Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attack
Brute forced into our server.
2020-10-05 06:18:55
attack
Brute forced into our server.
2020-10-04 22:18:37
attackbots
Brute forced into our server.
2020-10-04 14:04:55
attackbotsspam
Nov 28 09:30:47 MainVPS sshd[3659]: Invalid user root1 from 45.55.129.23 port 40691
Nov 28 09:30:47 MainVPS sshd[3659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
Nov 28 09:30:47 MainVPS sshd[3659]: Invalid user root1 from 45.55.129.23 port 40691
Nov 28 09:30:49 MainVPS sshd[3659]: Failed password for invalid user root1 from 45.55.129.23 port 40691 ssh2
Nov 28 09:37:54 MainVPS sshd[16264]: Invalid user prueba from 45.55.129.23 port 58633
...
2019-11-28 18:10:01
attack
Nov 28 07:17:53 MainVPS sshd[22726]: Invalid user vanairsdale from 45.55.129.23 port 56605
Nov 28 07:17:53 MainVPS sshd[22726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
Nov 28 07:17:53 MainVPS sshd[22726]: Invalid user vanairsdale from 45.55.129.23 port 56605
Nov 28 07:17:55 MainVPS sshd[22726]: Failed password for invalid user vanairsdale from 45.55.129.23 port 56605 ssh2
Nov 28 07:25:36 MainVPS sshd[4251]: Invalid user milord from 45.55.129.23 port 46309
...
2019-11-28 14:29:51
attackspambots
2019-07-20T02:49:32.641439enmeeting.mahidol.ac.th sshd\[18223\]: User root from 45.55.129.23 not allowed because not listed in AllowUsers
2019-07-20T02:49:32.765784enmeeting.mahidol.ac.th sshd\[18223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23  user=root
2019-07-20T02:49:34.817612enmeeting.mahidol.ac.th sshd\[18223\]: Failed password for invalid user root from 45.55.129.23 port 46065 ssh2
...
2019-07-20 05:11:25
attackbotsspam
Tried sshing with brute force.
2019-07-08 03:03:42
attack
Jul  2 10:02:22 localhost sshd\[101352\]: Invalid user martin from 45.55.129.23 port 45145
Jul  2 10:02:22 localhost sshd\[101352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
Jul  2 10:02:25 localhost sshd\[101352\]: Failed password for invalid user martin from 45.55.129.23 port 45145 ssh2
Jul  2 10:04:30 localhost sshd\[101403\]: Invalid user dc from 45.55.129.23 port 57567
Jul  2 10:04:30 localhost sshd\[101403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
...
2019-07-02 18:23:02
attackbotsspam
Invalid user admin from 45.55.129.23 port 49301
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
Failed password for invalid user admin from 45.55.129.23 port 49301 ssh2
Invalid user postgres from 45.55.129.23 port 59023
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
2019-07-01 05:21:39
attackbotsspam
$f2bV_matches
2019-06-30 17:21:35
attackspam
2019-06-26T06:36:24.984246scmdmz1 sshd\[12553\]: Invalid user zw from 45.55.129.23 port 37979
2019-06-26T06:36:24.987547scmdmz1 sshd\[12553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23
2019-06-26T06:36:26.651586scmdmz1 sshd\[12553\]: Failed password for invalid user zw from 45.55.129.23 port 37979 ssh2
...
2019-06-26 12:39:35
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.129.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52113
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.129.23.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 02 18:05:32 +08 2019
;; MSG SIZE  rcvd: 116

Host info
23.129.55.45.in-addr.arpa domain name pointer git.autocasion.com.
Nslookup info:
Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
23.129.55.45.in-addr.arpa	name = git.autocasion.com.

Authoritative answers can be found from:

Related IP info:
Related comments:
IP Type Details Datetime
201.141.95.133 attackbots
2019-01-31 02:36:24 H=\(customer-201-141-95-133.cablevision.net.mx\) \[201.141.95.133\]:3359 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-01-31 02:36:33 H=\(customer-201-141-95-133.cablevision.net.mx\) \[201.141.95.133\]:34648 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-01-31 02:36:39 H=\(customer-201-141-95-133.cablevision.net.mx\) \[201.141.95.133\]:42864 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...
2020-01-29 22:55:59
196.134.15.2 attackspambots
1580304900 - 01/29/2020 14:35:00 Host: 196.134.15.2/196.134.15.2 Port: 445 TCP Blocked
2020-01-29 22:48:51
219.149.108.195 attackbotsspam
Unauthorized connection attempt detected from IP address 219.149.108.195 to port 2220 [J]
2020-01-29 23:27:39
200.7.90.152 attackbotsspam
2019-07-08 14:36:13 1hkSsO-00080V-KV SMTP connection from \(\[200.7.90.152\]\) \[200.7.90.152\]:21452 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-07-08 14:36:22 1hkSsX-00080e-1p SMTP connection from \(\[200.7.90.152\]\) \[200.7.90.152\]:36968 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-07-08 14:36:31 1hkSsg-00080p-7G SMTP connection from \(\[200.7.90.152\]\) \[200.7.90.152\]:21572 I=\[193.107.88.166\]:25 closed by DROP in ACL
...
2020-01-29 23:33:39
222.186.169.192 attackspam
Jan 29 16:20:07 vps647732 sshd[4524]: Failed password for root from 222.186.169.192 port 46240 ssh2
Jan 29 16:20:20 vps647732 sshd[4524]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 46240 ssh2 [preauth]
...
2020-01-29 23:32:59
222.186.175.150 attackbotsspam
Jan 29 14:48:06 localhost sshd\[66459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150  user=root
Jan 29 14:48:08 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2
Jan 29 14:48:11 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2
Jan 29 14:48:15 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2
Jan 29 14:48:18 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2
...
2020-01-29 22:54:53
154.118.132.180 attackbotsspam
Jan 29 15:30:55 legacy sshd[31262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.118.132.180
Jan 29 15:30:57 legacy sshd[31262]: Failed password for invalid user chitrangada from 154.118.132.180 port 50926 ssh2
Jan 29 15:33:50 legacy sshd[31312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.118.132.180
...
2020-01-29 22:54:21
175.6.140.14 attackbots
Unauthorized connection attempt detected from IP address 175.6.140.14 to port 22 [T]
2020-01-29 23:31:51
89.248.162.136 attackbots
01/29/2020-16:27:51.931579 89.248.162.136 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99
2020-01-29 23:38:03
201.141.94.160 attack
2019-03-11 19:36:58 H=\(customer-201-141-94-160.cablevision.net.mx\) \[201.141.94.160\]:58908 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-03-11 19:37:16 H=\(customer-201-141-94-160.cablevision.net.mx\) \[201.141.94.160\]:2121 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
2019-03-11 19:37:31 H=\(customer-201-141-94-160.cablevision.net.mx\) \[201.141.94.160\]:20382 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed
...
2020-01-29 22:56:19
104.237.225.85 attackspambots
MultiHost/MultiPort Probe, Scan, Hack -
2020-01-29 22:49:53
168.232.130.178 attackbots
Brute forcing email accounts
2020-01-29 23:02:55
45.132.87.180 attackspambots
1580304877 - 01/29/2020 14:34:37 Host: 45.132.87.180/45.132.87.180 Port: 445 TCP Blocked
2020-01-29 23:24:15
92.63.194.238 attackspam
Unauthorized connection attempt detected from IP address 92.63.194.238 to port 1111 [J]
2020-01-29 23:27:21
200.68.149.30 attackspambots
2019-09-23 18:23:00 1iCR76-0008FZ-4n SMTP connection from \(\[200.68.149.30\]\) \[200.68.149.30\]:44674 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-09-23 18:23:06 1iCR7B-0008Fn-Dr SMTP connection from \(\[200.68.149.30\]\) \[200.68.149.30\]:44679 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-09-23 18:23:10 1iCR7F-0008Fu-IC SMTP connection from \(\[200.68.149.30\]\) \[200.68.149.30\]:44684 I=\[193.107.88.166\]:25 closed by DROP in ACL
...
2020-01-29 23:38:26

Recently Reported IPs

115.21.123.116 187.189.168.145 107.170.193.44 154.41.3.41
118.89.30.76 205.185.216.42 107.170.193.225 190.0.22.66
196.52.43.89 188.166.246.46 107.170.193.204 45.62.250.221
203.109.255.58 46.174.191.32 122.170.15.82 116.58.236.235
129.28.140.254 81.103.147.128 107.170.193.18 103.78.27.210