suzyrice.com Rotating Header Image

FROM MY FIREWALL TO DEAF, DUMB AND BLIND NETWORKS:

This is no longer interesting but, rather, now completely offensive. Networks that allow this sort of thing to continue are substandard. Here are a few of the most so:

All of these offending networks (United States originating — and this doesn’t begin to outline the worst that originates from China, Korea, Brazil, Indonesia and Hong Kong) spew the NetBus Trojan, the Unused Windows Services Trojan and the Back-Orifice 2000 Trojan hack attempts which my firewall (Norton Professional) blocks.

It’s not like these trojan programs are emerging threats or even difficult to block. The following U.S. networks and service providers can’t seem to do so.

Originating I.P.A.s are listed at the beginning of each paragraph, and are underscored), and these are but a sampling of what are in my Firewall Reports:

Picture 758.gif Offending Hack/Trojan Attempts, COX COMMUNICATIONS:

68.5.213.41 (originating I.P.A.)
68.5.87.76 (originating I.P.A.)
68.5.240.124 (originating I.P.A.)
68.5.11.132 (originating I.P.A.)
68.5.71.197 (originating I.P.A.)
Cox Communications Inc. COX-ATLANTA (NET-68-0-0-0-1)
68.0.0.0 – 68.15.255.255
Cox Communications Inc. OC-RDC-68-4-0-0 (NET-68-4-0-0-1)
68.4.0.0 – 68.5.255.255

68.99.154.77 (originating I.P.A.)
=Cox Communications Inc. COX-ATLANTA-2 (NET-68-96-0-0-1)
68.96.0.0 – 68.111.255.255
Cox Communications Inc. NETBLK-RI-CBS-68-99-152-0 (NET-68-99-152-0-1)
68.99.152.0 – 68.99.159.255

Picture 758.gif Offending Hack/Trojan Attempts, VERIZON:

68.163.98.133 (originating I.P.A.)
Verizon Internet Services VIS-68-160 (NET-68-160-0-0-1)
68.160.0.0 – 68.163.255.255
Verizon VZ-DSLDIAL-BSTNMA-25 (NET-68-163-96-0-1)
68.163.96.0 – 68.163.111.0

68.160.7.23 (originating I.P.A.)
Verizon Internet Services VIS-68-160 (NET-68-160-0-0-1)
68.160.0.0 – 68.163.255.255
Verizon Internet Services VZ-DSLDIAL-BSTNMA-17 (NET-68-160-0-0-2)
68.160.0.0 – 68.160.31.255

68.237.1.121 (originating I.P.A.)
Verizon Internet Services VIS-68-236 (NET-68-236-0-0-1)
68.236.0.0 – 68.239.255.255
Verizon VZ-DSLDIAL-NYCMNY-25 (NET-68-237-0-0-1)
68.237.0.0 – 68.237.127.255

68.161.71.6 (originating I.P.A.)
Verizon Internet Services VIS-68-160 (NET-68-160-0-0-1)
68.160.0.0 – 68.163.255.255
Verizon Internet Services VZ-DSLDIAL-NYCMNY-19 (NET-68-161-0-0-1)
68.160.192.0 – 68.161.127.255

Note: this one is particularly aggressive:
68.236.46.49 (originating I.P.A.)
Verizon Internet Services
OrgID: VRIS
Address: 1880 Campus Commons Dr
City: Reston StateProv: VA PostalCode: 20191 Country: US
NetRange: 68.236.0.0 – 68.239.255.255
CIDR: 68.236.0.0/14

Picture 758.gif Offending Trojan/Hack Attempts, AMERITECH:

68.255.90.26 (originating I.P.A.)
Ameritech Electronic Commerce SBCIS-AMER-100902 (NET-68-248-0-0-1)
68.248.0.0 – 68.255.255.255
PPPoX Pool – Rback2 RCFRIL SBC06825508800022040416102111 (NET-68-255-88-0-1)
68.255.88.0 – 68.255.91.255

68.252.238.97 (originating I.P.A.)
Ameritech Electronic Commerce SBCIS-AMER-100902 (NET-68-248-0-0-1)
68.248.0.0 – 68.255.255.255
PPPoX Pool – RBACK2 CHCGIL SBC068252224000031226 (NET-68-252-224-0-1)
68.252.224.0 – 68.252.239.255

68.23.187.146 (originating I.P.A.)
Ameritech Electronic Commerce NET-AMER-682000 (NET-68-20-0-0-1)
68.20.0.0 – 68.23.255.255
PPPoX Pool – Rback12 CHCGIL SBC068023184000030127 (NET-68-23-184-0-1)
68.23.184.0 – 68.23.187.255

Picture 758.gif Offending Hack/Trojan Attempts – AOL:

Note: aggressive, ongoing attempt to ‘share’ the Back-Orifice 2000 Trojan:
172.172.54.28 (originating I.P.A.)
OrgName: America Online
OrgID: AOL
Address: 22000 AOL Way
City: Dulles
StateProv: VA PostalCode: 20166 Country: US
NetRange: 172.128.0.0 – 172.191.255.255

And then same but now with the NetBus Trojan:

172.172.54.28 (originating I.P.A.)
=OrgName: America Online
OrgID: AOL NS.AOL.COM è aol.net
Address: 22000 AOL Way
City: Dulles StateProv: VA PostalCode: 20166 Country: US
NetRange: 172.128.0.0 – 172.191.255.255

172.200.225.33 (originating I.P.A.)
=OrgName: America Online
OrgID: AOL NS.AOL.COM è aol.net
Address: 22000 AOL Way
City: Dulles StateProv: VA PostalCode: 20166 Country: US
NetRange: 172.192.0.0 – 172.216.255.255
CIDR: 172.192.0.0/12, 172.208.0.0/13, 172.216.0.0/16
NetName: AOL-172BLK-2
NetHandle: NET-172-192-0-0-1


C O M M E N T S : now closed