Proxy Attack Summaries 2015/04/01 thru 2015/04/30

Sorted by Source Network Range
Sorted by Total Connections From Source Network
Sorted by Source Country
Sorted by Total Connections From Source Country
Counts by fetch target URL.
Counts by fetch target URL - sorted by URL in rev. domain order.

Sorted by Source Network Range


Source Network Registered owner Local Target IP or range Target Ports
5.34.56.51 - 5.34.56.51 undefined ?? attacked MULTIPLE-IPs for ports 3306 21 25 80 993
10.0.0.0 - 10.255.255.255 Internet Assigned Numbers Authority Los Angeles, CA, US attacked 132.235.1.14 for ports 8088x11
14.104.0.0 - 14.111.255.255 undefined ?? attacked MULTIPLE-IPs for ports 8080 80x14 114x7 993x6 3306x6 21x6 25x6
50.7.0.0 - 50.7.255.255 FDCservers.net Chicago, IL, US attacked MULTIPLE-IPs for ports 80x5
58.17.0.0 - 58.17.127.255 China Unicom Jiangxi province network China Unicom CNC Group CHINA169 Jiangxi Province Network CN attacked MULTIPLE-IPs for ports 80x2
59.67.0.0 - 59.67.31.255 undefined ?? attacked MULTIPLE-IPs for ports 80x6285 114x4 3306 993 21 25 8080x3
107.8.0.0 - 107.15.255.255 Time Warner Cable Internet LLC Herndon, VA, US attacked 132.235.1.14 for ports 8088x25
114.104.0.0 - 114.107.255.255 CHINANET Anhui PROVINCE NETWORK China Telecom No.31,jingrong street CN attacked MULTIPLE-IPS for ports 80x15
115.218.0.0 - 115.219.255.255 CHINANET-ZJ Wenzhou node network CN attacked MULTIPLE-IPS for ports 80x2
123.16.0.0 - 123.31.255.255 VietNam Post and Telecom Corporation 23 Phan Chau Trinh, Hoan Kiem Dist, Ha Noi VietNam Post and Telecom Corporation (VNPT) VN attacked MULTIPLE-IPS for ports 80x24
123.151.148.0 - 123.151.151.255 HAOWEIGAOKE-LTD CN attacked MULTIPLE-IPs for ports 80x3 8088
132.235.0.0 - 132.235.255.255 Ohio University Athens, OH, US attacked 132.235.2.52 for ports 80x8
140.206.0.0 - 140.207.255.255 undefined ?? attacked MULTIPLE-IPs for ports 80x86 21x4 114x2 3306x2 993x2 25x2 8080x5
180.96.0.0 - 180.127.255.255 Chinanet Jiangsu Province Network China Telecom No.31,jingrong street CN attacked MULTIPLE-IPs for ports 80x3
183.192.0.0 - 183.255.255.255 undefined ?? attacked MULTIPLE-IPs for ports 80x7 23x4 25x3 6000 465 993
187.52/14 Brasil Telecom S/A - Filial Distrito Federal BR attacked 132.235.39.156 for ports 8080
190.248/15 undefined ?? attacked MULTIPLE-IPs for ports 23x3 53 80x6 25 50070
198.12.64.0 - 198.12.127.255 ColoCrossing Buffalo, NY, US attacked 132.235.1.2 for ports 80
198.27.64.0 - 198.27.127.255 OVH Hosting, Inc. Montreal, QC, CA attacked 132.235.1.2 for ports 80
199.47.80.0 - 199.47.87.255 iParadigms, LLC Oakland, CA, US attacked 132.235.1.249 for ports 80
202.206.96.0 - 202.206.111.255 undefined ?? attacked MULTIPLE-IPs for ports 80x6 114x2 3306 993 21 25 8080
221.239.88.96 - 221.239.88.103 TONGYAJIUDIAN-HOTEL CN attacked 132.235.1.2 for ports 80x2

Sorted By Total Connections From Source Network

Count Source Network Registered Owner Local Target IP or Range Target Ports
1 187.52/14 Brasil Telecom S/A - Filial Distrito Federal BR attacked 132.235.39.156 for ports 8080
1 198.12.64.0 - 198.12.127.255 ColoCrossing Buffalo, NY, US attacked 132.235.1.2 for ports 80
1 198.27.64.0 - 198.27.127.255 OVH Hosting, Inc. Montreal, QC, CA attacked 132.235.1.2 for ports 80
1 199.47.80.0 - 199.47.87.255 iParadigms, LLC Oakland, CA, US attacked 132.235.1.249 for ports 80
2 58.17.0.0 - 58.17.127.255 China Unicom Jiangxi province network China Unicom CNC Group CHINA169 Jiangxi Province Network CN attacked MULTIPLE-IPs for ports 80x2
2 115.218.0.0 - 115.219.255.255 CHINANET-ZJ Wenzhou node network CN attacked MULTIPLE-IPS for ports 80x2
2 221.239.88.96 - 221.239.88.103 TONGYAJIUDIAN-HOTEL CN attacked 132.235.1.2 for ports 80x2
3 180.96.0.0 - 180.127.255.255 Chinanet Jiangsu Province Network China Telecom No.31,jingrong street CN attacked MULTIPLE-IPs for ports 80x3
4 123.151.148.0 - 123.151.151.255 HAOWEIGAOKE-LTD CN attacked MULTIPLE-IPs for ports 80x3 8088
5 5.34.56.51 - 5.34.56.51 undefined ?? attacked MULTIPLE-IPs for ports 3306 21 25 80 993
5 50.7.0.0 - 50.7.255.255 FDCservers.net Chicago, IL, US attacked MULTIPLE-IPs for ports 80x5
8 132.235.0.0 - 132.235.255.255 Ohio University Athens, OH, US attacked 132.235.2.52 for ports 80x8
11 10.0.0.0 - 10.255.255.255 Internet Assigned Numbers Authority Los Angeles, CA, US attacked 132.235.1.14 for ports 8088x11
12 190.248/15 undefined ?? attacked MULTIPLE-IPs for ports 23x3 53 80x6 25 50070
13 202.206.96.0 - 202.206.111.255 undefined ?? attacked MULTIPLE-IPs for ports 80x6 114x2 3306 993 21 25 8080
15 114.104.0.0 - 114.107.255.255 CHINANET Anhui PROVINCE NETWORK China Telecom No.31,jingrong street CN attacked MULTIPLE-IPS for ports 80x15
17 183.192.0.0 - 183.255.255.255 undefined ?? attacked MULTIPLE-IPs for ports 80x7 23x4 25x3 6000 465 993
24 123.16.0.0 - 123.31.255.255 VietNam Post and Telecom Corporation 23 Phan Chau Trinh, Hoan Kiem Dist, Ha Noi VietNam Post and Telecom Corporation (VNPT) VN attacked MULTIPLE-IPS for ports 80x24
25 107.8.0.0 - 107.15.255.255 Time Warner Cable Internet LLC Herndon, VA, US attacked 132.235.1.14 for ports 8088x25
46 14.104.0.0 - 14.111.255.255 undefined ?? attacked MULTIPLE-IPs for ports 8080 80x14 114x7 993x6 3306x6 21x6 25x6
103 140.206.0.0 - 140.207.255.255 undefined ?? attacked MULTIPLE-IPs for ports 80x86 21x4 114x2 3306x2 993x2 25x2 8080x5
6296 59.67.0.0 - 59.67.31.255 undefined ?? attacked MULTIPLE-IPs for ports 80x6285 114x4 3306 993 21 25 8080x3

Summarized By Source Country

Source Country Local Target IP or Range Target Ports
?? attacked MULTIPLE-IPs for ports 3306x11 21x13 25x14 80x6381 993x12 114x15 8080x9 23x4 6000 465
BR attacked 132.235.39.156 for ports 8080
CA attacked 132.235.1.2 for ports 80
CN attacked MULTIPLE-IPs for ports 8080 80x50 8088
CO attacked MULTIPLE-IPs for ports 23x3 53 80 25 50070
US attacked MULTIPLE-IPs for ports 8088x36 80x15
VN attacked MULTIPLE-IPS for ports 80x24

Summarized By Source Country

Total Connection Counts Source Country Local Target IP or Range Target Ports
1 BR attacked 132.235.39.156 for ports 8080
1 CA attacked 132.235.1.2 for ports 80
7 CO attacked MULTIPLE-IPs for ports 23x3 53 80 25 50070
24 VN attacked MULTIPLE-IPS for ports 80x24
51 US attacked MULTIPLE-IPs for ports 8088x36 80x15
52 CN attacked MULTIPLE-IPs for ports 8080 80x50 8088
6461 ?? attacked MULTIPLE-IPs for ports 3306x11 21x13 25x14 80x6381 993x12 114x15 8080x9 23x4 6000 465

Summarized By Target URL to Fetch - sorted by attempts made

Count Target host name GET/PUT/etc Target URL to Fetch
1 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDY%40Z%5DV
1 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYAZYQB
1 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYCZYRC
1 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDY%40ZY
1 azenv.net GET http://azenv.net/
1 google.com.af GET http://google.com.af/?gws_rd=ssl
1 google.com.af GET http://google.com.af/sorry/image?id=12977715269840232254&hl=ru
1 housing-ia.palmer.edu GET /user/add-favorites/property/120097/from/search
1 nofx2.oops.jp GET http://nofx2.oops.jp/cgi-bin/env/env.cgi
1 pr-307.cs.ohiou.edu GET /.git/HEAD
1 pr-307.cs.ohiou.edu GET /favicon.ico
1 pr-307.cs.ohiou.edu GET /robots.txt
1 pr-307.cs.ohiou.edu OPTIONS /
1 px1.cs.ohio.edu:8088 GET /
1 px1.cs.ohio.edu:8088 GET /favicon.ico
1 px1.cs.ohio.edu:8088 GET /static/hadoop-st.png
1 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_65_ffffff_1x400.png
1 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_75_dadada_1x400.png
1 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_75_e6e6e6_1x400.png
1 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_95_fef1ec_1x400.png
1 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/images/ui-icons_454545_256x240.png
1 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/images/ui-icons_888888_256x240.png
1 px1.cs.ohio.edu:8088 GET /static/yarn.dt.plugins.js
1 sapb.bandzior.pl POST http://sapb.bandzior.pl/test_ip.php?random=206768327310609835002114339366871989761582062966
1 sapb.bandzior.pl POST http://sapb.bandzior.pl/test_ip.php?random=682019185182760536217819276812398254581092007698
1 search.goo.ne.jp GET http://search.goo.ne.jp/isspam.jsp?isGreen=false&_done=http%3A%2F%2Fsearch.goo.ne.jp%2Fweb.jsp%3FFR%3D0%26OE%3DUTF-8%26MT%3Dwiki%2520%25D0%25B2%25D1%258B%25D0%25B2%25D0%25B5%25D0%25B4%25D0%25B5%25D0%25BD%25D1%258B%25D1%2588 H
1 sonke32.free.fr GET http://sonke32.free.fr/world.php
1 usgs.gov GET /nwis/uv/?site_no=09386300&PARAmeter_cd=00060,00065
1 www.30tech.com GET http://www.30tech.com/iptest.php
1 www.bdsmpichunter.com GET http://www.bdsmpichunter.com/dde32.php
1 www.cooleasy.com GET http://www.cooleasy.com/azenv.php
2 127.0.0.1 GET /cgi-bin/authLogin.cgi
2 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYAZYPF
2 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYAZYQ%40
2 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYCAFUBZ
2 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYCAFUGS
2 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCZY
2 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCZZ
2 infohound.net GET http://infohound.net/tools/env.pl
2 www.sciencedirect.com GET http://www.sciencedirect.com/science/jrnlallbooks/a/fulltext
2 www.sina.com.cn GET http://www.sina.com.cn/
3 s1.bdstatic.com GET http://s1.bdstatic.com/r/www/cache/static/home/img/logos/nuomi_ade5465d.png
4 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYAZYPF
4 pr-307.cs.ohiou.edu GET /
4 px1.cs.ohio.edu:8088 GET /static/jquery/jquery-1.8.2.min.js
4 px1.cs.ohio.edu:8088 GET /static/jquery/jquery-ui-1.9.1.custom.min.js
4 px1.cs.ohio.edu:8088 GET /static/jquery/themes-1.9.1/base/jquery-ui.css
4 px1.cs.ohio.edu:8088 GET /static/yarn.css
4 www.baidu.com GET http://www.baidu.com/
5 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDY%40Z%5DV
5 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYAZYQ%40
5 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYAZYQB
5 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCAFUBZ
5 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCAFUGS
5 en.wikipedia.org GET http://en.wikipedia.org/wiki/Main_Page
5 px1.cs.ohio.edu:8088 GET /cluster
5 px1.cs.ohio.edu:8088 GET /static/dt-1.9.4/css/jui-dt.css
6 24x7-allrequestsallowed.com GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCZYRC
8 httpheader.net GET http://httpheader.net
8 pl.wikipedia.org GET http://pl.wikipedia.org/wiki/Special:Search?search=&go=Go
9 onlinelibrary.wiley.com GET http://onlinelibrary.wiley.com/doi/10.1002/hbm.22471/abstract
10 5.61.43.116 GET http://5.61.43.116/
10 www.google.com GET http://www.google.com/
12 www.alexa.com GET http://www.alexa.com/
17 www.sciencedirect.com GET http://www.sciencedirect.com/
18 www.ebay.com GET http://www.ebay.com/
24 cachefly.cachefly.net GET http://cachefly.cachefly.net/networkmap/index.html
82 gc.gamexp.ru GET http://gc.gamexp.ru/
6271 spam-chaos.com GET http://spam-chaos.com/pp/set-cookie.php

Summarized By Target URL to Fetch - sorted in reverse domain order

Target host name Count GET/PUT/etc Target URL to Fetch
127.0.0.1 2 GET /cgi-bin/authLogin.cgi
24x7-allrequestsallowed.com 1 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDY%40Z%5DV
24x7-allrequestsallowed.com 2 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYAZYPF
24x7-allrequestsallowed.com 2 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYAZYQ%40
24x7-allrequestsallowed.com 1 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYAZYQB
24x7-allrequestsallowed.com 2 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYCAFUBZ
24x7-allrequestsallowed.com 2 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYCAFUGS
24x7-allrequestsallowed.com 1 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a45ad01b00143PQQJTUDYCZYRC
24x7-allrequestsallowed.com 5 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDY%40Z%5DV
24x7-allrequestsallowed.com 1 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDY%40ZY
24x7-allrequestsallowed.com 4 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYAZYPF
24x7-allrequestsallowed.com 5 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYAZYQ%40
24x7-allrequestsallowed.com 5 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYAZYQB
24x7-allrequestsallowed.com 5 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCAFUBZ
24x7-allrequestsallowed.com 5 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCAFUGS
24x7-allrequestsallowed.com 2 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCZY
24x7-allrequestsallowed.com 6 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCZYRC
24x7-allrequestsallowed.com 2 GET http://24x7-allrequestsallowed.com/?PHPSESSID=a77ad01b00143PQQJTUDYCZZ
5.61.43.116 10 GET http://5.61.43.116/
azenv.net 1 GET http://azenv.net/
cachefly.cachefly.net 24 GET http://cachefly.cachefly.net/networkmap/index.html
en.wikipedia.org 5 GET http://en.wikipedia.org/wiki/Main_Page
gc.gamexp.ru 82 GET http://gc.gamexp.ru/
google.com.af 1 GET http://google.com.af/?gws_rd=ssl
google.com.af 1 GET http://google.com.af/sorry/image?id=12977715269840232254&hl=ru
housing-ia.palmer.edu 1 GET /user/add-favorites/property/120097/from/search
httpheader.net 8 GET http://httpheader.net
infohound.net 2 GET http://infohound.net/tools/env.pl
nofx2.oops.jp 1 GET http://nofx2.oops.jp/cgi-bin/env/env.cgi
onlinelibrary.wiley.com 9 GET http://onlinelibrary.wiley.com/doi/10.1002/hbm.22471/abstract
pl.wikipedia.org 8 GET http://pl.wikipedia.org/wiki/Special:Search?search=&go=Go
pr-307.cs.ohiou.edu 1 GET /.git/HEAD
pr-307.cs.ohiou.edu 4 GET /
pr-307.cs.ohiou.edu 1 GET /favicon.ico
pr-307.cs.ohiou.edu 1 GET /robots.txt
pr-307.cs.ohiou.edu 1 OPTIONS /
px1.cs.ohio.edu:8088 1 GET /
px1.cs.ohio.edu:8088 5 GET /cluster
px1.cs.ohio.edu:8088 1 GET /favicon.ico
px1.cs.ohio.edu:8088 5 GET /static/dt-1.9.4/css/jui-dt.css
px1.cs.ohio.edu:8088 1 GET /static/hadoop-st.png
px1.cs.ohio.edu:8088 4 GET /static/jquery/jquery-1.8.2.min.js
px1.cs.ohio.edu:8088 4 GET /static/jquery/jquery-ui-1.9.1.custom.min.js
px1.cs.ohio.edu:8088 1 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_65_ffffff_1x400.png
px1.cs.ohio.edu:8088 1 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_75_dadada_1x400.png
px1.cs.ohio.edu:8088 1 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_75_e6e6e6_1x400.png
px1.cs.ohio.edu:8088 1 GET /static/jquery/themes-1.9.1/base/images/ui-bg_glass_95_fef1ec_1x400.png
px1.cs.ohio.edu:8088 1 GET /static/jquery/themes-1.9.1/base/images/ui-icons_454545_256x240.png
px1.cs.ohio.edu:8088 1 GET /static/jquery/themes-1.9.1/base/images/ui-icons_888888_256x240.png
px1.cs.ohio.edu:8088 4 GET /static/jquery/themes-1.9.1/base/jquery-ui.css
px1.cs.ohio.edu:8088 4 GET /static/yarn.css
px1.cs.ohio.edu:8088 1 GET /static/yarn.dt.plugins.js
s1.bdstatic.com 3 GET http://s1.bdstatic.com/r/www/cache/static/home/img/logos/nuomi_ade5465d.png
sapb.bandzior.pl 1 POST http://sapb.bandzior.pl/test_ip.php?random=206768327310609835002114339366871989761582062966
sapb.bandzior.pl 1 POST http://sapb.bandzior.pl/test_ip.php?random=682019185182760536217819276812398254581092007698
search.goo.ne.jp 1 GET http://search.goo.ne.jp/isspam.jsp?isGreen=false&_done=http%3A%2F%2Fsearch.goo.ne.jp%2Fweb.jsp%3FFR%3D0%26OE%3DUTF-8%26MT%3Dwiki%2520%25D0%25B2%25D1%258B%25D0%25B2%25D0%25B5%25D0%25B4%25D0%25B5%25D0%25BD%25D1%258B%25D1%2588 H
sonke32.free.fr 1 GET http://sonke32.free.fr/world.php
spam-chaos.com 6271 GET http://spam-chaos.com/pp/set-cookie.php
usgs.gov 1 GET /nwis/uv/?site_no=09386300&PARAmeter_cd=00060,00065
www.30tech.com 1 GET http://www.30tech.com/iptest.php
www.alexa.com 12 GET http://www.alexa.com/
www.baidu.com 4 GET http://www.baidu.com/
www.bdsmpichunter.com 1 GET http://www.bdsmpichunter.com/dde32.php
www.cooleasy.com 1 GET http://www.cooleasy.com/azenv.php
www.ebay.com 18 GET http://www.ebay.com/
www.google.com 10 GET http://www.google.com/
www.sciencedirect.com 17 GET http://www.sciencedirect.com/
www.sciencedirect.com 2 GET http://www.sciencedirect.com/science/jrnlallbooks/a/fulltext
www.sina.com.cn 2 GET http://www.sina.com.cn/