PORT SCAN ATTACK DETECTOR (PSAD)

This page contains the output of the Port Scan Attack Detector (PSAD) daemon running on my home network.

These statistics have been tracked since Mon Oct 22 03:28:18 2018.  Read more here:  PSAD on Raspberry Pi

Click here to show the various live data being tracked:

Top Attackers  |  Top Signatures  |  Top Ports
Last SeenHitsIP AddressCountryHosting Provider
Sun Nov 18 04:38:45 2018731277.72.82.22GBUnited Protection (UK) Security LIMITED
Sun Nov 4 02:52:40 20185574185.153.197.8MDRU-RMENGINEERING-20160524
Tue Nov 20 13:22:16 20181820194.28.115.245NLNetwork Systems Ltd.
Tue Nov 20 13:00:50 20181801194.28.115.243NLNetwork Systems Ltd.
Tue Nov 20 13:21:30 20181444176.119.4.27UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:15:47 20181417176.119.4.18UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:24:28 20181179176.119.4.77UAFOP Gubina Lubov Petrivna
Tue Nov 20 12:55:06 20181054176.119.4.30UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:10:57 20181036176.119.4.35UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:29:08 2018964176.119.4.10UAFOP Gubina Lubov Petrivna
Tue Nov 20 12:58:44 2018960176.119.4.28UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:28:45 2018941176.119.4.11UAFOP Gubina Lubov Petrivna
Tue Nov 20 12:19:30 2018929176.119.4.29UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:25:03 2018882176.119.4.51UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:18:39 2018869176.119.4.60UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:22:22 2018867176.119.4.37UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:18:28 2018854176.119.4.12UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:27:42 2018838185.153.198.220MDRU-RMENGINEERING-20160524
Tue Nov 20 12:35:55 2018804176.119.4.50UAFOP Gubina Lubov Petrivna
Mon Nov 19 18:59:13 2018769176.119.4.7UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:10:51 2018762176.119.4.9UAFOP Gubina Lubov Petrivna
Tue Nov 20 07:11:51 2018750185.208.208.198NLAccess2.IT Group B.V.
Tue Nov 20 10:16:08 2018727185.208.209.6NLAccess2.IT Group B.V.
Mon Oct 29 10:58:10 2018704185.143.221.37NLinformtech-select
Tue Oct 30 03:49:00 2018691191.101.249.11USDigital Energy Technologies Limited
Sat Nov 10 11:01:27 2018688193.106.29.74UAORG-IU17-RIPE
Tue Nov 20 11:29:58 2018659185.255.31.2CHORG-GS326-RIPE
Tue Nov 20 13:02:22 2018616176.119.4.73UAFOP Gubina Lubov Petrivna
Fri Oct 26 23:12:25 201858380.82.65.231SCQuasi Networks LTD.
Tue Nov 20 12:49:32 201857977.72.85.26BGUnited Protection (UK) Security LIMITED
Tue Nov 20 13:30:40 2018573176.119.4.49UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:21:59 2018560110.249.212.46CNUNICOM-HE
Thu Oct 25 22:21:35 2018523205.205.150.19USMCI Communications Services, Inc. d/b/a Verizon Business (MCICS)
Tue Nov 20 12:59:30 20185215.188.87.76NLChannelnet LTD.
Wed Oct 24 09:29:07 2018518205.205.150.59USMCI Communications Services, Inc. d/b/a Verizon Business (MCICS)
Mon Nov 12 13:53:57 2018496185.255.31.75CHORG-GS326-RIPE
Tue Nov 20 12:03:52 2018474176.119.4.26UAFOP Gubina Lubov Petrivna
Tue Nov 20 11:46:22 20184685.8.54.27RUPetersburg Internet Network ltd.
Tue Nov 20 13:05:09 2018456176.119.4.39UAFOP Gubina Lubov Petrivna
Sat Nov 3 02:00:10 2018454122.228.10.51CNJI-LIN-GAO-SHENG-KE-JI-CORP
Thu Oct 25 22:21:35 201845314.135.120.19CNCHINANET-NX
Tue Nov 6 19:29:41 2018434185.255.31.14CHORG-GS326-RIPE
Thu Nov 8 18:05:52 201842531.192.108.68EUORG-GS326-RIPE
Tue Nov 20 13:22:05 2018418176.119.4.56UAFOP Gubina Lubov Petrivna
Tue Oct 30 04:03:13 2018417191.101.249.29USDigital Energy Technologies Limited
Wed Oct 24 09:29:07 201841314.135.120.59CNCHINANET-NX
Tue Nov 20 11:43:47 2018387122.228.19.80CNHZZYKJ-WZ
Tue Nov 20 10:57:04 2018358176.119.1.206UAFOP Gubina Lubov Petrivna
Tue Nov 20 13:17:53 2018347185.222.210.5VEPRISM BUSINESS SERVICES LTD
Tue Oct 30 03:38:24 2018333191.101.249.54USDigital Energy Technologies Limited
HitsSIDSignature
3759100205MISC Microsoft SQL Server communication attempt
1825100077MISC MS Terminal Server communication attempt
1600564P2P Napster Client Data communication attempt
1046100063BACKDOOR RUX the Tick connection attempt
616100202MISC VNC communication attempt
6052375BACKDOOR DoomJuice file upload attempt
579100090P2P napster communication attempt
508510POLICY HP JetDirect LCD communication attempt
505100084MISC HP Web JetAdmin communication attempt
202100082MISC Microsoft PPTP communication attempt
131562P2P Napster Client Data communication attempt
89563P2P Napster Client Data communication attempt
661846POLICY vncviewer Java applet communication attempt
59100028BACKDOOR netbus Connection Cttempt
52100073MISC PCAnywhere communication attempt
502181P2P BitTorrent communication attempt
35100041BACKDOOR SatansBackdoor.2.0.Beta, or BackConstruction 2.1 Connection Attempt
28100204MISC Radmin Default install options attempt
27100112DOS Real Audio Server communication attempt
25568POLICY HP JetDirect LCD commnication attempt
251408DOS MSDTC communication attempt
16402ICMP Destination Unreachable Port Unreachable
14119BACKDOOR Doly 2.0 Connection attempt
141641DOS DB2 dos communication attempt
12147BACKDOOR GateCrasher Connection attempt
10100100FTP Yak! FTP server communication attempt
8208BACKDOOR PhaseZero Server Active on Network
81987MISC xfs communication attempt
82586P2P eDonkey transfer attempt
6561P2P Napster Client Data communication attempt
4100064BACKDOOR Asylum 0.1 connection request
41636MISC Xtramail communication attempt
42124BACKDOOR Remote PC Access connection attempt
41819MISC Alcatel PABX 4400 connection attempt
4100038BACKDOOR - Dagger_1.4.0 Connection attempt
41383P2P Fastrack kazaa/morpheus communication attempt
2282DOS arkiea backup communication attempt
21605DOS iParty DOS attempt
2505MISC Insecure TIMBUKTU communication attempt
21421SNMP AgentX/tcp request
2599RPC portmap listing TCP 32771
2145BACKDOOR GirlFriend Connection attempt
21985BACKDOOR Doly 1.5 Connection attempt
2100083MISC LDAP communication attempt
2153BACKDOOR DonaldDick 1.53 connection attempt
2107BACKDOOR Subseven DEFCON8 2.1 connection Attempt
2159BACKDOOR NetMetro File List connection attempt
PortHits
2314183
14334000
803578
254113451
223408
80803200
812831
33891927
55551600
23231218
80881064
222221046
4431031
8545951
60001881
5900626
8888581
3306567
8000508
5431506
6379430
8081424
3128388
9000379
3390361
PortHits
8443354
21352
82320
50802278
88273
25265
8001264
5038257
3391244
3388239
3399222
7001215
83213
1080213
3392207
3393204
1723202
9090199
3395195
85191
3396185
3394183
3398182
8118181
84181
The script to generate this HTML from PSAD output data can be downloaded here:  https://github.com/disloops/psadify