Summary Report Honeypot

Summary Report
Honeypot (http://aminet.me)
Harvesting - An automated process where a bot is used to search Web pages for e-mail addresses.
The e-mail addresses are collected into a database that can be used by spammers to send unsolicited
e-mail.
Spam Sending - Spamming is the use of electronic messaging systems to send unsolicited bulk
messages (spam), especially advertising, indiscriminately. While the most widely recognized form of
spam is e-mail spam, the term is applied to similar abuses in other media: instant messaging spam,
Usenet newsgroup spam, Web search engine spam, spam in blogs, wiki spam, online classified ads
spam, mobile phone messaging spam, (phone) call spam, Internet forum spam, junk fax transmissions,
social networking spam, social spam, television advertising and file sharing spam.
Dictionary Attacks - In cryptanalysis and computer security, a dictionary attack is a technique for
defeating a cipher or authentication mechanism by trying to determine its decryption key or passphrase
by trying hundreds or sometimes millions of likely possibilities, such as words in a dictionary.
Comment Spamming - Comment spamming is a form of spam idexing. It is done by posting (usually
automatically) random comments or promoting commercial services to blogs, wikis, guestbooks, or
other publicly accessible online discussion boards. Any web application that accepts and displays
hyperlinks submitted by visitors may be a target.
Top-5 Countries For Harvesting
Top-5 Countries For Spam Sending
Top-5 Countries For Dictionary Attacks
Top-5 Countries For Comment Spamming
#1
#2
#3
#4
#5
#1
#2
#3
#4
#5
#1
#2
#3
#4
#5
#1
#2
#3
#4
#5
China (19.7%)
Spain (15.4%)
United States (10.1%)
Romania (6.5%)
Germany (4.0%)
China (10.1%)
Brazil (8.8%)
Germany (6.4%)
Russia (5.9%)
India (10.6%)
Brazil (9.9%)
Russia (6.3%)
China (5.0%)
China (25.0%)
Russia (7.1%)
Brazil (5.2%)
India (4.9%)
Malicious IPs Detected (OVERALL)

Malicious IP
Event
Total
First
Last
184.154.57.94 | C
Bad Event
2013-10-03
2013-10-03
192.151.146.139 | C
Bad Event
269
2013-09-29
2013-10-03
173.44.37.250 | HC
Bad Event
934,922
2012-01-23
2013-10-03
112.123.168.55 | C
Bad Event
68,937
2013-01-17
2013-10-03
60.173.9.57 | C
Bad Event
4,035
2013-09-24
2013-10-03
216.152.243.146 | C
Bad Event
117
2013-09-17
2013-10-03
216.152.250.147 | C
Bad Event
27,056
2012-12-30
2013-10-03
91.200.13.20 | C
Bad Event
10,230
2008-12-23
2013-10-03
198.27.74.193 | C
Bad Event
3,030
2013-08-28
2013-10-03
96.47.224.58 | HC
Bad Event
115,727
2012-02-19
2013-10-03
60.173.10.186 | C
Bad Event
5,147
2013-09-17
2013-10-03
110.86.184.124 | C
Bad Event
523
2013-09-28
2013-10-03
114.241.39.22 | C
Bad Event
1,736
2013-09-28
2013-10-03
5.248.81.211 | C
Bad Event
5,617
2013-09-29
2013-10-03
60.173.11.227 | C
Bad Event
4,292
2013-06-23
2013-10-03
218.10.17.94 | C
Bad Event
21,617
2013-07-07
2013-10-03
208.177.76.11 | C
Bad Event
11,521
2013-07-23
2013-10-03
192.74.238.66 | C
Bad Event
272
2013-09-25
2013-10-03
195.191.54.217 | C
Bad Event
18,205
2010-05-15
2013-10-03
115.211.224.12 | C
Bad Event
20
2013-10-01
2013-10-03
60.173.10.176 | C
Bad Event
3,673
2013-09-25
2013-10-03
96.47.224.42 | C
Bad Event
736,973
2012-02-11
2013-10-03
208.177.76.7 | C
Bad Event
18,851
2013-07-23
2013-10-03
112.123.168.77 | C
Bad Event
23,589
2013-01-17
2013-10-03
60.173.11.246 | C
Bad Event
4,118
2013-09-24
2013-10-03
216.152.250.146 | C
Bad Event
1,219
2013-09-06
2013-10-03
112.111.161.254 | C
Bad Event
360
2013-08-09
2013-10-03
112.123.168.60 | C
Bad Event
80,260
2013-01-15
2013-10-03
192.187.125.67 | C
Bad Event
804
2013-09-12
2013-10-03
91.207.7.189 | DC
Bad Event
549
2013-01-16
2013-10-03
178.137.162.132 | C
Bad Event
6,227
2013-09-29
2013-10-03
91.236.75.25 | C
Bad Event
4,592
2013-02-20
2013-10-03
192.99.8.105 | C
Bad Event
1,182
2013-08-20
2013-10-03
112.123.168.152 | C
Bad Event
51,935
2013-03-15
2013-10-03
218.10.17.208 | C
Bad Event
29,013
2013-02-24
2013-10-03
46.118.121.78 | C
Bad Event
5,097
2012-05-30
2013-10-03
120.39.75.142 | C
Bad Event
2013-10-03
2013-10-03
111.73.45.171 | C
Bad Event
10,841
2012-11-05
2013-10-03
199.15.233.142 | C
Bad Event
20,418
2013-08-23
2013-10-03
112.123.168.153 | C
Bad Event
48,267
2013-03-15
2013-10-03
112.101.64.81 | C
Bad Event
15,991
2012-10-17
2013-10-03
41.223.26.11 | SC
Bad Event
239
2013-09-13
2013-10-03
192.187.110.202 | C
Bad Event
429
2013-09-26
2013-10-03
192.187.97.178 | C
Bad Event
20
2013-09-29
2013-10-03
91.200.14.63 | C
Bad Event
203
2013-07-11
2013-10-03
192.99.2.162 | C
Bad Event
532
2013-09-27
2013-10-03
112.123.168.61 | C
Bad Event
84,767
2013-01-10
2013-10-03
173.44.37.226 | C
Bad Event
921,153
2012-01-23
2013-10-03
60.173.10.239 | C
Bad Event
6,128
2013-09-17
2013-10-03
58.22.123.147 | C
Bad Event
15,533
2012-08-15
2013-10-03
Hacking attempt on FAKE Indian Army Network (honeynet)

Malicious IP
Event
Total
First
Last
112.123.168.156 | C
Bad Event
51,017
2013-03-15
2013-10-02
112.123.168.57 | C
Bad Event
45,785
2013-01-17
2013-10-02
112.123.168.60 | C
Bad Event
79,727
2013-01-15
2013-10-02
112.123.168.74 | C
Bad Event
22,391
2013-01-09
2013-10-02
218.6.12.99 | C
Bad Event
8,823
2012-12-11
2013-10-02
112.123.168.152 | C
Bad Event
51,407
2013-03-15
2013-10-02
112.123.168.148 | C
Bad Event
30,326
2013-02-23
2013-10-02
112.101.64.81 | C
Bad Event
15,603
2012-10-17
2013-10-02
121.205.197.253 | C
Bad Event
172
2013-09-28
2013-10-02
60.173.11.201 | C
Bad Event
5,632
2013-09-24
2013-10-02
60.173.11.149 | C
Bad Event
4,891
2013-09-17
2013-10-02
110.85.126.48 | C
Bad Event
2013-10-02
2013-10-02
60.173.9.243 | C
Bad Event
4,775
2013-09-17
2013-10-02
218.10.17.107 | C
Bad Event
16,522
2013-07-30
2013-10-02
60.173.10.165 | C
Bad Event
2,745
2013-09-24
2013-10-02
112.123.168.77 | C
Bad Event
23,016
2013-01-17
2013-10-02
112.123.168.54 | CR
Bad Event
62,388
2013-01-16
2013-10-02
112.123.168.56 | C
Bad Event
64,624
2013-01-16
2013-10-02
222.186.25.105 | CR
Bad Event
16,080
2013-03-27
2013-10-02
218.10.17.156 | C
Bad Event
27,638
2012-10-23
2013-10-02
60.173.10.242 | C
Bad Event
12,405
2012-11-20
2013-10-02
60.173.26.43 | C
Bad Event
5,341
2012-12-21
2013-10-02
111.73.45.115 | C
Bad Event
6,258
2012-11-21
2013-10-02
112.101.64.249 | C
Bad Event
14,121
2013-07-30
2013-10-02
60.173.26.61 | C
Bad Event
5,153
2013-09-26
2013-10-02
60.173.11.219 | C
Bad Event
8,619
2013-09-17
2013-10-02
218.10.17.2 | C
Bad Event
19,869
2013-07-30
2013-10-02
112.101.64.176 | C
Bad Event
16,772
2013-07-30
2013-10-02
60.173.11.229 | C
Bad Event
4,009
2013-09-24
2013-10-02
117.26.84.17 | C
Bad Event
376
2013-10-01
2013-10-02
218.10.17.94 | C
Bad Event
21,166
2013-07-07
2013-10-02
60.173.10.239 | C
Bad Event
5,770
2013-09-17
2013-10-02
117.26.117.148 | C
Bad Event
346
2012-06-11
2013-10-02
60.173.10.176 | C
Bad Event
3,417
2013-09-25
2013-10-02
112.123.168.147 | C
Bad Event
51,875
2013-03-01
2013-10-02
60.173.11.156 | C
Bad Event
3,485
2013-09-24
2013-10-02
222.77.228.172 | C
Bad Event
157
2013-05-31
2013-10-02
117.26.85.180 | C
Bad Event
217
2013-07-08
2013-10-02
60.173.9.50 | C
Bad Event
5,221
2013-09-17
2013-10-02
116.236.216.116 | HCR
Bad Event
4,214
2012-09-23
2013-10-02
60.173.10.231 | SC
Bad Event
5,166
2010-07-08
2013-10-02
120.40.115.99 | C
Bad Event
35
2013-10-02
2013-10-02
112.123.168.153 | C
Bad Event
47,727
2013-03-15
2013-10-02
60.173.26.47 | C
Bad Event
565
2013-10-01
2013-10-02
60.173.9.57 | C
Bad Event
3,742
2013-09-24
2013-10-02
60.173.10.171 | C
Bad Event
4,325
2013-09-17
2013-10-02
116.1.84.215 | C
Bad Event
2013-09-26
2013-10-02
111.73.45.171 | C
Bad Event
10,485
2012-11-05
2013-10-02
112.123.168.55 | C
Bad Event
68,407
2013-01-17
2013-10-02
125.78.222.102 | C
Bad Event
2013-10-02
2013-10-02

Summary Report Honeypot

Uploaded by

Document Information

Original Description:

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Summary Report Honeypot

Uploaded by

Copyright:

Available Formats

Summary Report

Top-5 Countries For Spam Sending

Top-5 Countries For Dictionary Attacks

Top-5 Countries For Comment Spamming

Malicious IPs Detected (OVERALL)

Hacking attempt on FAKE Indian Army Network (honeynet)

You might also like