45.55.135.4 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.55.135.88	attack	45.55.135.88 - - \[29/Jun/2020:05:57:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[29/Jun/2020:05:57:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[29/Jun/2020:05:57:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-06-29 13:19:56
45.55.135.88	attackbotsspam	Automatically reported by fail2ban report script (mx1)	2020-06-26 13:00:44
45.55.135.88	attack	Wordpress login bruteforce	2020-06-24 21:02:23
45.55.135.88	attackspambots	Automatic report - XMLRPC Attack	2020-05-27 14:22:03
45.55.135.88	attack	CMS (WordPress or Joomla) login attempt.	2020-05-22 12:21:35
45.55.135.88	attackspam	45.55.135.88 - - [13/May/2020:14:46:53 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:46:58 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:04 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.135.88 - - [13/May/2020:14:47:10 +0200] "POST /wp-login.php HTTP/1.1" 200 2030 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-05-13 21:57:48
45.55.135.88	attack	WordPress XMLRPC scan :: 45.55.135.88 0.064 BYPASS [02/May/2020:03:55:43 0000] [censored_2] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-02 14:22:22
45.55.135.88	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-04-18 18:19:04
45.55.135.88	attack	WordPress wp-login brute force :: 45.55.135.88 0.104 - [14/Apr/2020:03:58:41 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1804 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-04-14 13:05:13
45.55.135.88	attack	45.55.135.88 - - \[01/Apr/2020:12:18:59 +0200\] "POST /wp-login.php HTTP/1.0" 200 6997 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[01/Apr/2020:12:19:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 7009 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[01/Apr/2020:12:19:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 7001 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-04-01 19:32:04
45.55.135.88	attack	Sql/code injection probe	2020-02-26 03:55:39
45.55.135.88	attack	45.55.135.88 - - \[13/Feb/2020:06:21:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[13/Feb/2020:06:21:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.135.88 - - \[13/Feb/2020:06:21:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-02-13 19:05:55
45.55.135.88	attack	Dec 25 08:46:55 wordpress wordpress(www.ruhnke.cloud)[19622]: Blocked authentication attempt for admin from ::ffff:45.55.135.88	2019-12-25 18:22:14
45.55.135.88	attackspam	Automatic report - XMLRPC Attack	2019-12-14 16:55:51
45.55.135.88	attackspam	fail2ban honeypot	2019-11-29 02:26:45

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.135.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.135.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 18:33:48 +08 2019
;; MSG SIZE  rcvd: 115

Host info

Host 4.135.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 4.135.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.173.186.148	attackspambots	2019-08-27T09:10:16.481981abusebot-6.cloudsearch.cf sshd\[25806\]: Invalid user sales from 95.173.186.148 port 53526	2019-08-27 17:28:05
54.36.108.162	attack	Aug 27 11:50:04 icinga sshd[39691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.108.162 Aug 27 11:50:07 icinga sshd[39691]: Failed password for invalid user user from 54.36.108.162 port 46845 ssh2 Aug 27 11:50:08 icinga sshd[39691]: Failed password for invalid user user from 54.36.108.162 port 46845 ssh2 Aug 27 11:50:11 icinga sshd[39691]: Failed password for invalid user user from 54.36.108.162 port 46845 ssh2 ...	2019-08-27 18:02:18
60.250.164.169	attack	Aug 27 14:41:09 areeb-Workstation sshd\[30869\]: Invalid user tomcat from 60.250.164.169 Aug 27 14:41:09 areeb-Workstation sshd\[30869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.250.164.169 Aug 27 14:41:11 areeb-Workstation sshd\[30869\]: Failed password for invalid user tomcat from 60.250.164.169 port 36268 ssh2 ...	2019-08-27 17:12:19
177.154.238.78	attack	$f2bV_matches	2019-08-27 17:26:47
141.98.254.225	attackbotsspam	Aug 27 10:10:07 mail sshd\[9553\]: Invalid user user from 141.98.254.225 port 50862 Aug 27 10:10:07 mail sshd\[9553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.254.225 ...	2019-08-27 17:46:25
80.211.82.228	attack	Aug 27 12:02:28 pkdns2 sshd\[59279\]: Invalid user mikael from 80.211.82.228Aug 27 12:02:29 pkdns2 sshd\[59279\]: Failed password for invalid user mikael from 80.211.82.228 port 56212 ssh2Aug 27 12:06:23 pkdns2 sshd\[59482\]: Invalid user raju from 80.211.82.228Aug 27 12:06:24 pkdns2 sshd\[59482\]: Failed password for invalid user raju from 80.211.82.228 port 44990 ssh2Aug 27 12:10:22 pkdns2 sshd\[59683\]: Invalid user ubuntu from 80.211.82.228Aug 27 12:10:24 pkdns2 sshd\[59683\]: Failed password for invalid user ubuntu from 80.211.82.228 port 33766 ssh2 ...	2019-08-27 17:21:42
171.25.193.235	attackspambots	2019-08-27T09:22:29.453276abusebot.cloudsearch.cf sshd\[25306\]: Invalid user user from 171.25.193.235 port 65267	2019-08-27 17:42:39
14.166.67.113	attackbots	Unauthorized connection attempt from IP address 14.166.67.113 on Port 445(SMB)	2019-08-27 17:07:39
37.139.24.190	attackbots	Aug 27 09:23:30 web8 sshd\[27295\]: Invalid user letmein from 37.139.24.190 Aug 27 09:23:30 web8 sshd\[27295\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.24.190 Aug 27 09:23:32 web8 sshd\[27295\]: Failed password for invalid user letmein from 37.139.24.190 port 48250 ssh2 Aug 27 09:27:57 web8 sshd\[29378\]: Invalid user rails from 37.139.24.190 Aug 27 09:27:57 web8 sshd\[29378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.24.190	2019-08-27 17:28:41
114.39.140.34	attackbotsspam	firewall-block, port(s): 23/tcp	2019-08-27 17:50:53
51.255.192.217	attackspam	$f2bV_matches	2019-08-27 17:04:29
178.33.185.70	attackbotsspam	Aug 26 22:47:44 sachi sshd\[30007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.185.70 user=root Aug 26 22:47:46 sachi sshd\[30007\]: Failed password for root from 178.33.185.70 port 45564 ssh2 Aug 26 22:51:46 sachi sshd\[30333\]: Invalid user tests from 178.33.185.70 Aug 26 22:51:46 sachi sshd\[30333\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.185.70 Aug 26 22:51:48 sachi sshd\[30333\]: Failed password for invalid user tests from 178.33.185.70 port 34536 ssh2	2019-08-27 17:07:12
153.36.236.35	attackspam	Aug 27 09:56:39 hcbbdb sshd\[5860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root Aug 27 09:56:41 hcbbdb sshd\[5860\]: Failed password for root from 153.36.236.35 port 64922 ssh2 Aug 27 09:56:49 hcbbdb sshd\[5876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root Aug 27 09:56:51 hcbbdb sshd\[5876\]: Failed password for root from 153.36.236.35 port 57101 ssh2 Aug 27 09:56:53 hcbbdb sshd\[5876\]: Failed password for root from 153.36.236.35 port 57101 ssh2	2019-08-27 18:00:58
177.11.17.27	attackbotsspam	Aug 27 05:10:18 web1 postfix/smtpd[24786]: warning: unknown[177.11.17.27]: SASL PLAIN authentication failed: authentication failure ...	2019-08-27 17:25:25
23.129.64.188	attackbotsspam	Reported by AbuseIPDB proxy server.	2019-08-27 17:26:26

Recently Reported IPs

241.5.108.203	162.243.41.100	47.175.72.238	149.34.3.171
118.186.17.243	66.130.75.98	109.201.133.100	195.142.183.92
62.10.149.163	123.121.229.80	107.77.215.160	205.165.244.44
195.231.6.13	218.154.250.1	139.99.114.236	83.108.43.24
126.185.83.248	106.251.214.30	195.158.92.104	106.120.173.64