194.152.42.132

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: Antena3 S.A.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 194.152.42.132 to port 445 [T]	2020-08-16 04:22:36
attackspambots	Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)	2020-08-01 02:39:59
attackspambots	Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)	2019-11-07 05:24:07

Type

Details

Datetime

attackspam

Unauthorized connection attempt detected from IP address 194.152.42.132 to port 445 [T]

2020-08-16 04:22:36

attackspambots

Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)

2020-08-01 02:39:59

attackspambots

Unauthorized connection attempt from IP address 194.152.42.132 on Port 445(SMB)

2019-11-07 05:24:07

Comments on same subnet:

IP	Type	Details	Datetime
194.152.42.119	attack	Unauthorized connection attempt from IP address 194.152.42.119 on Port 445(SMB)	2020-06-16 02:45:29
194.152.42.131	attackbotsspam	1580460400 - 01/31/2020 09:46:40 Host: 194.152.42.131/194.152.42.131 Port: 445 TCP Blocked	2020-01-31 20:03:41
194.152.42.131	attack	Unauthorized connection attempt from IP address 194.152.42.131 on Port 445(SMB)	2019-09-07 06:11:38

Type

Details

Datetime

194.152.42.119

attack

Unauthorized connection attempt from IP address 194.152.42.119 on Port 445(SMB)

2020-06-16 02:45:29

194.152.42.131

attackbotsspam

1580460400 - 01/31/2020 09:46:40 Host: 194.152.42.131/194.152.42.131 Port: 445 TCP Blocked

2020-01-31 20:03:41

194.152.42.131

attack

Unauthorized connection attempt from IP address 194.152.42.131 on Port 445(SMB)

2019-09-07 06:11:38

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.152.42.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47399
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;194.152.42.132.			IN	A

;; AUTHORITY SECTION:
.			3533	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050900 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 14:28:19 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 132.42.152.194.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 132.42.152.194.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.103.98.211	attackspam	Invalid user post1 from 83.103.98.211 port 57565	2019-12-14 22:26:57
218.92.0.131	attack	Dec 14 15:12:37 nextcloud sshd\[15043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.131 user=root Dec 14 15:12:39 nextcloud sshd\[15043\]: Failed password for root from 218.92.0.131 port 21508 ssh2 Dec 14 15:12:43 nextcloud sshd\[15043\]: Failed password for root from 218.92.0.131 port 21508 ssh2 ...	2019-12-14 22:38:09
188.214.104.146	attackbots	Automatic report - XMLRPC Attack	2019-12-14 22:18:45
67.207.91.133	attack	Dec 14 19:46:20 vibhu-HP-Z238-Microtower-Workstation sshd\[16182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.91.133 user=www-data Dec 14 19:46:21 vibhu-HP-Z238-Microtower-Workstation sshd\[16182\]: Failed password for www-data from 67.207.91.133 port 39472 ssh2 Dec 14 19:51:35 vibhu-HP-Z238-Microtower-Workstation sshd\[16516\]: Invalid user amaina from 67.207.91.133 Dec 14 19:51:35 vibhu-HP-Z238-Microtower-Workstation sshd\[16516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.91.133 Dec 14 19:51:37 vibhu-HP-Z238-Microtower-Workstation sshd\[16516\]: Failed password for invalid user amaina from 67.207.91.133 port 47704 ssh2 ...	2019-12-14 22:33:03
62.32.66.190	attack	Dec 14 09:24:04 plusreed sshd[9955]: Invalid user millette from 62.32.66.190 ...	2019-12-14 22:40:13
188.173.80.134	attackspam	Dec 14 15:05:57 vps691689 sshd[31451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.80.134 Dec 14 15:05:59 vps691689 sshd[31451]: Failed password for invalid user schucker from 188.173.80.134 port 33693 ssh2 ...	2019-12-14 22:25:28
220.248.30.58	attack	Dec 14 09:33:26 linuxvps sshd\[43765\]: Invalid user beater from 220.248.30.58 Dec 14 09:33:26 linuxvps sshd\[43765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.30.58 Dec 14 09:33:28 linuxvps sshd\[43765\]: Failed password for invalid user beater from 220.248.30.58 port 41339 ssh2 Dec 14 09:40:18 linuxvps sshd\[48535\]: Invalid user sitzlar from 220.248.30.58 Dec 14 09:40:18 linuxvps sshd\[48535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.30.58	2019-12-14 22:42:44
139.28.223.216	attack	Lines containing failures of 139.28.223.216 Dec 14 07:14:20 omfg postfix/smtpd[30068]: connect from unknown[139.28.223.216] Dec x@x Dec 14 07:14:31 omfg postfix/smtpd[30068]: disconnect from unknown[139.28.223.216] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.28.223.216	2019-12-14 22:19:04
106.52.50.225	attackspambots	Dec 14 12:43:41 areeb-Workstation sshd[5804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.50.225 Dec 14 12:43:44 areeb-Workstation sshd[5804]: Failed password for invalid user frankcom from 106.52.50.225 port 39702 ssh2 ...	2019-12-14 22:41:22
107.0.80.222	attack	Dec 14 14:12:50 hosting sshd[31258]: Invalid user mccollum from 107.0.80.222 port 33057 ...	2019-12-14 22:34:25
114.242.143.121	attack	Dec 14 16:53:09 server sshd\[21412\]: Invalid user anurous from 114.242.143.121 Dec 14 16:53:10 server sshd\[21412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.143.121 Dec 14 16:53:12 server sshd\[21412\]: Failed password for invalid user anurous from 114.242.143.121 port 60216 ssh2 Dec 14 17:09:29 server sshd\[26152\]: Invalid user draier from 114.242.143.121 Dec 14 17:09:29 server sshd\[26152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.143.121 ...	2019-12-14 22:41:02
14.168.160.162	attackspam	1576304501 - 12/14/2019 07:21:41 Host: 14.168.160.162/14.168.160.162 Port: 445 TCP Blocked	2019-12-14 22:24:58
106.13.67.127	attack	SSH login attempts.	2019-12-14 22:34:53
123.25.239.124	attackspambots	Unauthorized connection attempt detected from IP address 123.25.239.124 to port 445	2019-12-14 22:32:42
132.232.93.48	attackspam	$f2bV_matches	2019-12-14 22:24:34

Recently Reported IPs

101.100.225.62	67.227.102.213	21.100.157.71	161.176.172.156
203.128.241.170	81.104.164.20	95.178.159.185	229.16.189.24
103.73.181.10	185.32.146.214	193.27.243.122	182.76.202.33
94.182.98.12	36.72.16.134	180.60.255.244	103.86.135.184
17.43.101.145	27.16.216.49	95.160.157.92	150.255.8.116