45.55.135.4 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.55.135.88	attack	45.55.135.88 - - \[29/Jun/2020:05:57:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[29/Jun/2020:05:57:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[29/Jun/2020:05:57:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-06-29 13:19:56
45.55.135.88	attackbotsspam	Automatically reported by fail2ban report script (mx1)	2020-06-26 13:00:44
45.55.135.88	attack	Wordpress login bruteforce	2020-06-24 21:02:23
45.55.135.88	attackspambots	Automatic report - XMLRPC Attack	2020-05-27 14:22:03
45.55.135.88	attack	CMS (WordPress or Joomla) login attempt.	2020-05-22 12:21:35
45.55.135.88	attackspam	45.55.135.88 - - [13/May/2020:14:46:53 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:46:58 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:10 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-05-13 21:57:48
45.55.135.88	attack	WordPress XMLRPC scan :: 45.55.135.88 0.064 BYPASS [02/May/2020:03:55:43 0000] [censored_2] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-02 14:22:22
45.55.135.88	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-04-18 18:19:04
45.55.135.88	attack	WordPress wp-login brute force :: 45.55.135.88 0.104 - [14/Apr/2020:03:58:41 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1804 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-04-14 13:05:13
45.55.135.88	attack	45.55.135.88 - - \[01/Apr/2020:12:18:59 +0200\] "POST /wp-login.php HTTP/1.0" 200 6997 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[01/Apr/2020:12:19:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 7009 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[01/Apr/2020:12:19:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 7001 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-01 19:32:04
45.55.135.88	attack	Sql/code injection probe	2020-02-26 03:55:39
45.55.135.88	attack	45.55.135.88 - - \[13/Feb/2020:06:21:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[13/Feb/2020:06:21:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[13/Feb/2020:06:21:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-02-13 19:05:55
45.55.135.88	attack	Dec 25 08:46:55 wordpress wordpress(www.ruhnke.cloud)[19622]: Blocked authentication attempt for admin from ::ffff:45.55.135.88	2019-12-25 18:22:14
45.55.135.88	attackspam	Automatic report - XMLRPC Attack	2019-12-14 16:55:51
45.55.135.88	attackspam	fail2ban honeypot	2019-11-29 02:26:45

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.135.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.135.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 18:33:48 +08 2019
;; MSG SIZE  rcvd: 115

Host info

Host 4.135.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 4.135.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.13.145.60	attackspam	SSH login attempts.	2020-03-28 02:22:23
128.199.95.60	attack	2020-03-27T17:36:51.666492abusebot-6.cloudsearch.cf sshd[15171]: Invalid user jdc from 128.199.95.60 port 52544 2020-03-27T17:36:51.673698abusebot-6.cloudsearch.cf sshd[15171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.60 2020-03-27T17:36:51.666492abusebot-6.cloudsearch.cf sshd[15171]: Invalid user jdc from 128.199.95.60 port 52544 2020-03-27T17:36:53.380989abusebot-6.cloudsearch.cf sshd[15171]: Failed password for invalid user jdc from 128.199.95.60 port 52544 ssh2 2020-03-27T17:43:22.961298abusebot-6.cloudsearch.cf sshd[15594]: Invalid user rails from 128.199.95.60 port 40614 2020-03-27T17:43:22.969836abusebot-6.cloudsearch.cf sshd[15594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.60 2020-03-27T17:43:22.961298abusebot-6.cloudsearch.cf sshd[15594]: Invalid user rails from 128.199.95.60 port 40614 2020-03-27T17:43:25.358963abusebot-6.cloudsearch.cf sshd[15594]: Failed passw ...	2020-03-28 02:07:27
178.233.42.38	attackspambots	Mar 27 13:30:02 debian-2gb-nbg1-2 kernel: \[7571273.558742\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=178.233.42.38 DST=195.201.40.59 LEN=120 TOS=0x00 PREC=0x00 TTL=111 ID=24378 DF PROTO=TCP SPT=7995 DPT=443 WINDOW=35770 RES=0x00 ACK PSH URGP=0	2020-03-28 02:25:33
139.59.10.186	attackbots	Mar 25 02:27:15 itv-usvr-01 sshd[3926]: Invalid user corrina from 139.59.10.186 Mar 25 02:27:15 itv-usvr-01 sshd[3926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.10.186 Mar 25 02:27:15 itv-usvr-01 sshd[3926]: Invalid user corrina from 139.59.10.186 Mar 25 02:27:17 itv-usvr-01 sshd[3926]: Failed password for invalid user corrina from 139.59.10.186 port 60390 ssh2 Mar 25 02:31:23 itv-usvr-01 sshd[4115]: Invalid user tanghao from 139.59.10.186	2020-03-28 01:48:55
106.13.101.220	attackspam	Invalid user nichelle from 106.13.101.220 port 36274	2020-03-28 01:50:43
5.188.62.147	attack	WordPress log in attack	2020-03-28 02:02:11
139.165.67.22	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-03-2020 12:30:09.	2020-03-28 02:07:08
209.17.97.98	attack	The IP has triggered Cloudflare WAF. CF-Ray: 57a607da7dbeb8db \| WAF_Rule_ID: ipr24 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: US \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: notes.skk.moe \| User-Agent: Mozilla/5.0 (compatible; Nimbostratus-Bot/v1.3.2; http://cloudsystemnetworks.com) \| CF_DC: MIA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-03-28 02:13:10
211.253.10.96	attackspambots	Mar 27 17:48:50 IngegnereFirenze sshd[28125]: Failed password for invalid user idn from 211.253.10.96 port 40514 ssh2 ...	2020-03-28 02:10:43
172.105.201.117	attackspam	1585318400 - 03/27/2020 21:13:20 Host: scan-16.security.ipip.net/172.105.201.117 Port: 23 TCP Blocked ...	2020-03-28 02:15:29
118.70.182.185	attack	fail2ban	2020-03-28 02:22:51
92.118.37.83	attackspam	03/27/2020-14:03:41.273701 92.118.37.83 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-28 02:11:33
138.197.105.79	attackbotsspam	Total attacks: 14	2020-03-28 01:49:08
209.17.96.82	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 57a46b603c18f319 \| WAF_Rule_ID: ipr24 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: US \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (compatible; Nimbostratus-Bot/v1.3.2; http://cloudsystemnetworks.com) \| CF_DC: ATL. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-03-28 02:16:09
104.152.52.38	attackspam	Mar 27 16:09:15 debian-2gb-nbg1-2 kernel: \[7580825.550362\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.152.52.38 DST=195.201.40.59 LEN=28 TOS=0x00 PREC=0x00 TTL=240 ID=27510 PROTO=UDP SPT=59945 DPT=31337 LEN=8	2020-03-28 02:19:57

Recently Reported IPs

241.5.108.203	162.243.41.100	47.175.72.238	149.34.3.171
118.186.17.243	66.130.75.98	109.201.133.100	195.142.183.92
62.10.149.163	123.121.229.80	107.77.215.160	205.165.244.44
195.231.6.13	218.154.250.1	139.99.114.236	83.108.43.24
126.185.83.248	106.251.214.30	195.158.92.104	106.120.173.64