45.55.167.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Oct 14 14:23:10 vps691689 sshd[24138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.58 Oct 14 14:23:10 vps691689 sshd[24140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.58 ...	2019-10-15 00:08:41
attackbots	2019-10-13T16:08:51.990850abusebot-3.cloudsearch.cf sshd\[14111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.58 user=root	2019-10-14 00:18:29

Type

Details

Datetime

attackspam

Oct 14 14:23:10 vps691689 sshd[24138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.58
Oct 14 14:23:10 vps691689 sshd[24140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.58
...

2019-10-15 00:08:41

attackbots

2019-10-13T16:08:51.990850abusebot-3.cloudsearch.cf sshd\[14111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.58  user=root

2019-10-14 00:18:29

Comments on same subnet:

IP	Type	Details	Datetime
45.55.167.217	attack	Oct 17 20:06:20 ns41 sshd[16319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217	2019-10-18 03:16:59
45.55.167.217	attackbots	Sep 25 02:19:50 hanapaa sshd\[29432\]: Invalid user octest from 45.55.167.217 Sep 25 02:19:50 hanapaa sshd\[29432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com Sep 25 02:19:51 hanapaa sshd\[29432\]: Failed password for invalid user octest from 45.55.167.217 port 33565 ssh2 Sep 25 02:23:50 hanapaa sshd\[29739\]: Invalid user jk from 45.55.167.217 Sep 25 02:23:50 hanapaa sshd\[29739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com	2019-09-25 20:35:09
45.55.167.217	attack	Sep 11 22:26:49 lcprod sshd\[17307\]: Invalid user ansibleuser from 45.55.167.217 Sep 11 22:26:49 lcprod sshd\[17307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com Sep 11 22:26:51 lcprod sshd\[17307\]: Failed password for invalid user ansibleuser from 45.55.167.217 port 36151 ssh2 Sep 11 22:32:46 lcprod sshd\[17853\]: Invalid user deploy from 45.55.167.217 Sep 11 22:32:47 lcprod sshd\[17853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com	2019-09-12 16:36:09
45.55.167.217	attackbots	Sep 5 01:23:02 yesfletchmain sshd\[19224\]: Invalid user alexk from 45.55.167.217 port 32944 Sep 5 01:23:02 yesfletchmain sshd\[19224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 Sep 5 01:23:05 yesfletchmain sshd\[19224\]: Failed password for invalid user alexk from 45.55.167.217 port 32944 ssh2 Sep 5 01:27:08 yesfletchmain sshd\[19316\]: Invalid user support from 45.55.167.217 port 54467 Sep 5 01:27:08 yesfletchmain sshd\[19316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 ...	2019-09-05 12:21:55
45.55.167.217	attackspam	Aug 29 10:25:56 tdfoods sshd\[4929\]: Invalid user tomcat from 45.55.167.217 Aug 29 10:25:56 tdfoods sshd\[4929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com Aug 29 10:25:58 tdfoods sshd\[4929\]: Failed password for invalid user tomcat from 45.55.167.217 port 49987 ssh2 Aug 29 10:29:53 tdfoods sshd\[5278\]: Invalid user college from 45.55.167.217 Aug 29 10:29:53 tdfoods sshd\[5278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com	2019-08-30 04:36:01
45.55.167.217	attackspambots	Aug 19 12:00:57 eventyay sshd[17425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 Aug 19 12:00:58 eventyay sshd[17425]: Failed password for invalid user user from 45.55.167.217 port 41778 ssh2 Aug 19 12:04:54 eventyay sshd[17532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 ...	2019-08-19 18:38:10
45.55.167.217	attack	Aug 18 14:17:57 XXX sshd[12272]: Invalid user hadoop from 45.55.167.217 port 55390	2019-08-19 02:07:08
45.55.167.217	attackspambots	Jul 26 15:00:19 eventyay sshd[31720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 Jul 26 15:00:20 eventyay sshd[31720]: Failed password for invalid user netapp from 45.55.167.217 port 53900 ssh2 Jul 26 15:04:46 eventyay sshd[399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 ...	2019-07-26 21:14:30
45.55.167.217	attackbots	Jul 26 09:31:07 eventyay sshd[6417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 Jul 26 09:31:10 eventyay sshd[6417]: Failed password for invalid user gentoo from 45.55.167.217 port 48855 ssh2 Jul 26 09:35:30 eventyay sshd[7603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 ...	2019-07-26 15:52:17
45.55.167.217	attackspambots	2019-07-23T22:38:47.286178stark.klein-stark.info sshd\[18981\]: Invalid user luciano from 45.55.167.217 port 32927 2019-07-23T22:38:47.293114stark.klein-stark.info sshd\[18981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=irarott.com 2019-07-23T22:38:49.923959stark.klein-stark.info sshd\[18981\]: Failed password for invalid user luciano from 45.55.167.217 port 32927 ssh2 ...	2019-07-24 05:48:09
45.55.167.217	attack	Jul 23 11:09:34 vps200512 sshd\[2200\]: Invalid user valda from 45.55.167.217 Jul 23 11:09:34 vps200512 sshd\[2200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 Jul 23 11:09:37 vps200512 sshd\[2200\]: Failed password for invalid user valda from 45.55.167.217 port 33147 ssh2 Jul 23 11:14:10 vps200512 sshd\[2259\]: Invalid user homekit from 45.55.167.217 Jul 23 11:14:10 vps200512 sshd\[2259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217	2019-07-23 23:24:37
45.55.167.217	attackbots	Jul 22 23:43:04 vps200512 sshd\[14424\]: Invalid user faxadmin from 45.55.167.217 Jul 22 23:43:04 vps200512 sshd\[14424\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217 Jul 22 23:43:06 vps200512 sshd\[14424\]: Failed password for invalid user faxadmin from 45.55.167.217 port 50385 ssh2 Jul 22 23:47:41 vps200512 sshd\[14537\]: Invalid user tim from 45.55.167.217 Jul 22 23:47:42 vps200512 sshd\[14537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.167.217	2019-07-23 11:49:30
45.55.167.217	attackbotsspam	Repeated brute force against a port	2019-07-06 11:32:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.167.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35188
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.167.58.			IN	A

;; AUTHORITY SECTION:
.			584	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101300 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 14 00:18:22 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 58.167.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.167.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.219.13.163	attack	Aug 2 17:40:29 gw1 sshd[11018]: Failed password for root from 139.219.13.163 port 58752 ssh2 ...	2020-08-02 22:30:43
49.235.74.226	attackbotsspam	Aug 2 14:25:44 fhem-rasp sshd[28979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.74.226 user=root Aug 2 14:25:46 fhem-rasp sshd[28979]: Failed password for root from 49.235.74.226 port 51206 ssh2 ...	2020-08-02 22:13:43
178.80.129.180	attackbotsspam	TCP src-port=40521 dst-port=25 Listed on abuseat-org barracuda spamcop (Project Honey Pot rated Suspicious) (29)	2020-08-02 22:33:49
49.88.112.69	attackbotsspam	Aug 2 15:48:26 vps sshd[341669]: Failed password for root from 49.88.112.69 port 58318 ssh2 Aug 2 15:48:27 vps sshd[341669]: Failed password for root from 49.88.112.69 port 58318 ssh2 Aug 2 15:50:00 vps sshd[347150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.69 user=root Aug 2 15:50:02 vps sshd[347150]: Failed password for root from 49.88.112.69 port 42232 ssh2 Aug 2 15:50:04 vps sshd[347150]: Failed password for root from 49.88.112.69 port 42232 ssh2 ...	2020-08-02 22:10:45
183.62.139.167	attack	Aug 2 14:01:08 hidden sshd[40376]: Failed password for hidden from 183.62.139.167 port 46615 ssh2 Aug 2 14:11:36 hidden sshd[44502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.62.139.167 user=root Aug 2 14:11:39 hidden sshd[44502]: Failed password for hidden from 183.62.139.167 port 49623 ssh2	2020-08-02 22:32:46
2.186.112.16	attack	Automatic report - Port Scan Attack	2020-08-02 22:32:20
94.191.119.31	attackspambots	fail2ban -- 94.191.119.31 ...	2020-08-02 22:28:36
129.204.28.114	attackbots	Aug 2 02:46:45 web9 sshd\[22251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.28.114 user=root Aug 2 02:46:47 web9 sshd\[22251\]: Failed password for root from 129.204.28.114 port 32976 ssh2 Aug 2 02:51:09 web9 sshd\[22853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.28.114 user=root Aug 2 02:51:11 web9 sshd\[22853\]: Failed password for root from 129.204.28.114 port 50874 ssh2 Aug 2 02:55:30 web9 sshd\[23346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.28.114 user=root	2020-08-02 22:30:58
185.173.35.1	attack	ICMP MH Probe, Scan /Distributed -	2020-08-02 22:09:38
129.204.203.218	attackspam	TCP (SYN) 129.204.203.218:55323 -> port 893, len 44	2020-08-02 22:03:45
118.24.99.161	attackspam	SSH BruteForce Attack	2020-08-02 22:05:37
45.184.225.2	attackspambots	Fail2Ban Ban Triggered (2)	2020-08-02 22:25:20
141.98.9.160	attackspambots	2020-08-02T13:28:48.769543shield sshd\[12177\]: Invalid user user from 141.98.9.160 port 40833 2020-08-02T13:28:48.781788shield sshd\[12177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 2020-08-02T13:28:51.192870shield sshd\[12177\]: Failed password for invalid user user from 141.98.9.160 port 40833 ssh2 2020-08-02T13:29:17.778940shield sshd\[12315\]: Invalid user guest from 141.98.9.160 port 44265 2020-08-02T13:29:17.790069shield sshd\[12315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160	2020-08-02 21:53:29
200.27.38.106	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-02 22:27:50
95.0.107.165	attackspambots	TCP src-port=18403 dst-port=25 Listed on abuseat-org barracuda zen-spamhaus (Project Honey Pot rated Suspicious) (32)	2020-08-02 22:25:02

Recently Reported IPs

99.157.234.219	90.142.57.229	83.97.20.177	93.86.214.156
98.128.139.96	42.228.2.150	111.67.203.63	34.97.196.155
182.50.151.11	78.172.39.119	183.239.185.172	67.213.69.94
103.205.244.70	93.70.224.106	175.193.206.200	74.208.80.172
66.249.79.1	137.74.111.39	104.223.170.240	212.202.56.148