.111/24 |
netdirekt e. K. (DE) |
|
217.20.160.0/20 |
WNET (UA) |
|
217.71.128.0/20 |
Novosibirsk State Technical University (RU) |
|
218.102.0.0/15 |
GOA INTERNATIONAL LIMITED in NETVIGATOR (HK) |
|
218.210.0.0/15 |
New Century InfoComm Tech. Co., Ltd. (TW) |
|
218.214.0.0/15 |
Swiftel Communications (AU) |
|
218.248.1.160/27 |
Osmania University in Bharat Sanchar Nigam Limited (IN) |
|
219.84.0.0/14 |
Taiwan Fixed Network CO.,LTD. (TW) |
|
219.117.253.88/29 |
clja.net (Hirohisa Maruyama) in Interlink co., ltd (JP) |
|
220.224.0.0/14 |
Reliance Communications Ltd (IN) |
|
220.228.0.0/15 |
New Centry InfoComm Tech. Co., Ltd. (TW) |
|
220.241.0.0/16 |
PCCW: Pacific Century Cyberworks (HK) |
|
220.246.0.0/16 |
PCCW: Pacific Century Cyberworks (HK) |
|
221.120.192.0/18 |
Pakistan Telecommunication Company Limited (PK) |
|
222.124.0.0/16 |
PT. Telekomunikasi Indonesia Tbk (ID) |
|
222.156.0.0/15 |
Asia Pacific On-line Services Inc. (TW) |
|
222.252.0.0/14 |
Vietnam Posts and Telecommunications (VN) |
|
24.232.0.0/16 132.247.0.0/16 132.248.0.0/16 148.201.0.0/16 148.202.0.0/15 148.204.0.0/14 148.208.0.0/12 148.224.0.0/12 148.240.0.0/13 148.248.0.0/15 148.250.0.0/16 150.185.0.0/16 150.186.0.0/15 150.188.0.0/15 157.100.0.0/16 164.77.0.0/16 168.243.0.0/16 186.0.0.0/7 189.0.0.0/8 190.0.0.0/8 200.0.0.0/7 216.241.0.0/19 |
LACNIC |
|
113.252.0.0/14 118.140.0.0/14 203.184.128.0/17 210.0.128.0/17 218.188.0.0/14 221.127.43.88/14 |
The criminals' network - Hutchison Global Communications (HK) |
|
58.14.0.0/15 58.16.0.0/13 58.24.0.0/15 58.30.0.0/15 58.32.0.0/11 58.82.0.0/15 58.144.0.0/16 58.192.0.0/11 58.240.0.0/12 59.32.0.0/11 59.64.0.0/12 59.80.0.0/14 59.107.0.0/16 59.108.0.0/14 59.148.0.0/15 59.151.0.0/17 59.172.0.0/14 60.0.0.0/11 60.160.0.0/11 60.194.0.0/15 60.200.0.0/13 60.208.0.0/12 61.4.176.0/20 61.28.0.0/17 61.29.128.0/17 61.48.0.0/13 61.128.0.0/10 61.232.0.0/14 61.236.0.0/15 61.238.0.0/15 (HK) 61.240.0.0/14 61.248.0.0/13 89.202.108.0/25 (HK) 110.176.0.0/12 110.192.0.0/11 112.0.0.0/10 112.64.0.0/14 112.224.0.0/11 113.0.0.0/13 113.8.0.0/15 113.11.192.0/19 113.54.0.0/15 113.56.0.0/15 113.58.0.0/16 113.59.0.0/17 113.62.0.0/15 113.64.0.0/10 113.128.0.0/15 113.218.0.0/15 113.220.0.0/14 113.224.0.0/11 114.80.0.0/12 114.96.0.0/13 114.104.0.0/14 114.208.0.0/12 114.224.0.0/11 116.1.0.0/16 116.2.0.0/15 116.4.0.0/14 116.8.0.0/14 116.16.0.0/12 116.112.0.0/13 116.224.0.0/12 116.242.0.0/15 116.244.0.0/14 116.248.0.0/15 117.21.0.0/16 117.22.0.0/15 117.24.0.0/13 117.32.0.0/13 117.40.0.0/14 117.44.0.0/15 117.128.0.0/10 118.102.16.0/20 118.180.0.0/14 118.184.0.0/13 118.192.0.0/12 119.32.0.0/13 119.40.0.0/15 119.42.0.0/19 119.78.0.0/15 119.80.0.0/15 119.112.0.0/12 119.128.0.0/12 119.144.0.0/14 119.161.128.0/17 119.162.0.0/15 119.164.0.0/14 119.176.0.0/12 121.8.0.0/13 121.16.0.0/12 121.32.0.0/13 121.40.0.0/14 121.52.208.0/20 121.52.224.0/19 121.204.0.0/14 122.4.0.0/14 122.8.0.0/13 122.102.0.0/20 122.102.64.0/19 122.156.0.0/14 122.200.64.0/18 122.224.0.0/12 122.240.0.0/13 123.112.0.0/12 123.128.0.0/13 123.137.0.0/16 123.138.0.0/15 123.177.0.0/16 123.178.0.0/15 123.180.0.0/14 123.184.0.0/13 123.196.0.0/15 123.232.0.0/14 124.14.0.0/15 124.16.0.0/15 124.42.0.0/16 124.112.0.0/13 124.126.0.0/15 124.128.0.0/13 124.160.0.0/13 124.192.0.0/15 124.200.0.0/13 124.254.0.0/18 125.31.192.0/18 125.32.0.0/12 125.61.128.0/17 125.62.0.0/15 125.64.0.0/11 125.96.0.0/15 125.98.0.0/16 125.208.0.0/18 125.210.0.0/15 159.226.0.0/16 166.111.0.0/16 183.0.0.0/10 183.64.0.0/13 202.8.128.0/19 202.67.128.0/17 (HK) 202.68.0.0/18 (HK) 202.75.208.0/20 202.90.0.0/15 202.92.0.0/14 202.96.0.0/12 202.112.0.0/13 202.120.0.0/15 202.127.24.198/20 202.152.176.0/20 202.165.176.0/20 202.192.0.0/12 203.86.0.0/18 203.86.64.0/19 203.88.192.0/19 203.91.120.0/21 203.148.0.0/18 203.171.224.0/20 203.175.128.0/17 210.14.64.0/19 210.17.128.0/17 (HK) 210.21.0.0/16 210.22.0.0/16 210.25.0.0/16 210.26.0.0/15 210.28.0.0/14 210.32.0.0/12 210.51.0.0/16 210.52.0.0/15 210.72.0.0/14 210.76.0.0/15 210.78.0.0/16 210.82.0.0/15 210.87.128.0/18 210.192.96.0/19 211.64.0.0/13 211.80.0.0/12 211.96.0.0/13 211.136.0.0/13 211.144.0.0/12 211.160.0.0/13 218.0.0.0/11 218.56.0.0/13 218.64.0.0/11 218.96.0.0/14 218.104.0.0/14 218.108.0.0/15 218.192.0.0/12 218.240.0.0/13 218.249.0.0/16 219.128.0.0/11 219.216.0.0/13 219.224.0.0/12 219.242.0.0/15 219.244.0.0/14 220.112.0.0/14 220.160.0.0/11 220.192.0.0/12 220.231.0.0/16 220.248.0.0/14 220.252.0.0/16 221.0.0.0/12 221.129.0.0/16 221.130.0.0/15 221.172.0.0/14 221.176.0.0/13 221.192.0.0/11 221.224.0.0/12 222.16.0.0/12 222.32.0.0/11 222.64.0.0/11 222.128.0.0/12 222.160.0.0/14 222.168.0.0/13 222.176.0.0/12 222.192.0.0/11 222.240.0.0/13 222.248.0.0/15 |
CHINA: the world no.1 lawless area in the internet. many crackers live in these networks and serves phishing pages. for example, this is Fifth Third Bank phising page served by ANHUI TELECOM (2007.2.11) : http://218.22.100.110/cbdir/ (screenshot) |
|
59.160.0.0/14 59.164.0,0/15 61.11.0.0/17 61.17.0.0/16 115.108.0.0/14 115.112.0.0/13 121.240.0.0/13 202.9.128.0/18 202.54.102.183/16 203.197.0.0/16 203.199.0.0/16 203.200.0.0/16 210.211.128.0/17 |
THE CRIMINALS' NETWORK - VSNL Videsh Sanchar Nigam Ltd (IN) |
|
58.72.0.0/13 58.120.0.0/13 58.140.0.0/14 58.148.0.0/14 58.180.0.0/16 58.181.0.0/18 58.224.0.0/12 59.0.0.0/11 59.150.0.0/16 61.32.0.0/13 61.40.0.0/14 61.72.0.0/13 61.80.0.0/14 61.84.0.0/15 61.96.0.0/12 61.248.0.0/13 66.232.136.0/21 66.232.144.0/22 110.8.0.0/13 112.144.0.0/12 112.160.0.0/11 112.216.0.0/13 113.130.64.0/19 114.108.0.0/17 114.108.128.0/18 114.141.0.0/19 114.199.128.0/17 114.200.0.0/13 115.68.0.0/16 115.88.0.0/13 115.178.64.0/19 116.32.0.0/12 116.120.0.0/13 118.32.0.0/11 118.127.192.0/18 118.128.0.0/14 118.216.0.0/13 119.64.0.0/13 119.192.0.0/11 121.64.0.0/14 121.100.64.0/18 121.124.0.0/15 121.126.0.0/16 121.128.0.0/10 122.128.32.0/19 123.140.0.0/14 123.212.0.0/14 124.0.0.0/15 124.2.0.0/16 124.5.0.0/16 125.7.128.0/17 124.111.0.0/16 124.136.0.0/14 124.194.0.0/16 125.128.0.0/11 125.240.0.0/13 125.248.0.0/14 125.252.0.0/18 141.223.0.0/16 143.248.0.0/16 150.183.0.0/16 168.126.0.0/16 202.30.0.0/15 203.224.0.0/11 210.57.224.0/19 210.90.0.0/15 210.92.0.0/14 210.96.0.0/11 210.178.0.0/15 210.180.0.0/14 210.216.0.0/13 211.32.0.0/11 211.104.0.0/13 211.112.0.0/13 211.168.0.0/13 211.176.0.0/12 211.192.0.0/10 218.36.0.0/14 218.48.0.0/13 218.144.0.0/12 218.232.0.0/13 219.248.0.0/13 220.64.0.0/11 220.116.0.0/14 220.120.0.0/13 221.138.0.0/15 221.140.0.0/14 221.144.0.0/12 221.160.0.0/13 221.168.0.0/16 222.96.0.0/12 222.112.0.0/13 222.120.0.0/15 222.122.0.0/16 222.232.0.0/13 |
KOREA: many crackers live in these networks and serves phishing pages. for example, this is PayPal phising page served by SKNETWORKS-METRO-JEYUN-KR (2005.10.29) : http://211.63.1.132/source/img/banner/.cgi-bin/.webscr/paypal/ (screenshot) and for example, this is eBay phising page served by JANGRIMWORLD in Hanaro Telecom Co. (2006.10.27) : http://211.210.60.2/ebay/login1992/ (screenshot) |
|
59.112.0.0/12 60.248.0.0/14 61.216.0.0/13 61.224.0.0/13 202.39.246.110/17 203.64.0.0/13 203.72.0.0/14 210.241.224.0/19 210.242.0.0/16 211.20.0.0/14 211.72.71.72/16 210.59.128.0/17 210.61.0.0/16 210.71.128.0/17 220.128.0.0/12 |
THE CRIMINALS' NETWORK - HINET - CHTD, Chunghwa Telecom Co.,Ltd. (TW) |
|
140.109.0.0/16 140.110.0.0/15 140.112.0.0/12 140.128.0.0/13 140.136.0.0/15 140.138.0.0/16 163.13.0.0/16 163.14.0.0/15 163.16.0.0/12 163.32.0.0/16 192.192.0.0/16 210.59.0.0/17 210.60.0.0/16 |
Ministry of Education computer Center (TW) many crackers live in these networks. |
| Dear infected hosts: Welcome to TATSUKICHI Network. We apologize to you for falling short of your expectations. We are *WINDOWS*OUTSIDE* netowrk and there are no hosts that swallow your dirty packets. PLEASE PLEASE DO NOT POLLUTE THE INTERNET. | |
本ページは w3m でもそこそこ表示できるように最適化されています
![[福]](images/fuku.gif)
