A #Syspeace weekly report generated last night from a single server

An example of an actual #Syspeace weekly report generated last night at a single server somewhere. Each DNS or IP Address corresponds to an intrusion attempt that occoured the past week. #infosec #cybersecurity. For those whoa are also a bit vigilant, you’ll notice the #Syspeace version ..- Yes, we are working on a new release.. stay tuned.

Report for week 2013-11-18 – 2013-11-24

— All Week ——

IP address Times Host name and country
——————– —– ——————————-
5.167.43.248 1 5x167x43x248.dynamic.yola.ertelecom.ru; Russian Federation (RU)
50.197.62.73 1 50-197-62-73-static.hfc.comcastbusiness.net; United States (US)
64.183.205.246 1 rrcs-64-183-205-246.sw.biz.rr.com; United States (US)
69.174.245.138 1 .; United States (US)
77.94.189.17 3 ; Russian Federation (RU)
78.105.173.193 4 mail.thefoundry.org.uk; United Kingdom (GB)
81.136.203.171 1 host81-136-203-171.in-addr.btopenworld.com; United Kingdom (GB)
87.108.53.202 4 ip-87-108-53-202.customer.academica.fi; Finland (FI)
88.119.151.219 1 88-119-151-219.static.zebra.lt; Lithuania (LT)
88.249.65.35 1 88.249.65.35.static.ttnet.com.tr; Turkey (TR)
95.152.198.114 1 mailgate.riskdecisions.co.uk; United Kingdom (GB)
115.238.172.226 1 ; China (CN)
117.218.1.127 1 ; India (IN)
121.20.69.84 1 ; China (CN)
178.33.205.127 1 ; Spain (ES)
182.18.160.63 1 static-182-18-160-63.ctrls.in; India (IN)
184.82.181.135 1 184-82-181-135.static.hostnoc.net; United States (US)
192.157.246.59 3 59.246-157-192.rdns.scalabledns.com; United States (US)
192.157.246.60 1 60.246-157-192.rdns.scalabledns.com; United States (US)
193.227.46.18 4 ; Egypt (EG)
198.46.103.165 1 c62e6ea5.cst.lightpath.net; United States (US)
198.50.197.100 1 198-50-197-100.ovh.net; N/A (–)
212.250.127.114 3 114-127-250-212.static.virginm.net; United Kingdom (GB)
218.241.171.186 1 ; China (CN)
221.226.157.194 1 ; China (CN)
222.110.155.133 1 ; Korea, Republic of (KR)

Hourly breakdown (blocks per hour)
00 x4
01 x3
02 x1
03 x2
04 x1
05 x2
06 x1
07
08 x1
09 x2
10 x1
11 x1
12 x1
13 x5
14 x2
15 x3
16 x2
17 x1
18 x2
19 x2
20 x1
21
22 x1
23 x2

– 2013-11-18 —

IP address Times Host name and country
——————– —– ——————————-
77.94.189.17 2 ; Russian Federation (RU)
193.227.46.18 4 ; Egypt (EG)
218.241.171.186 1 ; China (CN)

Hourly breakdown (blocks per hour)
00
01
02 x1
03
04
05
06
07
08 x1
09
10
11
12
13 x2
14
15 x1
16
17
18 x1
19 x1
20
21
22
23

– 2013-11-19 —

IP address Times Host name and country
——————– —– ——————————-
77.94.189.17 1 ; Russian Federation (RU)
212.250.127.114 1 114-127-250-212.static.virginm.net; United Kingdom (GB)

Hourly breakdown (blocks per hour)
00 x1
01
02
03
04
05
06
07
08
09
10
11
12
13
14
15
16
17 x1
18
19
20
21
22
23

– 2013-11-20 —

IP address Times Host name and country
——————– —– ——————————-
69.174.245.138 1 .; United States (US)
178.33.205.127 1 ; Spain (ES)
182.18.160.63 1 static-182-18-160-63.ctrls.in; India (IN)
192.157.246.59 1 59.246-157-192.rdns.scalabledns.com; United States (US)
192.157.246.60 1 60.246-157-192.rdns.scalabledns.com; United States (US)
212.250.127.114 2 114-127-250-212.static.virginm.net; United Kingdom (GB)
221.226.157.194 1 ; China (CN)
222.110.155.133 1 ; Korea, Republic of (KR)

Hourly breakdown (blocks per hour)
00 x1
01 x1
02
03
04
05 x1
06
07
08
09 x1
10
11
12 x1
13
14
15 x1
16
17
18
19
20 x1
21
22 x1
23 x1

– 2013-11-21 —

IP address Times Host name and country
——————– —– ——————————-
50.197.62.73 1 50-197-62-73-static.hfc.comcastbusiness.net; United States (US)
95.152.198.114 1 mailgate.riskdecisions.co.uk; United Kingdom (GB)
117.218.1.127 1 ; India (IN)
198.46.103.165 1 c62e6ea5.cst.lightpath.net; United States (US)

Hourly breakdown (blocks per hour)
00 x1
01
02
03
04 x1
05
06
07
08
09
10
11
12
13
14 x1
15
16
17
18
19
20
21
22
23 x1

– 2013-11-22 —

IP address Times Host name and country
——————– —– ——————————-
88.119.151.219 1 88-119-151-219.static.zebra.lt; Lithuania (LT)
198.50.197.100 1 198-50-197-100.ovh.net; N/A (–)

Hourly breakdown (blocks per hour)
00
01 x1
02
03
04
05 x1
06
07
08
09
10
11
12
13
14
15
16
17
18
19
20
21
22
23

– 2013-11-23 —

IP address Times Host name and country
——————– —– ——————————-
64.183.205.246 1 rrcs-64-183-205-246.sw.biz.rr.com; United States (US)
78.105.173.193 1 mail.thefoundry.org.uk; United Kingdom (GB)
87.108.53.202 4 ip-87-108-53-202.customer.academica.fi; Finland (FI)
184.82.181.135 1 184-82-181-135.static.hostnoc.net; United States (US)

Hourly breakdown (blocks per hour)
00
01
02
03
04
05
06 x1
07
08
09 x1
10
11
12
13 x1
14
15 x1
16 x2
17
18 x1
19
20
21
22
23

– 2013-11-24 —

IP address Times Host name and country
——————– —– ——————————-
5.167.43.248 1 5x167x43x248.dynamic.yola.ertelecom.ru; Russian Federation (RU)
78.105.173.193 3 mail.thefoundry.org.uk; United Kingdom (GB)
81.136.203.171 1 host81-136-203-171.in-addr.btopenworld.com; United Kingdom (GB)
88.249.65.35 1 88.249.65.35.static.ttnet.com.tr; Turkey (TR)
115.238.172.226 1 ; China (CN)
121.20.69.84 1 ; China (CN)
192.157.246.59 2 59.246-157-192.rdns.scalabledns.com; United States (US)

Hourly breakdown (blocks per hour)
00 x1
01 x1
02
03 x2
04
05
06
07
08
09
10 x1
11 x1
12
13 x2
14 x1
15
16
17
18
19 x1
20
21
22
23

Generated 2013-11-25 00:04:11 for machine *****.*****.*** by Syspeace v2.3.7.0