45.55.129.23 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Brute forced into our server.	2020-10-05 06:18:55
attack	Brute forced into our server.	2020-10-04 22:18:37
attackbots	Brute forced into our server.	2020-10-04 14:04:55
attackbotsspam	Nov 28 09:30:47 MainVPS sshd[3659]: Invalid user root1 from 45.55.129.23 port 40691 Nov 28 09:30:47 MainVPS sshd[3659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 Nov 28 09:30:47 MainVPS sshd[3659]: Invalid user root1 from 45.55.129.23 port 40691 Nov 28 09:30:49 MainVPS sshd[3659]: Failed password for invalid user root1 from 45.55.129.23 port 40691 ssh2 Nov 28 09:37:54 MainVPS sshd[16264]: Invalid user prueba from 45.55.129.23 port 58633 ...	2019-11-28 18:10:01
attack	Nov 28 07:17:53 MainVPS sshd[22726]: Invalid user vanairsdale from 45.55.129.23 port 56605 Nov 28 07:17:53 MainVPS sshd[22726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 Nov 28 07:17:53 MainVPS sshd[22726]: Invalid user vanairsdale from 45.55.129.23 port 56605 Nov 28 07:17:55 MainVPS sshd[22726]: Failed password for invalid user vanairsdale from 45.55.129.23 port 56605 ssh2 Nov 28 07:25:36 MainVPS sshd[4251]: Invalid user milord from 45.55.129.23 port 46309 ...	2019-11-28 14:29:51
attackspambots	2019-07-20T02:49:32.641439enmeeting.mahidol.ac.th sshd\[18223\]: User root from 45.55.129.23 not allowed because not listed in AllowUsers 2019-07-20T02:49:32.765784enmeeting.mahidol.ac.th sshd\[18223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 user=root 2019-07-20T02:49:34.817612enmeeting.mahidol.ac.th sshd\[18223\]: Failed password for invalid user root from 45.55.129.23 port 46065 ssh2 ...	2019-07-20 05:11:25
attackbotsspam	Tried sshing with brute force.	2019-07-08 03:03:42
attack	Jul 2 10:02:22 localhost sshd\[101352\]: Invalid user martin from 45.55.129.23 port 45145 Jul 2 10:02:22 localhost sshd\[101352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 Jul 2 10:02:25 localhost sshd\[101352\]: Failed password for invalid user martin from 45.55.129.23 port 45145 ssh2 Jul 2 10:04:30 localhost sshd\[101403\]: Invalid user dc from 45.55.129.23 port 57567 Jul 2 10:04:30 localhost sshd\[101403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 ...	2019-07-02 18:23:02
attackbotsspam	Invalid user admin from 45.55.129.23 port 49301 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 Failed password for invalid user admin from 45.55.129.23 port 49301 ssh2 Invalid user postgres from 45.55.129.23 port 59023 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23	2019-07-01 05:21:39
attackbotsspam	$f2bV_matches	2019-06-30 17:21:35
attackspam	2019-06-26T06:36:24.984246scmdmz1 sshd\[12553\]: Invalid user zw from 45.55.129.23 port 37979 2019-06-26T06:36:24.987547scmdmz1 sshd\[12553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 2019-06-26T06:36:26.651586scmdmz1 sshd\[12553\]: Failed password for invalid user zw from 45.55.129.23 port 37979 ssh2 ...	2019-06-26 12:39:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.129.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52113
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.129.23.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 02 18:05:32 +08 2019
;; MSG SIZE  rcvd: 116

Host info

23.129.55.45.in-addr.arpa domain name pointer git.autocasion.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
23.129.55.45.in-addr.arpa	name = git.autocasion.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.141.95.133	attackbots	2019-01-31 02:36:24 H=$customer-201-141-95-133.cablevision.net.mx$ \[201.141.95.133\]:3359 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-31 02:36:33 H=$customer-201-141-95-133.cablevision.net.mx$ \[201.141.95.133\]:34648 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-31 02:36:39 H=$customer-201-141-95-133.cablevision.net.mx$ \[201.141.95.133\]:42864 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-29 22:55:59
196.134.15.2	attackspambots	1580304900 - 01/29/2020 14:35:00 Host: 196.134.15.2/196.134.15.2 Port: 445 TCP Blocked	2020-01-29 22:48:51
219.149.108.195	attackbotsspam	Unauthorized connection attempt detected from IP address 219.149.108.195 to port 2220 [J]	2020-01-29 23:27:39
200.7.90.152	attackbotsspam	2019-07-08 14:36:13 1hkSsO-00080V-KV SMTP connection from $\[200.7.90.152\]$ \[200.7.90.152\]:21452 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 14:36:22 1hkSsX-00080e-1p SMTP connection from $\[200.7.90.152\]$ \[200.7.90.152\]:36968 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 14:36:31 1hkSsg-00080p-7G SMTP connection from $\[200.7.90.152\]$ \[200.7.90.152\]:21572 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-29 23:33:39
222.186.169.192	attackspam	Jan 29 16:20:07 vps647732 sshd[4524]: Failed password for root from 222.186.169.192 port 46240 ssh2 Jan 29 16:20:20 vps647732 sshd[4524]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 46240 ssh2 [preauth] ...	2020-01-29 23:32:59
222.186.175.150	attackbotsspam	Jan 29 14:48:06 localhost sshd\[66459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Jan 29 14:48:08 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 Jan 29 14:48:11 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 Jan 29 14:48:15 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 Jan 29 14:48:18 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 ...	2020-01-29 22:54:53
154.118.132.180	attackbotsspam	Jan 29 15:30:55 legacy sshd[31262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.118.132.180 Jan 29 15:30:57 legacy sshd[31262]: Failed password for invalid user chitrangada from 154.118.132.180 port 50926 ssh2 Jan 29 15:33:50 legacy sshd[31312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.118.132.180 ...	2020-01-29 22:54:21
175.6.140.14	attackbots	Unauthorized connection attempt detected from IP address 175.6.140.14 to port 22 [T]	2020-01-29 23:31:51
89.248.162.136	attackbots	01/29/2020-16:27:51.931579 89.248.162.136 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2020-01-29 23:38:03
201.141.94.160	attack	2019-03-11 19:36:58 H=$customer-201-141-94-160.cablevision.net.mx$ \[201.141.94.160\]:58908 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-11 19:37:16 H=$customer-201-141-94-160.cablevision.net.mx$ \[201.141.94.160\]:2121 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-11 19:37:31 H=$customer-201-141-94-160.cablevision.net.mx$ \[201.141.94.160\]:20382 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-29 22:56:19
104.237.225.85	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-29 22:49:53
168.232.130.178	attackbots	Brute forcing email accounts	2020-01-29 23:02:55
45.132.87.180	attackspambots	1580304877 - 01/29/2020 14:34:37 Host: 45.132.87.180/45.132.87.180 Port: 445 TCP Blocked	2020-01-29 23:24:15
92.63.194.238	attackspam	Unauthorized connection attempt detected from IP address 92.63.194.238 to port 1111 [J]	2020-01-29 23:27:21
200.68.149.30	attackspambots	2019-09-23 18:23:00 1iCR76-0008FZ-4n SMTP connection from $\[200.68.149.30\]$ \[200.68.149.30\]:44674 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 18:23:06 1iCR7B-0008Fn-Dr SMTP connection from $\[200.68.149.30\]$ \[200.68.149.30\]:44679 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 18:23:10 1iCR7F-0008Fu-IC SMTP connection from $\[200.68.149.30\]$ \[200.68.149.30\]:44684 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-29 23:38:26

Recently Reported IPs

115.21.123.116	187.189.168.145	107.170.193.44	154.41.3.41
118.89.30.76	205.185.216.42	107.170.193.225	190.0.22.66
196.52.43.89	188.166.246.46	107.170.193.204	45.62.250.221
203.109.255.58	46.174.191.32	122.170.15.82	116.58.236.235
129.28.140.254	81.103.147.128	107.170.193.18	103.78.27.210

IP	Type	Details	Datetime
201.141.95.133	attackbots	2019-01-31 02:36:24 H=\(customer-201-141-95-133.cablevision.net.mx\) \[201.141.95.133\]:3359 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-31 02:36:33 H=\(customer-201-141-95-133.cablevision.net.mx\) \[201.141.95.133\]:34648 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-31 02:36:39 H=\(customer-201-141-95-133.cablevision.net.mx\) \[201.141.95.133\]:42864 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-29 22:55:59
196.134.15.2	attackspambots	1580304900 - 01/29/2020 14:35:00 Host: 196.134.15.2/196.134.15.2 Port: 445 TCP Blocked	2020-01-29 22:48:51
219.149.108.195	attackbotsspam	Unauthorized connection attempt detected from IP address 219.149.108.195 to port 2220 [J]	2020-01-29 23:27:39
200.7.90.152	attackbotsspam	2019-07-08 14:36:13 1hkSsO-00080V-KV SMTP connection from \(\[200.7.90.152\]\) \[200.7.90.152\]:21452 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 14:36:22 1hkSsX-00080e-1p SMTP connection from \(\[200.7.90.152\]\) \[200.7.90.152\]:36968 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 14:36:31 1hkSsg-00080p-7G SMTP connection from \(\[200.7.90.152\]\) \[200.7.90.152\]:21572 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-29 23:33:39
222.186.169.192	attackspam	Jan 29 16:20:07 vps647732 sshd[4524]: Failed password for root from 222.186.169.192 port 46240 ssh2 Jan 29 16:20:20 vps647732 sshd[4524]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 46240 ssh2 [preauth] ...	2020-01-29 23:32:59
222.186.175.150	attackbotsspam	Jan 29 14:48:06 localhost sshd\[66459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Jan 29 14:48:08 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 Jan 29 14:48:11 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 Jan 29 14:48:15 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 Jan 29 14:48:18 localhost sshd\[66459\]: Failed password for root from 222.186.175.150 port 25644 ssh2 ...	2020-01-29 22:54:53
154.118.132.180	attackbotsspam	Jan 29 15:30:55 legacy sshd[31262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.118.132.180 Jan 29 15:30:57 legacy sshd[31262]: Failed password for invalid user chitrangada from 154.118.132.180 port 50926 ssh2 Jan 29 15:33:50 legacy sshd[31312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.118.132.180 ...	2020-01-29 22:54:21
175.6.140.14	attackbots	Unauthorized connection attempt detected from IP address 175.6.140.14 to port 22 [T]	2020-01-29 23:31:51
89.248.162.136	attackbots	01/29/2020-16:27:51.931579 89.248.162.136 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2020-01-29 23:38:03
201.141.94.160	attack	2019-03-11 19:36:58 H=\(customer-201-141-94-160.cablevision.net.mx\) \[201.141.94.160\]:58908 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-11 19:37:16 H=\(customer-201-141-94-160.cablevision.net.mx\) \[201.141.94.160\]:2121 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-11 19:37:31 H=\(customer-201-141-94-160.cablevision.net.mx\) \[201.141.94.160\]:20382 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-29 22:56:19
104.237.225.85	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-29 22:49:53
168.232.130.178	attackbots	Brute forcing email accounts	2020-01-29 23:02:55
45.132.87.180	attackspambots	1580304877 - 01/29/2020 14:34:37 Host: 45.132.87.180/45.132.87.180 Port: 445 TCP Blocked	2020-01-29 23:24:15
92.63.194.238	attackspam	Unauthorized connection attempt detected from IP address 92.63.194.238 to port 1111 [J]	2020-01-29 23:27:21
200.68.149.30	attackspambots	2019-09-23 18:23:00 1iCR76-0008FZ-4n SMTP connection from \(\[200.68.149.30\]\) \[200.68.149.30\]:44674 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 18:23:06 1iCR7B-0008Fn-Dr SMTP connection from \(\[200.68.149.30\]\) \[200.68.149.30\]:44679 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 18:23:10 1iCR7F-0008Fu-IC SMTP connection from \(\[200.68.149.30\]\) \[200.68.149.30\]:44684 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-29 23:38:26