D
DeVriM
Misafir
merhabalar anlamını bilmiyorum fakat fdcturkey.com dan sunucu kiraladım bana şu msjları yolladılar Acaba nedemek istiyorlar ne ypmam gerekiyor benim şuan ana ipadresim durdulumuş bir vaziyette
fdcturkey.com yazdı
"Ekteki mesajý inceleyin lütfen. Bu nedenle ana IP adresiniz lisanssızroute edildi. Bu sorunu çözüp bilgilendirin"
That server has been lisanssızroute do to the activity listed below
Thanks
FDCservers.net
-----Original Message-----
From: Ronald E Johnson [mailto:[email protected]]
Sent: Monday, January 23, 2006 3:51 PM
To: [email protected]
Subject: Notice: Suspicious activity from your host 67.159.26.46 - Please
investigate
To Registered Network Point of Contact:
I am a member of the U.S. Geological Survey's Computer Security
Incident Response Team (CSIRT). A host on your network
(67.159.26.46) was the source of a significant scan or probe of our
network:
Date/Time Source: IP Port Target: IP Port Prot
------------------------------------------------------------
...
Jan 22 10:12 67.159.26.46 32784 130.118.5.134 22 tcp
Jan 22 10:12 67.159.26.46 32792 130.118.6.191 22 tcp
Jan 22 10:12 67.159.26.46 32817 130.118.6.101 22 tcp
Jan 22 10:12 67.159.26.46 32865 130.118.4.179 22 tcp
Jan 22 10:12 67.159.26.46 32879 130.118.7.74 22 tcp
Jan 22 10:12 67.159.26.46 32891 130.118.4.156 22 tcp
Jan 22 10:12 67.159.26.46 32895 130.118.10.81 22 tcp
Jan 22 10:12 67.159.26.46 32897 130.118.7.106 22 tcp
Jan 22 10:12 67.159.26.46 32901 130.118.10.23 22 tcp
Jan 22 10:12 67.159.26.46 32904 130.118.6.138 22 tcp
Jan 22 10:12 67.159.26.46 32909 130.118.7.90 22 tcp
Jan 22 10:12 67.159.26.46 32910 130.118.0.26 22 tcp
Jan 22 10:12 67.159.26.46 32998 130.118.5.74 22 tcp
Jan 22 10:12 67.159.26.46 33000 130.118.6.204 22 tcp
Jan 22 10:12 67.159.26.46 33014 130.118.6.127 22 tcp
Jan 22 10:12 67.159.26.46 33031 130.118.4.200 22 tcp
Jan 22 10:12 67.159.26.46 33059 130.118.6.237 22 tcp
Jan 22 10:12 67.159.26.46 33113 130.118.4.232 22 tcp
Jan 22 10:12 67.159.26.46 33127 130.118.4.41 22 tcp
Jan 22 10:12 67.159.26.46 33139 130.118.7.192 22 tcp
...Numerous attempts omitted...
Jan 22 10:22 67.159.26.46 60761 130.118.225.83 22 tcp
Jan 22 10:22 67.159.26.46 60763 130.118.212.84 22 tcp
Jan 22 10:22 67.159.26.46 60774 130.118.224.183 22 tcp
Jan 22 10:22 67.159.26.46 60782 130.118.212.136 22 tcp
Jan 22 10:22 67.159.26.46 60813 130.118.225.29 22 tcp
Jan 22 10:22 67.159.26.46 60822 130.118.214.234 22 tcp
Jan 22 10:22 67.159.26.46 60823 130.118.214.52 22 tcp
Jan 22 10:22 67.159.26.46 60828 130.118.214.106 22 tcp
Jan 22 10:22 67.159.26.46 60836 130.118.224.23 22 tcp
Jan 22 10:22 67.159.26.46 60836 130.118.226.74 22 tcp
Jan 22 10:22 67.159.26.46 60841 130.118.210.177 22 tcp
Jan 22 10:22 67.159.26.46 60846 130.118.210.215 22 tcp
Jan 22 10:22 67.159.26.46 60876 130.118.224.174 22 tcp
Jan 22 10:22 67.159.26.46 60935 130.118.215.58 22 tcp
Jan 22 10:22 67.159.26.46 60938 130.118.226.158 22 tcp
Jan 22 10:22 67.159.26.46 60964 130.118.226.11 22 tcp
Jan 22 10:23 67.159.26.46 34063 130.118.255.245 22 tcp
Jan 22 10:23 67.159.26.46 35050 130.118.255.244 22 tcp
Jan 22 10:23 67.159.26.46 36438 130.118.255.246 22 tcp
Jan 22 10:23 67.159.26.46 38462 130.118.255.247 22 tcp
...
(Times above are 24 hour in timezone EST: -0500 GMT)
Your immediate investigation of this incident is requested. Please send
a report to [email protected] of your findings and a summary of the
actions you are taking to prevent this from continuing/reoccurring.
This incident is being logged in the USGS security incident database.
Continued incidents from your network may result in your network address
space being blocked at the USGS network perimeter, and the
incident(s) reported to the Department of Homeland Security/US-CERT.
If you have any questions, address those to [email protected].
Thank you for your attention to this issue.
Regards,
USGS
Computer Security Incident Response Team (CSIRT)
[email protected]
------------------------------
[whois.arin.net]
OrgName: FDC Servers.net, LLC
OrgID: FDCSE
Address: 141 West Jackson Blvd, Suite 1135
City: Chicago
StateProv: IL
PostalCode: 60604
Country: US
ReferralServer: rwhois://rwhois.fdcservers.net:4321
NetRange: 67.159.0.0 - 67.159.63.255
CIDR: 67.159.0.0/18
NetName: FDCSERVERS
NetHandle: NET-67-159-0-0-1
Parent: NET-67-0-0-0-0
NetType: Direct Allocation
NameServer: NS3.FDCSERVERS.NET
NameServer: NS4.FDCSERVERS.NET
Comment:
RegDate: 2004-10-12
Updated: 2005-12-07
OrgAbuseHandle: ABUSE438-ARIN
OrgAbuseName: ABUSE department
OrgAbusePhone: +1-312-913-9304
OrgAbuseEmail: [email protected]
OrgNOCHandle: NOC1402-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-312-913-9304
OrgNOCEmail: [email protected]
OrgTechHandle: PKR5-ARIN
OrgTechName: Kral, Petr
OrgTechPhone: +1-312-933-1046
OrgTechEmail: [email protected]
# ARIN WHOIS database, last updated 2006-01-22 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
[whois.arin.net]
OrgName: FDC Servers.net, LLC
OrgID: FDCSE
Address: 141 West Jackson Blvd, Suite 1135
City: Chicago
StateProv: IL
PostalCode: 60604
Country: US
ReferralServer: rwhois://rwhois.fdcservers.net:4321
NetRange: 67.159.0.0 - 67.159.63.255
CIDR: 67.159.0.0/18
NetName: FDCSERVERS
NetHandle: NET-67-159-0-0-1
Parent: NET-67-0-0-0-0
NetType: Direct Allocation
NameServer: NS3.FDCSERVERS.NET
NameServer: NS4.FDCSERVERS.NET
Comment:
RegDate: 2004-10-12
Updated: 2005-12-07
OrgAbuseHandle: ABUSE438-ARIN
OrgAbuseName: ABUSE department
OrgAbusePhone: +1-312-913-9304
OrgAbuseEmail: [email protected]
OrgNOCHandle: NOC1402-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-312-913-9304
OrgNOCEmail: [email protected]
OrgTechHandle: PKR5-ARIN
OrgTechName: Kral, Petr
OrgTechPhone: +1-312-933-1046
OrgTechEmail: [email protected]
# ARIN WHOIS database, last updated 2006-01-22 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
fdcturkey.com yazdı
"Ekteki mesajý inceleyin lütfen. Bu nedenle ana IP adresiniz lisanssızroute edildi. Bu sorunu çözüp bilgilendirin"
That server has been lisanssızroute do to the activity listed below
Thanks
FDCservers.net
-----Original Message-----
From: Ronald E Johnson [mailto:[email protected]]
Sent: Monday, January 23, 2006 3:51 PM
To: [email protected]
Subject: Notice: Suspicious activity from your host 67.159.26.46 - Please
investigate
To Registered Network Point of Contact:
I am a member of the U.S. Geological Survey's Computer Security
Incident Response Team (CSIRT). A host on your network
(67.159.26.46) was the source of a significant scan or probe of our
network:
Date/Time Source: IP Port Target: IP Port Prot
------------------------------------------------------------
...
Jan 22 10:12 67.159.26.46 32784 130.118.5.134 22 tcp
Jan 22 10:12 67.159.26.46 32792 130.118.6.191 22 tcp
Jan 22 10:12 67.159.26.46 32817 130.118.6.101 22 tcp
Jan 22 10:12 67.159.26.46 32865 130.118.4.179 22 tcp
Jan 22 10:12 67.159.26.46 32879 130.118.7.74 22 tcp
Jan 22 10:12 67.159.26.46 32891 130.118.4.156 22 tcp
Jan 22 10:12 67.159.26.46 32895 130.118.10.81 22 tcp
Jan 22 10:12 67.159.26.46 32897 130.118.7.106 22 tcp
Jan 22 10:12 67.159.26.46 32901 130.118.10.23 22 tcp
Jan 22 10:12 67.159.26.46 32904 130.118.6.138 22 tcp
Jan 22 10:12 67.159.26.46 32909 130.118.7.90 22 tcp
Jan 22 10:12 67.159.26.46 32910 130.118.0.26 22 tcp
Jan 22 10:12 67.159.26.46 32998 130.118.5.74 22 tcp
Jan 22 10:12 67.159.26.46 33000 130.118.6.204 22 tcp
Jan 22 10:12 67.159.26.46 33014 130.118.6.127 22 tcp
Jan 22 10:12 67.159.26.46 33031 130.118.4.200 22 tcp
Jan 22 10:12 67.159.26.46 33059 130.118.6.237 22 tcp
Jan 22 10:12 67.159.26.46 33113 130.118.4.232 22 tcp
Jan 22 10:12 67.159.26.46 33127 130.118.4.41 22 tcp
Jan 22 10:12 67.159.26.46 33139 130.118.7.192 22 tcp
...Numerous attempts omitted...
Jan 22 10:22 67.159.26.46 60761 130.118.225.83 22 tcp
Jan 22 10:22 67.159.26.46 60763 130.118.212.84 22 tcp
Jan 22 10:22 67.159.26.46 60774 130.118.224.183 22 tcp
Jan 22 10:22 67.159.26.46 60782 130.118.212.136 22 tcp
Jan 22 10:22 67.159.26.46 60813 130.118.225.29 22 tcp
Jan 22 10:22 67.159.26.46 60822 130.118.214.234 22 tcp
Jan 22 10:22 67.159.26.46 60823 130.118.214.52 22 tcp
Jan 22 10:22 67.159.26.46 60828 130.118.214.106 22 tcp
Jan 22 10:22 67.159.26.46 60836 130.118.224.23 22 tcp
Jan 22 10:22 67.159.26.46 60836 130.118.226.74 22 tcp
Jan 22 10:22 67.159.26.46 60841 130.118.210.177 22 tcp
Jan 22 10:22 67.159.26.46 60846 130.118.210.215 22 tcp
Jan 22 10:22 67.159.26.46 60876 130.118.224.174 22 tcp
Jan 22 10:22 67.159.26.46 60935 130.118.215.58 22 tcp
Jan 22 10:22 67.159.26.46 60938 130.118.226.158 22 tcp
Jan 22 10:22 67.159.26.46 60964 130.118.226.11 22 tcp
Jan 22 10:23 67.159.26.46 34063 130.118.255.245 22 tcp
Jan 22 10:23 67.159.26.46 35050 130.118.255.244 22 tcp
Jan 22 10:23 67.159.26.46 36438 130.118.255.246 22 tcp
Jan 22 10:23 67.159.26.46 38462 130.118.255.247 22 tcp
...
(Times above are 24 hour in timezone EST: -0500 GMT)
Your immediate investigation of this incident is requested. Please send
a report to [email protected] of your findings and a summary of the
actions you are taking to prevent this from continuing/reoccurring.
This incident is being logged in the USGS security incident database.
Continued incidents from your network may result in your network address
space being blocked at the USGS network perimeter, and the
incident(s) reported to the Department of Homeland Security/US-CERT.
If you have any questions, address those to [email protected].
Thank you for your attention to this issue.
Regards,
USGS
Computer Security Incident Response Team (CSIRT)
[email protected]
------------------------------
[whois.arin.net]
OrgName: FDC Servers.net, LLC
OrgID: FDCSE
Address: 141 West Jackson Blvd, Suite 1135
City: Chicago
StateProv: IL
PostalCode: 60604
Country: US
ReferralServer: rwhois://rwhois.fdcservers.net:4321
NetRange: 67.159.0.0 - 67.159.63.255
CIDR: 67.159.0.0/18
NetName: FDCSERVERS
NetHandle: NET-67-159-0-0-1
Parent: NET-67-0-0-0-0
NetType: Direct Allocation
NameServer: NS3.FDCSERVERS.NET
NameServer: NS4.FDCSERVERS.NET
Comment:
RegDate: 2004-10-12
Updated: 2005-12-07
OrgAbuseHandle: ABUSE438-ARIN
OrgAbuseName: ABUSE department
OrgAbusePhone: +1-312-913-9304
OrgAbuseEmail: [email protected]
OrgNOCHandle: NOC1402-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-312-913-9304
OrgNOCEmail: [email protected]
OrgTechHandle: PKR5-ARIN
OrgTechName: Kral, Petr
OrgTechPhone: +1-312-933-1046
OrgTechEmail: [email protected]
# ARIN WHOIS database, last updated 2006-01-22 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
[whois.arin.net]
OrgName: FDC Servers.net, LLC
OrgID: FDCSE
Address: 141 West Jackson Blvd, Suite 1135
City: Chicago
StateProv: IL
PostalCode: 60604
Country: US
ReferralServer: rwhois://rwhois.fdcservers.net:4321
NetRange: 67.159.0.0 - 67.159.63.255
CIDR: 67.159.0.0/18
NetName: FDCSERVERS
NetHandle: NET-67-159-0-0-1
Parent: NET-67-0-0-0-0
NetType: Direct Allocation
NameServer: NS3.FDCSERVERS.NET
NameServer: NS4.FDCSERVERS.NET
Comment:
RegDate: 2004-10-12
Updated: 2005-12-07
OrgAbuseHandle: ABUSE438-ARIN
OrgAbuseName: ABUSE department
OrgAbusePhone: +1-312-913-9304
OrgAbuseEmail: [email protected]
OrgNOCHandle: NOC1402-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-312-913-9304
OrgNOCEmail: [email protected]
OrgTechHandle: PKR5-ARIN
OrgTechName: Kral, Petr
OrgTechPhone: +1-312-933-1046
OrgTechEmail: [email protected]
# ARIN WHOIS database, last updated 2006-01-22 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.