145.239.85.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: OVH SAS

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	...	2020-02-02 01:29:22
attack	Oct 24 14:23:33 vps647732 sshd[32608]: Failed password for root from 145.239.85.55 port 35611 ssh2 ...	2019-10-24 20:30:50
attackbots	Oct 20 05:35:05 sachi sshd\[9165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=my-speak.pl user=root Oct 20 05:35:08 sachi sshd\[9165\]: Failed password for root from 145.239.85.55 port 52245 ssh2 Oct 20 05:39:02 sachi sshd\[9446\]: Invalid user valentina from 145.239.85.55 Oct 20 05:39:02 sachi sshd\[9446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=my-speak.pl Oct 20 05:39:04 sachi sshd\[9446\]: Failed password for invalid user valentina from 145.239.85.55 port 47111 ssh2	2019-10-21 04:00:35
attackbotsspam	2019-09-24 18:24:28,931 fail2ban.actions [818]: NOTICE [sshd] Ban 145.239.85.55 2019-09-24 21:29:51,185 fail2ban.actions [818]: NOTICE [sshd] Ban 145.239.85.55 2019-09-25 00:35:03,469 fail2ban.actions [818]: NOTICE [sshd] Ban 145.239.85.55 ...	2019-10-03 12:33:52
attackspambots	Sep 24 03:56:05 lcprod sshd\[10177\]: Invalid user damares from 145.239.85.55 Sep 24 03:56:05 lcprod sshd\[10177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.ip-145-239-85.eu Sep 24 03:56:08 lcprod sshd\[10177\]: Failed password for invalid user damares from 145.239.85.55 port 51776 ssh2 Sep 24 04:00:18 lcprod sshd\[10566\]: Invalid user popa3d from 145.239.85.55 Sep 24 04:00:18 lcprod sshd\[10566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.ip-145-239-85.eu	2019-09-25 03:13:47
attack	Sep 20 10:14:59 lcprod sshd\[22323\]: Invalid user administrator from 145.239.85.55 Sep 20 10:14:59 lcprod sshd\[22323\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.ip-145-239-85.eu Sep 20 10:15:01 lcprod sshd\[22323\]: Failed password for invalid user administrator from 145.239.85.55 port 40955 ssh2 Sep 20 10:19:22 lcprod sshd\[22772\]: Invalid user ftpuser from 145.239.85.55 Sep 20 10:19:22 lcprod sshd\[22772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.ip-145-239-85.eu	2019-09-21 04:23:40
attackspambots	Sep 7 23:57:30 SilenceServices sshd[14650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.55 Sep 7 23:57:31 SilenceServices sshd[14650]: Failed password for invalid user frappe from 145.239.85.55 port 60183 ssh2 Sep 8 00:01:35 SilenceServices sshd[16169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.55	2019-09-08 15:33:00
attackbotsspam	Sep 7 16:14:45 SilenceServices sshd[32259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.55 Sep 7 16:14:46 SilenceServices sshd[32259]: Failed password for invalid user developer@123 from 145.239.85.55 port 33667 ssh2 Sep 7 16:19:16 SilenceServices sshd[1467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.55	2019-09-07 22:23:04

Comments on same subnet:

IP	Type	Details	Datetime
145.239.85.21	attackspambots	20 attempts against mh-ssh on echoip	2020-10-14 04:15:03
145.239.85.21	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-13 19:39:06
145.239.85.21	attack	Oct 3 21:00:30 journals sshd\[67582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Oct 3 21:00:32 journals sshd\[67582\]: Failed password for root from 145.239.85.21 port 59436 ssh2 Oct 3 21:04:15 journals sshd\[67893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Oct 3 21:04:17 journals sshd\[67893\]: Failed password for root from 145.239.85.21 port 34992 ssh2 Oct 3 21:08:01 journals sshd\[68275\]: Invalid user vivek from 145.239.85.21 ...	2020-10-04 04:10:04
145.239.85.21	attackbotsspam	2020-10-03T08:37:25.533789amanda2.illicoweb.com sshd\[36012\]: Invalid user ale from 145.239.85.21 port 46395 2020-10-03T08:37:25.540480amanda2.illicoweb.com sshd\[36012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=21.ip-145-239-85.eu 2020-10-03T08:37:27.414005amanda2.illicoweb.com sshd\[36012\]: Failed password for invalid user ale from 145.239.85.21 port 46395 ssh2 2020-10-03T08:44:31.322928amanda2.illicoweb.com sshd\[36531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=21.ip-145-239-85.eu user=root 2020-10-03T08:44:33.346629amanda2.illicoweb.com sshd\[36531\]: Failed password for root from 145.239.85.21 port 38124 ssh2 ...	2020-10-03 20:13:38
145.239.85.21	attack	145.239.85.21 (PL/Poland/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 14 07:13:33 jbs1 sshd[22265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.69 user=root Sep 14 07:11:58 jbs1 sshd[21850]: Failed password for root from 145.239.85.21 port 42571 ssh2 Sep 14 07:10:57 jbs1 sshd[21506]: Failed password for root from 94.23.9.102 port 58050 ssh2 Sep 14 07:11:47 jbs1 sshd[21791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.200.212.170 user=root Sep 14 07:11:50 jbs1 sshd[21791]: Failed password for root from 113.200.212.170 port 3119 ssh2 IP Addresses Blocked: 49.88.112.69 (CN/China/-)	2020-09-14 22:29:57
145.239.85.228	attack	Sep 14 06:41:56 vm1 sshd[28715]: Failed password for root from 145.239.85.228 port 51152 ssh2 ...	2020-09-14 20:38:09
145.239.85.21	attackspambots	20 attempts against mh-ssh on echoip	2020-09-14 14:21:31
145.239.85.228	attackspambots	Sep 14 01:26:19 firewall sshd[10302]: Failed password for root from 145.239.85.228 port 59706 ssh2 Sep 14 01:30:33 firewall sshd[10380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.228 user=root Sep 14 01:30:35 firewall sshd[10380]: Failed password for root from 145.239.85.228 port 44550 ssh2 ...	2020-09-14 12:31:08
145.239.85.21	attackspam	Sep 13 21:47:35 124388 sshd[18328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 Sep 13 21:47:35 124388 sshd[18328]: Invalid user comercial from 145.239.85.21 port 44258 Sep 13 21:47:37 124388 sshd[18328]: Failed password for invalid user comercial from 145.239.85.21 port 44258 ssh2 Sep 13 21:51:22 124388 sshd[18572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Sep 13 21:51:24 124388 sshd[18572]: Failed password for root from 145.239.85.21 port 49798 ssh2	2020-09-14 06:19:40
145.239.85.228	attackspambots	2020-09-14T02:59:32.705388billing sshd[9349]: Failed password for invalid user dcxz from 145.239.85.228 port 35134 ssh2 2020-09-14T03:03:42.697895billing sshd[13777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-c4e73ddf.vps.ovh.net user=root 2020-09-14T03:03:44.598033billing sshd[13777]: Failed password for root from 145.239.85.228 port 40290 ssh2 ...	2020-09-14 04:32:17
145.239.85.228	attackbots	Aug 31 15:18:37 abendstille sshd\[20475\]: Invalid user splunk from 145.239.85.228 Aug 31 15:18:37 abendstille sshd\[20475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.228 Aug 31 15:18:39 abendstille sshd\[20475\]: Failed password for invalid user splunk from 145.239.85.228 port 33214 ssh2 Aug 31 15:22:41 abendstille sshd\[24224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.228 user=root Aug 31 15:22:44 abendstille sshd\[24224\]: Failed password for root from 145.239.85.228 port 41278 ssh2 ...	2020-08-31 22:19:48
145.239.85.21	attackbotsspam	Aug 25 07:49:26 v22019038103785759 sshd\[23015\]: Invalid user fogo from 145.239.85.21 port 41957 Aug 25 07:49:26 v22019038103785759 sshd\[23015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 Aug 25 07:49:27 v22019038103785759 sshd\[23015\]: Failed password for invalid user fogo from 145.239.85.21 port 41957 ssh2 Aug 25 07:51:02 v22019038103785759 sshd\[23257\]: Invalid user bs from 145.239.85.21 port 60911 Aug 25 07:51:02 v22019038103785759 sshd\[23257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 ...	2020-08-25 15:56:24
145.239.85.21	attackspambots	prod8 ...	2020-08-20 22:57:33
145.239.85.21	attackbotsspam	Aug 20 08:13:34 sip sshd[1366228]: Invalid user update from 145.239.85.21 port 57065 Aug 20 08:13:35 sip sshd[1366228]: Failed password for invalid user update from 145.239.85.21 port 57065 ssh2 Aug 20 08:17:25 sip sshd[1366250]: Invalid user etrust from 145.239.85.21 port 60785 ...	2020-08-20 15:33:17
145.239.85.21	attack	Aug 9 16:40:25 abendstille sshd\[3210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Aug 9 16:40:26 abendstille sshd\[3210\]: Failed password for root from 145.239.85.21 port 40855 ssh2 Aug 9 16:44:30 abendstille sshd\[6942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root Aug 9 16:44:32 abendstille sshd\[6942\]: Failed password for root from 145.239.85.21 port 45442 ssh2 Aug 9 16:48:35 abendstille sshd\[10878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 user=root ...	2020-08-10 00:44:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.85.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47059
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.239.85.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 07 22:22:52 CST 2019
;; MSG SIZE  rcvd: 117

Host info

55.85.239.145.in-addr.arpa domain name pointer 55.ip-145-239-85.eu.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
55.85.239.145.in-addr.arpa	name = 55.ip-145-239-85.eu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.119.82.251	attackspambots	2020-04-15T12:39:08.589648vps773228.ovh.net sshd[9926]: Invalid user newadmin from 45.119.82.251 port 58148 2020-04-15T12:39:08.604502vps773228.ovh.net sshd[9926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.82.251 2020-04-15T12:39:08.589648vps773228.ovh.net sshd[9926]: Invalid user newadmin from 45.119.82.251 port 58148 2020-04-15T12:39:10.354556vps773228.ovh.net sshd[9926]: Failed password for invalid user newadmin from 45.119.82.251 port 58148 ssh2 2020-04-15T12:43:24.727387vps773228.ovh.net sshd[11532]: Invalid user public from 45.119.82.251 port 36838 ...	2020-04-15 18:57:11
66.249.64.27	attackspambots	Automatic report - Banned IP Access	2020-04-15 18:37:13
222.186.173.201	attackspambots	Apr 15 10:53:00 localhost sshd[29446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Apr 15 10:53:02 localhost sshd[29446]: Failed password for root from 222.186.173.201 port 31840 ssh2 Apr 15 10:53:06 localhost sshd[29446]: Failed password for root from 222.186.173.201 port 31840 ssh2 Apr 15 10:53:00 localhost sshd[29446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Apr 15 10:53:02 localhost sshd[29446]: Failed password for root from 222.186.173.201 port 31840 ssh2 Apr 15 10:53:06 localhost sshd[29446]: Failed password for root from 222.186.173.201 port 31840 ssh2 Apr 15 10:53:00 localhost sshd[29446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Apr 15 10:53:02 localhost sshd[29446]: Failed password for root from 222.186.173.201 port 31840 ssh2 Apr 15 10:53:06 localhost sshd[29 ...	2020-04-15 18:57:53
183.56.218.62	attackbotsspam	2020-04-15T12:13:32.988510vps773228.ovh.net sshd[369]: Invalid user wesmiler from 183.56.218.62 port 41905 2020-04-15T12:13:33.008366vps773228.ovh.net sshd[369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.56.218.62 2020-04-15T12:13:32.988510vps773228.ovh.net sshd[369]: Invalid user wesmiler from 183.56.218.62 port 41905 2020-04-15T12:13:35.029268vps773228.ovh.net sshd[369]: Failed password for invalid user wesmiler from 183.56.218.62 port 41905 ssh2 2020-04-15T12:16:46.451608vps773228.ovh.net sshd[1602]: Invalid user elastic from 183.56.218.62 port 33501 ...	2020-04-15 18:56:42
43.225.194.75	attackspambots	Apr 15 10:41:29 web8 sshd\[26318\]: Invalid user developer from 43.225.194.75 Apr 15 10:41:29 web8 sshd\[26318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.194.75 Apr 15 10:41:31 web8 sshd\[26318\]: Failed password for invalid user developer from 43.225.194.75 port 52540 ssh2 Apr 15 10:45:17 web8 sshd\[28324\]: Invalid user netscape from 43.225.194.75 Apr 15 10:45:17 web8 sshd\[28324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.194.75	2020-04-15 18:49:19
138.68.234.162	attackspambots	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2020-04-15 18:38:13
179.217.119.83	attackbotsspam	Unauthorized connection attempt detected from IP address 179.217.119.83 to port 23	2020-04-15 19:00:46
145.255.31.52	attackspam	SSH/22 MH Probe, BF, Hack -	2020-04-15 18:52:59
45.116.115.130	attack	Apr 15 12:36:24 Ubuntu-1404-trusty-64-minimal sshd\[26593\]: Invalid user minecraft from 45.116.115.130 Apr 15 12:36:24 Ubuntu-1404-trusty-64-minimal sshd\[26593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.116.115.130 Apr 15 12:36:26 Ubuntu-1404-trusty-64-minimal sshd\[26593\]: Failed password for invalid user minecraft from 45.116.115.130 port 60920 ssh2 Apr 15 12:39:14 Ubuntu-1404-trusty-64-minimal sshd\[27580\]: Invalid user navi from 45.116.115.130 Apr 15 12:39:14 Ubuntu-1404-trusty-64-minimal sshd\[27580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.116.115.130	2020-04-15 18:48:02
103.145.12.52	attack	[2020-04-15 05:09:16] NOTICE[1170][C-00000951] chan_sip.c: Call from '' (103.145.12.52:63714) to extension '01146462607540' rejected because extension not found in context 'public'. [2020-04-15 05:09:16] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-15T05:09:16.236-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146462607540",SessionID="0x7f6c080b4a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.52/63714",ACLName="no_extension_match" [2020-04-15 05:10:35] NOTICE[1170][C-00000953] chan_sip.c: Call from '' (103.145.12.52:64946) to extension '901146462607540' rejected because extension not found in context 'public'. [2020-04-15 05:10:35] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-15T05:10:35.260-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146462607540",SessionID="0x7f6c080b4a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/10 ...	2020-04-15 18:37:41
93.188.2.5	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-04-15 18:31:59
150.109.78.69	attackspambots	Apr 15 10:42:16 ns392434 sshd[2625]: Invalid user mode from 150.109.78.69 port 56488 Apr 15 10:42:16 ns392434 sshd[2625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.78.69 Apr 15 10:42:16 ns392434 sshd[2625]: Invalid user mode from 150.109.78.69 port 56488 Apr 15 10:42:18 ns392434 sshd[2625]: Failed password for invalid user mode from 150.109.78.69 port 56488 ssh2 Apr 15 10:48:15 ns392434 sshd[2769]: Invalid user frontrow from 150.109.78.69 port 44994 Apr 15 10:48:15 ns392434 sshd[2769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.78.69 Apr 15 10:48:15 ns392434 sshd[2769]: Invalid user frontrow from 150.109.78.69 port 44994 Apr 15 10:48:17 ns392434 sshd[2769]: Failed password for invalid user frontrow from 150.109.78.69 port 44994 ssh2 Apr 15 10:51:18 ns392434 sshd[2931]: Invalid user ns2server from 150.109.78.69 port 48784	2020-04-15 18:21:33
117.50.63.228	attackbots	Apr 15 09:40:54 MainVPS sshd[21335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.63.228 user=root Apr 15 09:40:55 MainVPS sshd[21335]: Failed password for root from 117.50.63.228 port 35350 ssh2 Apr 15 09:46:26 MainVPS sshd[26122]: Invalid user osboxes from 117.50.63.228 port 33384 Apr 15 09:46:26 MainVPS sshd[26122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.63.228 Apr 15 09:46:26 MainVPS sshd[26122]: Invalid user osboxes from 117.50.63.228 port 33384 Apr 15 09:46:29 MainVPS sshd[26122]: Failed password for invalid user osboxes from 117.50.63.228 port 33384 ssh2 ...	2020-04-15 18:25:32
114.113.126.163	attack	Apr 15 05:53:52 vpn01 sshd[17864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.113.126.163 Apr 15 05:53:54 vpn01 sshd[17864]: Failed password for invalid user techuser from 114.113.126.163 port 49610 ssh2 ...	2020-04-15 18:22:43
51.223.18.90	attack	Automatic report - Port Scan Attack	2020-04-15 18:29:20

Recently Reported IPs

115.193.53.141	183.88.75.155	98.168.248.164	78.0.22.230
95.216.137.224	2.177.121.62	223.245.212.241	123.70.159.102
99.152.60.100	195.128.72.5	187.44.224.222	179.104.58.180
173.249.49.99	79.66.87.204	148.235.82.68	15.137.62.213
45.179.161.14	24.221.112.88	171.83.191.11	125.71.136.178