194.152.42.132

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): Antena3 S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 194.152.42.132 to port 445 [T]	2020-08-16 04:22:36
attackspambots	Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)	2020-08-01 02:39:59
attackspambots	Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)	2019-11-07 05:24:07

类型

评论内容

时间

attackspam

Unauthorized connection attempt detected from IP address 194.152.42.132 to port 445 [T]

2020-08-16 04:22:36

attackspambots

Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)

2020-08-01 02:39:59

attackspambots

Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)

2019-11-07 05:24:07

相同子网IP讨论:

IP	类型	评论内容	时间
194.152.42.119	attack	Unauthorized connection attempt from IP address 194.152.42.119 on Port 445(SMB)	2020-06-16 02:45:29
194.152.42.131	attackbotsspam	1580460400 - 01/31/2020 09:46:40 Host: 194.152.42.131/194.152.42.131 Port: 445 TCP Blocked	2020-01-31 20:03:41
194.152.42.131	attack	Unauthorized connection attempt from IP address 194.152.42.131 on Port 445(SMB)	2019-09-07 06:11:38

类型

评论内容

时间

194.152.42.119

attack

Unauthorized connection attempt from IP address 194.152.42.119 on Port 445(SMB)

2020-06-16 02:45:29

194.152.42.131

attackbotsspam

1580460400 - 01/31/2020 09:46:40 Host: 194.152.42.131/194.152.42.131 Port: 445 TCP Blocked

2020-01-31 20:03:41

194.152.42.131

attack

Unauthorized connection attempt from IP address 194.152.42.131 on Port 445(SMB)

2019-09-07 06:11:38

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.152.42.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47399
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;194.152.42.132.			IN	A

;; AUTHORITY SECTION:
.			3533	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050900 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 14:28:19 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 132.42.152.194.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 132.42.152.194.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
129.213.128.217	attack	Feb 28 11:31:54 motanud sshd\[23843\]: Invalid user qa from 129.213.128.217 port 18104 Feb 28 11:31:54 motanud sshd\[23843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.128.217 Feb 28 11:31:56 motanud sshd\[23843\]: Failed password for invalid user qa from 129.213.128.217 port 18104 ssh2	2019-08-04 09:10:08
106.217.46.174	attackbots	Automatic report - Port Scan Attack	2019-08-04 08:46:47
118.193.80.106	attack	Apr 16 19:52:18 vtv3 sshd\[11391\]: Invalid user zl from 118.193.80.106 port 46131 Apr 16 19:52:18 vtv3 sshd\[11391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.80.106 Apr 16 19:52:20 vtv3 sshd\[11391\]: Failed password for invalid user zl from 118.193.80.106 port 46131 ssh2 Apr 16 19:57:59 vtv3 sshd\[13990\]: Invalid user admin2 from 118.193.80.106 port 43202 Apr 16 19:57:59 vtv3 sshd\[13990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.80.106 Aug 4 02:50:36 vtv3 sshd\[11660\]: Invalid user admin2 from 118.193.80.106 port 54870 Aug 4 02:50:36 vtv3 sshd\[11660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.80.106 Aug 4 02:50:38 vtv3 sshd\[11660\]: Failed password for invalid user admin2 from 118.193.80.106 port 54870 ssh2 Aug 4 02:55:32 vtv3 sshd\[14242\]: Invalid user lucky from 118.193.80.106 port 51544 Aug 4 02:55:32 vtv3 sshd\[14242\]:	2019-08-04 09:35:01
91.199.224.121	attackbots	[portscan] Port scan	2019-08-04 08:49:35
104.248.242.125	attackspambots	Aug 3 17:20:56 marvibiene sshd[27227]: Invalid user admin from 104.248.242.125 port 44804 Aug 3 17:20:56 marvibiene sshd[27227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 Aug 3 17:20:56 marvibiene sshd[27227]: Invalid user admin from 104.248.242.125 port 44804 Aug 3 17:20:58 marvibiene sshd[27227]: Failed password for invalid user admin from 104.248.242.125 port 44804 ssh2 ...	2019-08-04 08:47:39
103.24.75.50	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:46:23,401 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.24.75.50)	2019-08-04 09:27:23
201.221.201.75	attackbots	Automatic report - Port Scan Attack	2019-08-04 09:16:52
190.201.20.45	attack	SSH-bruteforce attempts	2019-08-04 09:33:13
108.170.108.155	attack	Aug 3 16:58:53 debian dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 8 secs\): user=\, method=PLAIN, rip=108.170.108.155, lip=redacted, ...	2019-08-04 08:56:50
31.184.238.120	attack	Automatic report - Banned IP Access	2019-08-04 08:52:25
104.236.122.193	attackbotsspam	Invalid user 1111 from 104.236.122.193 port 43021	2019-08-04 09:12:36
104.248.8.60	attackbotsspam	Aug 4 02:39:04 server2 sshd\[4393\]: User root from 104.248.8.60 not allowed because not listed in AllowUsers Aug 4 02:39:05 server2 sshd\[4395\]: Invalid user admin from 104.248.8.60 Aug 4 02:39:06 server2 sshd\[4397\]: Invalid user admin from 104.248.8.60 Aug 4 02:39:07 server2 sshd\[4399\]: Invalid user user from 104.248.8.60 Aug 4 02:39:08 server2 sshd\[4401\]: Invalid user ubnt from 104.248.8.60 Aug 4 02:39:08 server2 sshd\[4403\]: Invalid user admin from 104.248.8.60	2019-08-04 08:48:14
46.101.54.199	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-08-04 08:53:28
129.213.145.85	attackspam	Feb 28 08:04:50 motanud sshd\[12743\]: Invalid user guest from 129.213.145.85 port 25387 Feb 28 08:04:50 motanud sshd\[12743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.145.85 Feb 28 08:04:52 motanud sshd\[12743\]: Failed password for invalid user guest from 129.213.145.85 port 25387 ssh2	2019-08-04 09:07:08
126.82.24.78	attackbots	port scan and connect, tcp 80 (http)	2019-08-04 09:20:30

最近上报的IP列表

101.100.225.62	67.227.102.213	21.100.157.71	161.176.172.156
203.128.241.170	81.104.164.20	95.178.159.185	229.16.189.24
103.73.181.10	185.32.146.214	193.27.243.122	182.76.202.33
94.182.98.12	36.72.16.134	180.60.255.244	103.86.135.184
17.43.101.145	27.16.216.49	95.160.157.92	150.255.8.116