Abuse Reporting

  **        This is an automatic message.          **

  ** Please carefully read the information below.  **

You have contacted LACNIC due to some abuse activity (spam, hacking, etc), from an IP address allocated or assigned by LACNIC.

LACNIC is an RIR (Regional Internet Registry) for Latin America and the Caribbean region. What that means is that LACNIC is responsible for the IP address space and ASN allocation/assignment in this region. As mentioned, the IP address in question was allocated by LACNIC to some other organization or ISP in the region. So the abuse activity originated in that organization’s network, not in LACNIC.

You should query our whois database to get information about the source of this abuse activity and the appropriate network contact. LACNIC’s whois is available at: http://lacnic.net/cgi-bin/lacnic/whois or via the command line:

whois -h whois.lacnic.net [IP ADDRESS]

Important Note:

———————————————————————-

Addresses allocated to “Comite Gestor da Internet no Brasil” are those allocated to the Brazilian NIR (Registro BR), and in this case you might want to query their Whois database: http://registro.br/cgi-bin/nicbr/whois

whois -h whois.nic.br [IP ADDRESS]

———————————————————————

Please note that LACNIC has no authority to investigate spam, hacking or any other kind of network abuse activity committed by other organizations. Nor can we punish other organizations’ users.

More details are available at: http://lacnic.net/abuse

If this information did not help you, please reply this message to hostmaster@lacnic.net and keep the subject line.

Regards,

LACNIC Hostmaster

Dec 14 10:22:24 mx sshd[4512]: Did not receive identification string from 168.243.14.11
Dec 14 10:56:38 mx sshd[4682]: Invalid user admin from 168.243.14.11
Dec 14 10:56:39 mx sshd[4684]: Invalid user admin from 168.243.14.11
Dec 14 10:56:39 mx sshd[4686]: Invalid user admin from 168.243.14.11
Dec 14 10:56:40 mx sshd[4688]: Invalid user admin from 168.243.14.11
Dec 14 10:56:40 mx sshd[4690]: Invalid user admin from 168.243.14.11

OrgName:    Latin American and Caribbean IP address Regional Registry
OrgID:      LACNIC
Address:    Rambla Republica de Mexico 6125
City:       Montevideo
StateProv:
PostalCode: 11400
Country:    UY

ReferralServer: whois://whois.lacnic.net

NetRange:   168.243.0.0 - 168.243.255.255
CIDR:       168.243.0.0/16
NetName:    LACNIC-ERX-168-243-0-0
NetHandle:  NET-168-243-0-0-1
Parent:     NET-168-0-0-0-0
NetType:    Transferred to LACNIC
Comment:    This IP address range is under LACNIC responsibility
Comment:    for further allocations to users in LACNIC region.
Comment:    Please see http://www.lacnic.net/ for further details,
Comment:    or check the WHOIS server located at whois.lacnic.net
RegDate:    2003-08-20
Updated:    2003-08-20

OrgTechHandle: LACNIC-ARIN
OrgTechName:   LACNIC Whois Info
OrgTechPhone:
OrgTechEmail:  whois-contact@lacnic.net

# ARIN WHOIS database, last updated 2007-12-13 19:10
# Enter ? for additional hints on searching ARIN’s WHOIS database.
Found a referral to whois.lacnic.net.
% Joint Whois - whois.lacnic.net
%  This server accepts single ASN, IPv4 or IPv6 queries
% Copyright LACNIC lacnic.net
%  The data below is provided for information purposes
%  and to assist persons in obtaining information about or
%  related to AS and IP numbers registrations
%  By submitting a whois query, you agree to use this data
%  only for lawful purposes.
%  2007-12-14 19:09:43 (BRST -02:00)

inetnum:     168.243/16
status:      assigned
owner:       SVNet
ownerid:     SV-SVNE1-LACNIC
responsible: Rafael Ibarra
address:     Bulevar Los Pr▒ceres, 1,
address:     0 - San Salvador - SS
country:     SV
phone:       +503  2106636 []
owner-c:     RLI
tech-c:      RLI
inetrev:     168.243/16
nserver:     CIR.RED.SV
nsstat:      20071213 AA
nslastaa:    20071213
created:     19940920
changed:     19960708

nic-hdl:     RLI
person:      Rafael Ibarra
e-mail:      ribarra@DI.UCA.EDU.SV
address:     Bulevar Los Pr▒ceres, 0,
address:     0 - San Salvador - SS
country:     SV
phone:       +503  2106636 []
created:     20040422
changed:     20040422