I run a personal linux web server, with ssh logins setup, as well as a script I put together to drop all traffic from a IP after 30 failed SSH login attempts. Normally I get people trying a bunch of random usernames but generally not in the US, it's entertaining to see this happen actually...
Anyways I found one that happens to be roadrunner. Should I bother calling the abuse phone number and complaining or email...? It is another unix/linux box at that IP address so I'm guessing it's not a virus...
whois 66.65.x.x
OrgName: Road Runner HoldCo LLC
OrgID: RRNY
Address: 13241 Woodland Park Road
City: Herndon
StateProv: VA
PostalCode: 20171
Country: US
ReferralServer: rwhois://ipmt.rr.com:4321
NetRange: 66.65.0.0 - 66.65.255.255
CIDR: 66.65.0.0/16
NetName: RR-NYC-1BLK
NetHandle: NET-66-65-0-0-1
Parent: NET-66-0-0-0-0
NetType: Direct Allocation
NameServer: DNS1.RR.COM
NameServer: DNS2.RR.COM
NameServer: DNS3.RR.COM
NameServer: DNS4.RR.COM
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate: 2001-01-19
Updated: 2002-11-25
RTechHandle: ZS30-ARIN
RTechName: ServiceCo LLC
RTechPhone: +1-703-345-3416
RTechEmail: abuse@rr.com
OrgAbuseHandle: ABUSE10-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-703-345-3416
OrgAbuseEmail: abuse@rr.com
OrgTechHandle: IPTEC-ARIN
OrgTechName: IP Tech
OrgTechPhone: +1-703-345-3416
OrgTechEmail: abuse@rr.com
Anyways I found one that happens to be roadrunner. Should I bother calling the abuse phone number and complaining or email...? It is another unix/linux box at that IP address so I'm guessing it's not a virus...
whois 66.65.x.x
OrgName: Road Runner HoldCo LLC
OrgID: RRNY
Address: 13241 Woodland Park Road
City: Herndon
StateProv: VA
PostalCode: 20171
Country: US
ReferralServer: rwhois://ipmt.rr.com:4321
NetRange: 66.65.0.0 - 66.65.255.255
CIDR: 66.65.0.0/16
NetName: RR-NYC-1BLK
NetHandle: NET-66-65-0-0-1
Parent: NET-66-0-0-0-0
NetType: Direct Allocation
NameServer: DNS1.RR.COM
NameServer: DNS2.RR.COM
NameServer: DNS3.RR.COM
NameServer: DNS4.RR.COM
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate: 2001-01-19
Updated: 2002-11-25
RTechHandle: ZS30-ARIN
RTechName: ServiceCo LLC
RTechPhone: +1-703-345-3416
RTechEmail: abuse@rr.com
OrgAbuseHandle: ABUSE10-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-703-345-3416
OrgAbuseEmail: abuse@rr.com
OrgTechHandle: IPTEC-ARIN
OrgTechName: IP Tech
OrgTechPhone: +1-703-345-3416
OrgTechEmail: abuse@rr.com
