Proxy Attack Summaries 2016/02/01 thru 2016/02/29

Sorted by Source Network Range
Sorted by Total Connections From Source Network
Sorted by Source Country
Sorted by Total Connections From Source Country
Counts by fetch target URL.
Counts by fetch target URL - sorted by URL in rev. domain order.

Sorted by Source Network Range


Source Network Registered owner Local Target IP or range Target Ports
10.0.0.0 - 10.255.255.255 Internet Assigned Numbers Authority Los Angeles, CA, US attacked 132.235.1.14 for ports 22x2
37.59.0.0 - 37.59.63.255 OVH SAS Dedicated servers http://www.ovh.com OVH ISP FR attacked MULTIPLE-IPs for ports 22x24
80.64.168.0 - 80.64.175.255 Siberian Networks RU attacked MULTIPLE-IPs for ports 22x13
82.102.172.0 - 82.102.175.255 NAT pool for smtp at Rosh HaAyin IL attacked 132.235.1.14 for ports 22
91.236.74.0 - 91.236.75.255 Przedsiebiorstwo Uslug Specjalistycznych ELAN mgr inz. Andrzej Niechcial 26-065 Piekoszˇw, ul. Jarz?binowa 50 PL attacked MULTIPLE-IPs for ports 22x10
162.244.8.0 - 162.244.15.255 Power Up Hosting, Inc. Los Angeles, CA, US attacked MULTIPLE-IPs for ports 22x20
167.114.199.80 - 167.114.199.87 OVH Hosting, Inc. Montreal, QC, CA attacked 132.235.1.14 for ports 22x12
182.84.0.0 - 182.87.255.255 CHINANET JIANGXI PROVINCE NETWORK China Telecom No.31,jingrong street CN attacked MULTIPLE-IPS for ports 22x12
195.154.0.0 - 195.154.127.255 ONLINE SAS 8 rue de la ville l'eveque 75008 PARIS 8, rue de la ville l'eveque 75008 Paris FR attacked MULTIPLE-IPs for ports 22x700
195.154.128.0 - 195.154.255.255 ONLINE SAS 8 rue de la ville l'eveque 75008 PARIS 8, rue de la ville l'eveque 75008 Paris FR attacked 132.235.1.14 for ports 22x6
209.126.96.0 - 209.126.127.255 server4you Inc. Saint Louis, MO, US attacked 132.235.1.13 for ports 22x4
216.105.170.0 - 216.105.170.255 LADEDICATED Chicago Chicago, IL, US attacked 132.235.1.2 for ports 22

Sorted By Total Connections From Source Network

Count Source Network Registered Owner Local Target IP or Range Target Ports
1 82.102.172.0 - 82.102.175.255 NAT pool for smtp at Rosh HaAyin IL attacked 132.235.1.14 for ports 22
1 216.105.170.0 - 216.105.170.255 LADEDICATED Chicago Chicago, IL, US attacked 132.235.1.2 for ports 22
2 10.0.0.0 - 10.255.255.255 Internet Assigned Numbers Authority Los Angeles, CA, US attacked 132.235.1.14 for ports 22x2
4 209.126.96.0 - 209.126.127.255 server4you Inc. Saint Louis, MO, US attacked 132.235.1.13 for ports 22x4
6 195.154.128.0 - 195.154.255.255 ONLINE SAS 8 rue de la ville l'eveque 75008 PARIS 8, rue de la ville l'eveque 75008 Paris FR attacked 132.235.1.14 for ports 22x6
10 91.236.74.0 - 91.236.75.255 Przedsiebiorstwo Uslug Specjalistycznych ELAN mgr inz. Andrzej Niechcial 26-065 Piekoszˇw, ul. Jarz?binowa 50 PL attacked MULTIPLE-IPs for ports 22x10
12 167.114.199.80 - 167.114.199.87 OVH Hosting, Inc. Montreal, QC, CA attacked 132.235.1.14 for ports 22x12
12 182.84.0.0 - 182.87.255.255 CHINANET JIANGXI PROVINCE NETWORK China Telecom No.31,jingrong street CN attacked MULTIPLE-IPS for ports 22x12
13 80.64.168.0 - 80.64.175.255 Siberian Networks RU attacked MULTIPLE-IPs for ports 22x13
20 162.244.8.0 - 162.244.15.255 Power Up Hosting, Inc. Los Angeles, CA, US attacked MULTIPLE-IPs for ports 22x20
24 37.59.0.0 - 37.59.63.255 OVH SAS Dedicated servers http://www.ovh.com OVH ISP FR attacked MULTIPLE-IPs for ports 22x24
700 195.154.0.0 - 195.154.127.255 ONLINE SAS 8 rue de la ville l'eveque 75008 PARIS 8, rue de la ville l'eveque 75008 Paris FR attacked MULTIPLE-IPs for ports 22x700

Summarized By Source Country

Source Country Local Target IP or Range Target Ports
CA attacked 132.235.1.14 for ports 22x12
CN attacked MULTIPLE-IPS for ports 22x12
FR attacked MULTIPLE-IPs for ports 22x730
IL attacked 132.235.1.14 for ports 22
PL attacked MULTIPLE-IPs for ports 22x10
RU attacked MULTIPLE-IPs for ports 22x13
US attacked MULTIPLE-IPs for ports 22x27

Summarized By Source Country

Total Connection Counts Source Country Local Target IP or Range Target Ports
1 IL attacked 132.235.1.14 for ports 22
10 PL attacked MULTIPLE-IPs for ports 22x10
12 CA attacked 132.235.1.14 for ports 22x12
12 CN attacked MULTIPLE-IPS for ports 22x12
13 RU attacked MULTIPLE-IPs for ports 22x13
27 US attacked MULTIPLE-IPs for ports 22x27
730 FR attacked MULTIPLE-IPs for ports 22x730

Summarized By Target URL to Fetch - sorted by attempts made

Count Target host name GET/PUT/etc Target URL to Fetch
1
1 /
1 167.114.199.87:80
1 173.223.64.45:80
1 198.41.202.157:443
1 23.212.207.239:80
1 54.239.26.128:80
1 74.125.224.113:80
1 http://search.yahoo.com/search?p=lenovo
1 http://www.bing.com/search?q=lenovo
1 http://www.bing.com/search?q=wikipedia
1 http://www.google.com/search?q=wikipedia
1 http://www.stopforumspam.com/ipcheck/132.235.1.13
1 http://www.stopforumspam.com/ipcheck/132.235.1.56
1 http://www.stopforumspam.com/ipcheck/132.235.1.59
1 http://www.stopforumspam.com/ipcheck/132.235.1.64
1 http://www.stopforumspam.com/ipcheck/132.235.1.67
1 http://www.stopforumspam.com/ipcheck/132.235.1.81
1 http://www.stopforumspam.com/ipcheck/132.235.1.82
1 http://www.stopforumspam.com/ipcheck/132.235.1.9
1 http://www.stopforumspam.com/ipcheck/132.235.2.1
1 https://www.yandex.com/search/?text=bing
1 https://www.yandex.com/search/?text=lenovo
2 esleeth
2 http://search.yahoo.com/search?p=bing
2 http://www.bing.com/search?q=bing
2 http://www.google.com/search?q=amazon
2 http://www.google.com/search?q=bing
2 http://www.google.com/search?q=dugduggo
2 http://www.stopforumspam.com/ipcheck/132.235.1.2
2 http://www.stopforumspam.com/ipcheck/132.235.1.55
2 http://www.stopforumspam.com/ipcheck/132.235.1.62
2 http://www.stopforumspam.com/ipcheck/132.235.1.73
2 https://www.yandex.com/search/?text=amazon
2 https://www.yandex.com/search/?text=dugduggo
3 209.99.40.223:80
3 http://search.yahoo.com/search?p=amazon
3 http://search.yahoo.com/search?p=dugduggo
3 http://www.bing.com/search?q=dugduggo
3 http://www.stopforumspam.com/ipcheck/132.235.1.14
3 http://www.stopforumspam.com/ipcheck/132.235.1.68
4 104.244.42.198:443
4 208.82.237.2:80
4 208.82.238.146:80
4 23.206.37.5:80
4 http://www.bing.com/search?q=amazon
4 http://www.google.com/search?q=lenovo
5 74.125.224.18:80
5 74.125.239.146:80
6 104.101.176.33:80
6 104.244.42.70:443
6 104.28.16.9:80
6 104.31.84.236:80
6 104.94.163.75:80
6 173.194.40.147:80
6 18.181.0.43:80
6 193.178.223.25:80
6 198.41.203.157:443
6 204.246.56.80:80
6 208.82.237.130:80
6 209.227.234.202:80
6 212.27.63.114:80
6 213.180.204.62:443
6 46.165.197.129:80
6 49.129.255.101:80
6 50.56.126.107:80
6 51.254.136.88:80
6 54.86.94.204:80
6 64.15.148.105:80
6 64.62.216.151:80
6 67.222.35.66:80
6 72.52.99.44:80
6 87.106.158.3:80
6 94.23.209.142:80
6 http://azenv.net/
6 http://birdingonthe.net/cgi-bin/env.pl
6 http://jagerman.com/env.cgi
6 http://jaliuzi.com/azenv.php
6 http://judge2.gear.host/
6 http://pascal.hoez.free.fr/azenv.php
6 http://proxydetect.com/
6 http://scripts.mit.edu/~jbarnold/demo/env.pl
6 http://stoutdata.com/checker/proxyjudge.php
6 http://www.30tech.com/iptest.php
6 http://www.babaip.com/
6 http://www.bdsmpichunter.com/dde32.php
6 http://www.cooleasy.com/azenv.php
6 http://www.dvdshop.it/cgi-bin/ev.pl
6 http://www.energoautomatika.ru/opg.php
6 http://www.ingosander.net/azenv.php
6 http://www.knowops.com/cgi-bin/textenv.pl
6 http://www.meow.org.uk/cgi-bin/env.pl
6 http://www.mesregies.com/azz.php
6 http://www.stilllistener.com/checkpoint1/ssi/
6 http://www2t.biglobe.ne.jp/~take52/test/env.cgi
7 http://toolbarqueries.google.com/tbr?client=navclient-auto&ch=78804486762&features=Rank&q=info:h
7 http://whatismyipaddress.com/proxy-check
7 https://www.whatismyip.com/
8 162.249.125.79:80
8 66.96.147.137:80
8 http://www.sbjudge3.com/ip4.php
9 188.125.66.104:80
10 54.239.17.7:80
11 172.229.179.46:80
11 179.60.192.36:443
11 204.79.197.200:80
11 208.82.238.226:80
11 31.13.93.36:443
11 54.239.17.6:80
11 http://www.anonymousproxylist.net/azenv2.php
12 199.16.156.43:443
12 :80
12 http://dx.doi.org/
13 localhost:25
15 208.79.237.176:80
15 http://www.sbjudge1.com/ip4.php
22 http://www.amazon.com
22 http://www.ebay.com/
22 https://m.facebook.com/
22 https://mobile.twitter.com/i/guest
23 195.20.205.9:80
25 http://bham.craigslist.org/search/sss/?excats=&sort=date&cat_id=150%2C169&cat_id=149%2C162&cat_i
34 http://proxyjudge.us/judge.php
40 45.33.54.195:80

Summarized By Target URL to Fetch - sorted in reverse domain order

Target host name Count GET/PUT/etc Target URL to Fetch
1
/ 1
104.101.176.33:80 6
104.244.42.198:443 4
104.244.42.70:443 6
104.28.16.9:80 6
104.31.84.236:80 6
104.94.163.75:80 6
162.249.125.79:80 8
167.114.199.87:80 1
172.229.179.46:80 11
173.194.40.147:80 6
173.223.64.45:80 1
179.60.192.36:443 11
18.181.0.43:80 6
188.125.66.104:80 9
193.178.223.25:80 6
195.20.205.9:80 23
198.41.202.157:443 1
198.41.203.157:443 6
199.16.156.43:443 12
204.246.56.80:80 6
204.79.197.200:80 11
208.79.237.176:80 15
208.82.237.130:80 6
208.82.237.2:80 4
208.82.238.146:80 4
208.82.238.226:80 11
209.227.234.202:80 6
209.99.40.223:80 3
212.27.63.114:80 6
213.180.204.62:443 6
23.206.37.5:80 4
23.212.207.239:80 1
31.13.93.36:443 11
45.33.54.195:80 40
46.165.197.129:80 6
49.129.255.101:80 6
50.56.126.107:80 6
51.254.136.88:80 6
54.239.17.6:80 11
54.239.17.7:80 10
54.239.26.128:80 1
54.86.94.204:80 6
64.15.148.105:80 6
64.62.216.151:80 6
66.96.147.137:80 8
67.222.35.66:80 6
72.52.99.44:80 6
74.125.224.113:80 1
74.125.224.18:80 5
74.125.239.146:80 5
87.106.158.3:80 6
94.23.209.142:80 6
:80 12
esleeth 2
http://azenv.net/ 6
http://bham.craigslist.org/search/sss/?excats=&sort=date&cat_id=150%2C169&cat_id=149%2C162&cat_i 25
http://birdingonthe.net/cgi-bin/env.pl 6
http://dx.doi.org/ 12
http://jagerman.com/env.cgi 6
http://jaliuzi.com/azenv.php 6
http://judge2.gear.host/ 6
http://pascal.hoez.free.fr/azenv.php 6
http://proxydetect.com/ 6
http://proxyjudge.us/judge.php 34
http://scripts.mit.edu/~jbarnold/demo/env.pl 6
http://search.yahoo.com/search?p=amazon 3
http://search.yahoo.com/search?p=bing 2
http://search.yahoo.com/search?p=dugduggo 3
http://search.yahoo.com/search?p=lenovo 1
http://stoutdata.com/checker/proxyjudge.php 6
http://toolbarqueries.google.com/tbr?client=navclient-auto&ch=78804486762&features=Rank&q=info:h 7
http://whatismyipaddress.com/proxy-check 7
http://www.30tech.com/iptest.php 6
http://www.amazon.com 22
http://www.anonymousproxylist.net/azenv2.php 11
http://www.babaip.com/ 6
http://www.bdsmpichunter.com/dde32.php 6
http://www.bing.com/search?q=amazon 4
http://www.bing.com/search?q=bing 2
http://www.bing.com/search?q=dugduggo 3
http://www.bing.com/search?q=lenovo 1
http://www.bing.com/search?q=wikipedia 1
http://www.cooleasy.com/azenv.php 6
http://www.dvdshop.it/cgi-bin/ev.pl 6
http://www.ebay.com/ 22
http://www.energoautomatika.ru/opg.php 6
http://www.google.com/search?q=amazon 2
http://www.google.com/search?q=bing 2
http://www.google.com/search?q=dugduggo 2
http://www.google.com/search?q=lenovo 4
http://www.google.com/search?q=wikipedia 1
http://www.ingosander.net/azenv.php 6
http://www.knowops.com/cgi-bin/textenv.pl 6
http://www.meow.org.uk/cgi-bin/env.pl 6
http://www.mesregies.com/azz.php 6
http://www.sbjudge1.com/ip4.php 15
http://www.sbjudge3.com/ip4.php 8
http://www.stilllistener.com/checkpoint1/ssi/ 6
http://www.stopforumspam.com/ipcheck/132.235.1.13 1
http://www.stopforumspam.com/ipcheck/132.235.1.14 3
http://www.stopforumspam.com/ipcheck/132.235.1.2 2
http://www.stopforumspam.com/ipcheck/132.235.1.55 2
http://www.stopforumspam.com/ipcheck/132.235.1.56 1
http://www.stopforumspam.com/ipcheck/132.235.1.59 1
http://www.stopforumspam.com/ipcheck/132.235.1.62 2
http://www.stopforumspam.com/ipcheck/132.235.1.64 1
http://www.stopforumspam.com/ipcheck/132.235.1.67 1
http://www.stopforumspam.com/ipcheck/132.235.1.68 3
http://www.stopforumspam.com/ipcheck/132.235.1.73 2
http://www.stopforumspam.com/ipcheck/132.235.1.81 1
http://www.stopforumspam.com/ipcheck/132.235.1.82 1
http://www.stopforumspam.com/ipcheck/132.235.1.9 1
http://www.stopforumspam.com/ipcheck/132.235.2.1 1
http://www2t.biglobe.ne.jp/~take52/test/env.cgi 6
https://m.facebook.com/ 22
https://mobile.twitter.com/i/guest 22
https://www.whatismyip.com/ 7
https://www.yandex.com/search/?text=amazon 2
https://www.yandex.com/search/?text=bing 1
https://www.yandex.com/search/?text=dugduggo 2
https://www.yandex.com/search/?text=lenovo 1
localhost:25 13