Proxy Attack Summaries 2015/12/02 thru 2015/12/30

Sorted by Source Network Range
Sorted by Total Connections From Source Network
Sorted by Source Country
Sorted by Total Connections From Source Country
Counts by fetch target URL.
Counts by fetch target URL - sorted by URL in rev. domain order.

Sorted by Source Network Range


Source Network Registered owner Local Target IP or range Target Ports
5.135.242.240 - 5.135.242.247 Hosting2 Czech Republic Vaclavska 4045 43003 Chomutov CZ OVH.CZ s.r.o. Vaclavske namesti 64/807 CZ attacked MULTIPLE-IPS for ports 22x54
37.59.0.0 - 37.59.63.255 OVH SAS Dedicated servers http://www.ovh.com OVH ISP FR attacked MULTIPLE-IPs for ports 22x60
52.0.0.0 - 52.31.255.255 Amazon Technologies Inc. Seattle, WA, US attacked MULTIPLE-IPs for ports 22x883
73.174.0.0 - 73.174.255.255 Comcast IP Services, L.L.C. Mount Laurel, NJ, US attacked MULTIPLE-IPS for ports 22x2
91.236.74.0 - 91.236.75.255 Przedsiebiorstwo Uslug Specjalistycznych ELAN mgr inz. Andrzej Niechcial 26-065 Piekoszów, ul. Jarz?binowa 50 PL attacked MULTIPLE-IPs for ports 22x42
100.0.0.0 - 100.41.255.255 MCI Communications Services, Inc. d/b/a Verizon Business Ashburn, VA, US attacked MULTIPLE-IPS for ports 22x2
104.255.64.0 - 104.255.71.255 VolumeDrive Clarks Summit, PA, US attacked MULTIPLE-IPs for ports 22x36
106.75.0.0 - 106.75.255.255 Shanghai UCloud Information Technology Company Limited Beijing, China 2nd Floor 3rd Building No.200 EAST Guoding Road ,Yangpu District,Shanghai 2nd Floor 3rd Building No.200 EAST Guoding CN attacked MULTIPLE-IPS for ports 22x8
107.152.128.0 - 107.152.255.255 B2 Net Solutions Inc. Buffalo, NY, US attacked MULTIPLE-IPs for ports 22x140
109.61.16.0 - 109.61.17.255 Ekabel BP XIV-XVI DYN HU-Dravanet HU attacked MULTIPLE-IPS for ports 22x18
117.6.0.0 - 117.6.255.255 Dai IP cho dich vu ADSL tai HCM Viettel Corporation Internet service/exchange provider VN attacked MULTIPLE-IPS for ports 22x4
173.48.0.0 - 173.63.255.255 MCI Communications Services, Inc. d/b/a Verizon Business Ashburn, VA, US attacked MULTIPLE-IPS for ports 22x4
185.68.111.0 - 185.68.111.255 PROFESIONALHOSTING-DC2 ES attacked MULTIPLE-IPs for ports 22x76
185.106.92.0 - 185.106.95.255 MediaServicePlus Ltd. Novorogozhskaya 32c3, 212 109029 Moscow RUSSIAN FEDERATION Yaroslavskoe shosse, 123 RU attacked MULTIPLE-IPS for ports 22x2
195.154.128.0 - 195.154.255.255 ONLINE SAS 8 rue de la ville l'eveque 75008 PARIS 8, rue de la ville l'eveque 75008 Paris FR attacked MULTIPLE-IPs for ports 22x40
199.19.104.0 - 199.19.111.255 VolumeDrive Clarks Summit, PA, US attacked MULTIPLE-IPs for ports 22x28

Sorted By Total Connections From Source Network

Count Source Network Registered Owner Local Target IP or Range Target Ports
2 73.174.0.0 - 73.174.255.255 Comcast IP Services, L.L.C. Mount Laurel, NJ, US attacked MULTIPLE-IPS for ports 22x2
2 100.0.0.0 - 100.41.255.255 MCI Communications Services, Inc. d/b/a Verizon Business Ashburn, VA, US attacked MULTIPLE-IPS for ports 22x2
2 185.106.92.0 - 185.106.95.255 MediaServicePlus Ltd. Novorogozhskaya 32c3, 212 109029 Moscow RUSSIAN FEDERATION Yaroslavskoe shosse, 123 RU attacked MULTIPLE-IPS for ports 22x2
4 117.6.0.0 - 117.6.255.255 Dai IP cho dich vu ADSL tai HCM Viettel Corporation Internet service/exchange provider VN attacked MULTIPLE-IPS for ports 22x4
4 173.48.0.0 - 173.63.255.255 MCI Communications Services, Inc. d/b/a Verizon Business Ashburn, VA, US attacked MULTIPLE-IPS for ports 22x4
8 106.75.0.0 - 106.75.255.255 Shanghai UCloud Information Technology Company Limited Beijing, China 2nd Floor 3rd Building No.200 EAST Guoding Road ,Yangpu District,Shanghai 2nd Floor 3rd Building No.200 EAST Guoding CN attacked MULTIPLE-IPS for ports 22x8
18 109.61.16.0 - 109.61.17.255 Ekabel BP XIV-XVI DYN HU-Dravanet HU attacked MULTIPLE-IPS for ports 22x18
28 199.19.104.0 - 199.19.111.255 VolumeDrive Clarks Summit, PA, US attacked MULTIPLE-IPs for ports 22x28
36 104.255.64.0 - 104.255.71.255 VolumeDrive Clarks Summit, PA, US attacked MULTIPLE-IPs for ports 22x36
40 195.154.128.0 - 195.154.255.255 ONLINE SAS 8 rue de la ville l'eveque 75008 PARIS 8, rue de la ville l'eveque 75008 Paris FR attacked MULTIPLE-IPs for ports 22x40
42 91.236.74.0 - 91.236.75.255 Przedsiebiorstwo Uslug Specjalistycznych ELAN mgr inz. Andrzej Niechcial 26-065 Piekoszów, ul. Jarz?binowa 50 PL attacked MULTIPLE-IPs for ports 22x42
54 5.135.242.240 - 5.135.242.247 Hosting2 Czech Republic Vaclavska 4045 43003 Chomutov CZ OVH.CZ s.r.o. Vaclavske namesti 64/807 CZ attacked MULTIPLE-IPS for ports 22x54
60 37.59.0.0 - 37.59.63.255 OVH SAS Dedicated servers http://www.ovh.com OVH ISP FR attacked MULTIPLE-IPs for ports 22x60
76 185.68.111.0 - 185.68.111.255 PROFESIONALHOSTING-DC2 ES attacked MULTIPLE-IPs for ports 22x76
140 107.152.128.0 - 107.152.255.255 B2 Net Solutions Inc. Buffalo, NY, US attacked MULTIPLE-IPs for ports 22x140
883 52.0.0.0 - 52.31.255.255 Amazon Technologies Inc. Seattle, WA, US attacked MULTIPLE-IPs for ports 22x883

Summarized By Source Country

Source Country Local Target IP or Range Target Ports
CN attacked MULTIPLE-IPS for ports 22x8
CZ attacked MULTIPLE-IPS for ports 22x54
ES attacked MULTIPLE-IPs for ports 22x76
FR attacked MULTIPLE-IPs for ports 22x100
HU attacked MULTIPLE-IPS for ports 22x18
PL attacked MULTIPLE-IPs for ports 22x42
RU attacked MULTIPLE-IPS for ports 22x2
US attacked MULTIPLE-IPs for ports 22x1095
VN attacked MULTIPLE-IPS for ports 22x4

Summarized By Source Country

Total Connection Counts Source Country Local Target IP or Range Target Ports
2 RU attacked MULTIPLE-IPS for ports 22x2
4 VN attacked MULTIPLE-IPS for ports 22x4
8 CN attacked MULTIPLE-IPS for ports 22x8
18 HU attacked MULTIPLE-IPS for ports 22x18
42 PL attacked MULTIPLE-IPs for ports 22x42
54 CZ attacked MULTIPLE-IPS for ports 22x54
76 ES attacked MULTIPLE-IPs for ports 22x76
100 FR attacked MULTIPLE-IPs for ports 22x100
1095 US attacked MULTIPLE-IPs for ports 22x1095

Summarized By Target URL to Fetch - sorted by attempts made

Count Target host name GET/PUT/etc Target URL to Fetch
1 173.194.112.115:80
1 208.82.238.146:80
1 http://www.stopforumspam.com/ipcheck/132.235.1.2
1 http://www.stopforumspam.com/ipcheck/132.235.1.247
1 http://www.stopforumspam.com/ipcheck/132.235.1.3
1 http://www.stopforumspam.com/ipcheck/132.235.1.54
1 http://www.stopforumspam.com/ipcheck/132.235.1.56
1 http://www.stopforumspam.com/ipcheck/132.235.1.57
1 http://www.stopforumspam.com/ipcheck/132.235.1.63
1 http://www.stopforumspam.com/ipcheck/132.235.1.67
1 http://www.stopforumspam.com/ipcheck/132.235.2.1
2 104.79.145.109:80
2 141.8.225.237:80
2 173.223.64.45:80
2 199.59.149.202:443
2 200
2 208.82.238.242:80
2 216.58.216.228:80
2 31.13.69.228:443
2 46.165.197.129:80
2 49.129.255.101:80
2 http://azenv.net
2 http://proxyjudge.biz/
2 http://proxyjudge.us/azenv.php
2 http://www.bdsmpichunter.com/dde32.php
2 http://www.stopforumspam.com/ipcheck/132.235.1.59
2 http://www.stopforumspam.com/ipcheck/132.235.1.65
2 http://www.stopforumspam.com/ipcheck/132.235.1.73
2 http://www2t.biglobe.ne.jp/~take52/test/env.cgi
3 104.244.42.198:443
3 104.28.16.9:80
3 104.31.84.236:80
3 208.82.238.226:80
3 23.0.32.33:80
3 23.5.107.20:80
3 74.125.71.104:80
4 54.239.17.7:80
4 http://judge2.gear.host/
5 162.249.125.79:80
5 http://search.yahoo.com/search?p=wikipedia
5 http://www.sbjudge3.com/ip4.php
6 209.236.71.61:80
6 69.90.211.44:80
7 http://search.yahoo.com/search?p=amazon
7 http://search.yahoo.com/search?p=lenovo
8 /
8 http://search.yahoo.com/search?p=dugduggo
9 199.16.156.107:443
9 208.82.238.130:80
9 209.99.40.223:80
9 72.52.99.44:80
9 74.125.136.106:80
9 http://search.yahoo.com/search?p=bing
10 104.244.42.70:443
10 23.193.32.33:80
10 23.77.208.160:80
10 http://www.bing.com/search?q=dugduggo
11 54.239.25.192:80
11 http://judge.gear.host/
12 104.28.17.9:80
12 104.31.85.236:80
13 66.220.158.68:443
13 67.222.35.66:80
13 98.137.201.252:80
13 http://stoutdata.com/checker/proxyjudge.php
13 http://www.bing.com/search?q=amazon
15 18.181.0.43:80
15 193.178.223.25:80
15 195.20.205.9:80
15 198.41.202.157:443
15 204.246.56.80:80
15 209.227.234.202:80
15 212.114.13.126:80
15 212.27.63.114:80
15 50.56.126.107:80
15 50.87.59.73:80
15 64.15.148.105:80
15 64.62.216.151:80
15 87.106.158.3:80
15 94.23.209.142:80
15 :80
15 http://azenv.net/
15 http://bham.craigslist.org/search/sss/?excats=&sort=date&cat_id=150%2C169&cat_id=149%2C162&cat_i
15 http://birdingonthe.net/cgi-bin/env.pl
15 http://jagerman.com/env.cgi
15 http://jaliuzi.com/azenv.php
15 http://pascal.hoez.free.fr/azenv.php
15 http://proxydetect.com/
15 http://scripts.mit.edu/~jbarnold/demo/env.pl
15 http://toolbarqueries.google.com/tbr?client=navclient-auto&ch=78804486762&features=Rank&q=info:h
15 http://whatismyipaddress.com/proxy-check
15 http://www.30tech.com/iptest.php
15 http://www.amazon.com
15 http://www.babaip.com/
15 http://www.bing.com/search?q=lenovo
15 http://www.bing.com/search?q=wikipedia
15 http://www.cooleasy.com/azenv.php
15 http://www.dvdshop.it/cgi-bin/ev.pl
15 http://www.ebay.com/
15 http://www.energoautomatika.ru/opg.php
15 http://www.ingosander.net/azenv.php
15 http://www.knowops.com/cgi-bin/textenv.pl
15 http://www.meow.org.uk/cgi-bin/env.pl
15 http://www.mesregies.com/azz.php
15 http://www.stilllistener.com/checkpoint1/ssi/
15 https://m.facebook.com/
15 https://www.whatismyip.com/
18 http://www.bing.com/search?q=bing
19 208.79.237.176:80
19 http://www.sbjudge1.com/ip4.php
23 188.125.66.104:80
24 https://mobile.twitter.com/i/guest
25 66.96.147.137:80
25 http://www.anonymousproxylist.net/azenv2.php
71 204.79.197.200:80
103 http://proxyjudge.us/judge.php
119 45.33.54.195:80

Summarized By Target URL to Fetch - sorted in reverse domain order

Target host name Count GET/PUT/etc Target URL to Fetch
/ 8
104.244.42.198:443 3
104.244.42.70:443 10
104.28.16.9:80 3
104.28.17.9:80 12
104.31.84.236:80 3
104.31.85.236:80 12
104.79.145.109:80 2
141.8.225.237:80 2
162.249.125.79:80 5
173.194.112.115:80 1
173.223.64.45:80 2
18.181.0.43:80 15
188.125.66.104:80 23
193.178.223.25:80 15
195.20.205.9:80 15
198.41.202.157:443 15
199.16.156.107:443 9
199.59.149.202:443 2
200 2
204.246.56.80:80 15
204.79.197.200:80 71
208.79.237.176:80 19
208.82.238.130:80 9
208.82.238.146:80 1
208.82.238.226:80 3
208.82.238.242:80 2
209.227.234.202:80 15
209.236.71.61:80 6
209.99.40.223:80 9
212.114.13.126:80 15
212.27.63.114:80 15
216.58.216.228:80 2
23.0.32.33:80 3
23.193.32.33:80 10
23.5.107.20:80 3
23.77.208.160:80 10
31.13.69.228:443 2
45.33.54.195:80 119
46.165.197.129:80 2
49.129.255.101:80 2
50.56.126.107:80 15
50.87.59.73:80 15
54.239.17.7:80 4
54.239.25.192:80 11
64.15.148.105:80 15
64.62.216.151:80 15
66.220.158.68:443 13
66.96.147.137:80 25
67.222.35.66:80 13
69.90.211.44:80 6
72.52.99.44:80 9
74.125.136.106:80 9
74.125.71.104:80 3
87.106.158.3:80 15
94.23.209.142:80 15
98.137.201.252:80 13
:80 15
http://azenv.net 2
http://azenv.net/ 15
http://bham.craigslist.org/search/sss/?excats=&sort=date&cat_id=150%2C169&cat_id=149%2C162&cat_i 15
http://birdingonthe.net/cgi-bin/env.pl 15
http://jagerman.com/env.cgi 15
http://jaliuzi.com/azenv.php 15
http://judge.gear.host/ 11
http://judge2.gear.host/ 4
http://pascal.hoez.free.fr/azenv.php 15
http://proxydetect.com/ 15
http://proxyjudge.biz/ 2
http://proxyjudge.us/azenv.php 2
http://proxyjudge.us/judge.php 103
http://scripts.mit.edu/~jbarnold/demo/env.pl 15
http://search.yahoo.com/search?p=amazon 7
http://search.yahoo.com/search?p=bing 9
http://search.yahoo.com/search?p=dugduggo 8
http://search.yahoo.com/search?p=lenovo 7
http://search.yahoo.com/search?p=wikipedia 5
http://stoutdata.com/checker/proxyjudge.php 13
http://toolbarqueries.google.com/tbr?client=navclient-auto&ch=78804486762&features=Rank&q=info:h 15
http://whatismyipaddress.com/proxy-check 15
http://www.30tech.com/iptest.php 15
http://www.amazon.com 15
http://www.anonymousproxylist.net/azenv2.php 25
http://www.babaip.com/ 15
http://www.bdsmpichunter.com/dde32.php 2
http://www.bing.com/search?q=amazon 13
http://www.bing.com/search?q=bing 18
http://www.bing.com/search?q=dugduggo 10
http://www.bing.com/search?q=lenovo 15
http://www.bing.com/search?q=wikipedia 15
http://www.cooleasy.com/azenv.php 15
http://www.dvdshop.it/cgi-bin/ev.pl 15
http://www.ebay.com/ 15
http://www.energoautomatika.ru/opg.php 15
http://www.ingosander.net/azenv.php 15
http://www.knowops.com/cgi-bin/textenv.pl 15
http://www.meow.org.uk/cgi-bin/env.pl 15
http://www.mesregies.com/azz.php 15
http://www.sbjudge1.com/ip4.php 19
http://www.sbjudge3.com/ip4.php 5
http://www.stilllistener.com/checkpoint1/ssi/ 15
http://www.stopforumspam.com/ipcheck/132.235.1.2 1
http://www.stopforumspam.com/ipcheck/132.235.1.247 1
http://www.stopforumspam.com/ipcheck/132.235.1.3 1
http://www.stopforumspam.com/ipcheck/132.235.1.54 1
http://www.stopforumspam.com/ipcheck/132.235.1.56 1
http://www.stopforumspam.com/ipcheck/132.235.1.57 1
http://www.stopforumspam.com/ipcheck/132.235.1.59 2
http://www.stopforumspam.com/ipcheck/132.235.1.63 1
http://www.stopforumspam.com/ipcheck/132.235.1.65 2
http://www.stopforumspam.com/ipcheck/132.235.1.67 1
http://www.stopforumspam.com/ipcheck/132.235.1.73 2
http://www.stopforumspam.com/ipcheck/132.235.2.1 1
http://www2t.biglobe.ne.jp/~take52/test/env.cgi 2
https://m.facebook.com/ 15
https://mobile.twitter.com/i/guest 24
https://www.whatismyip.com/ 15