ip 186.2.160.129

crazysmall · 2019-10-28 5:27 am

ip address 186.2.160.129 is included in the spam list. However this ip belongs to ddos-guard.net and adding this ip to the spam list limits the registration on the forum for legal users

crazysmall · 2019-10-28 5:38 am

P.S. ip address 186.2.160.129 entered in the spam list from October 20.

Alex Kemp · 2019-10-28 11:43 am

This is the SFS IP-check info (20-Oct-19 21:59). No evidence, and thus should be immediately removed if removal requested (I've sent email & PM to pedigree).

Whois shows ddos-guard.net to be registered within Moscow:-

~$ whois ddos-guard.net
…
Domain name: DDOS-GUARD.NET
Registry Domain ID: 1654458116_DOMAIN_NET-VRSN
Registrar WHOIS Server: whois.reg.com
Registrar URL: https://www.reg.com
Registrar URL: https://www.reg.ru
Updated Date: 2019-02-04T09:38:28Z
Creation Date: 2011-05-04T22:05:22Z
Registrar Registration Expiration Date: 2022-05-04T22:05:22Z
Registrar: Registrar of domain names REG.RU LLC
Registrar IANA ID: 1606
Registrar Abuse Contact Email: abuse@reg.ru
Registrar Abuse Contact Phone: +7.4955801111
Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
Registrant ID: 
Registrant Name: Protection of Private Person
Registrant Street: PO box 87, REG.RU Protection Service
Registrant City: Moscow
Registrant State/Province:
Registrant Postal Code: 123007
Registrant Country: RU
Registrant Phone: +7.4955801111
Registrant Phone Ext:
Registrant Fax: +7.4955801111
Registrant Fax Ext:
Registrant Email: DDOS-GUARD.NET@regprivate.ru
…
Name Server: ns1.ddos-guard.net (186.2.170.100)
Name Server: ns2.ddos-guard.net (185.129.100.200)

Notice that no IP is registered for them within the whois.

host ddos-guard.net
ddos-guard.net has address 186.2.163.99
ddos-guard.net mail is handled by 10 mx3.ddos-guard.net.
ddos-guard.net mail is handled by 10 mx2.ddos-guard.net.
ddos-guard.net mail is handled by 10 mx1.ddos-guard.net.

Now doing a forward lookup on that IP:

~$ whois 186.2.163.99
…
inetnum:     186.2.162/23
status:      reallocated
owner:       DDoS-Guard.net
ownerid:     RU-DDOS-LACNIC
responsible: Alexander Golovin
address:     Lenina str., 44/6, of. 29, , 
address:      - Rostov-on-Don - 
country:     RU
phone:       +7 495 2150387 []
…
inetnum-up:  186.2.160/20

No ASN reported throughout those lookups. The easiest way to find that is via Team Cymru:-

~$ whois -h whois.cymru.com " -v 186.2.163.99"
AS      | IP               | BGP Prefix          | CC | Registry | Allocated  | AS Name
262254  | 186.2.163.99     | 186.2.163.0/24      | BZ | lacnic   | 2012-11-21 | DANCOM LTD, BZ

(this is the same ASN as reported in the IP-check as at the very top)

Both the SFS Aggregator page + my Aggregator page cannot give direct results with that ASN, so referring to CIDR-Report shows that the original company was:

DDOS-GUARD CORP. of Belize (Evgeniy Marchenko)

Also from CIDR is an associated ASN57724 DDOS-GUARD, RU, which is DDOS-GUARD LTD of Rostov-on-Don.

So, a whole bunch of stuff to checkout. Good luck.

crazysmall · 2019-10-28 12:11 pm

Thank you for your quick response, hope to remove this ip from your spam database as soon as possible.

pedigree · 2019-11-02 3:51 am

it was removed a couple of days ago

#1 2019-10-28 5:27 am

ip 186.2.160.129

#2 2019-10-28 5:38 am

Re: ip 186.2.160.129

#3 2019-10-28 11:43 am

Re: ip 186.2.160.129

#4 2019-10-28 12:11 pm

Re: ip 186.2.160.129

#5 2019-11-02 3:51 am

Re: ip 186.2.160.129

Board footer