Virus / Security Risk
The following IPs have been port scanning SMB (TCP/445) (this is windows file share port) and may well be infected by malware or viruses. Can the owners please check software they may have installed recently and run a scan for viruses.
They’ve been logged on @dizzle 's firewall trying to log into 445 (which is SMB or Windows file share port). It’s a known symptom of the WannaCry virus or similar. Some wuggers (from PTAWUG) have also noted the attacks on their anti-virus:
Thanks @dizzle for tracking down the issue. Thanks for PTAWUGgers reporting it to us also.
These will be automatically blackholed: