45.55.231.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	2020-07-26T06:23:44.134805vps773228.ovh.net sshd[27991]: Invalid user kevin from 45.55.231.94 port 55902 2020-07-26T06:23:44.141453vps773228.ovh.net sshd[27991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-07-26T06:23:44.134805vps773228.ovh.net sshd[27991]: Invalid user kevin from 45.55.231.94 port 55902 2020-07-26T06:23:46.690717vps773228.ovh.net sshd[27991]: Failed password for invalid user kevin from 45.55.231.94 port 55902 ssh2 2020-07-26T06:29:42.506429vps773228.ovh.net sshd[28135]: Invalid user captain from 45.55.231.94 port 40868 ...	2020-07-26 12:53:12
attackbotsspam	SSH invalid-user multiple login attempts	2020-07-26 06:12:28
attackbots	2020-07-22T19:47:10.748187ionos.janbro.de sshd[31648]: Invalid user guillermo from 45.55.231.94 port 47190 2020-07-22T19:47:12.147105ionos.janbro.de sshd[31648]: Failed password for invalid user guillermo from 45.55.231.94 port 47190 ssh2 2020-07-22T19:49:31.687007ionos.janbro.de sshd[31650]: Invalid user mary from 45.55.231.94 port 47718 2020-07-22T19:49:31.906738ionos.janbro.de sshd[31650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-07-22T19:49:31.687007ionos.janbro.de sshd[31650]: Invalid user mary from 45.55.231.94 port 47718 2020-07-22T19:49:33.984574ionos.janbro.de sshd[31650]: Failed password for invalid user mary from 45.55.231.94 port 47718 ssh2 2020-07-22T19:51:52.261925ionos.janbro.de sshd[31659]: Invalid user wol from 45.55.231.94 port 48236 2020-07-22T19:51:52.455033ionos.janbro.de sshd[31659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-07-22T19:51: ...	2020-07-23 04:06:18
attack	20 attempts against mh-ssh on echoip	2020-07-21 17:44:46
attackbots	Jul 18 15:37:43 sso sshd[14051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Jul 18 15:37:45 sso sshd[14051]: Failed password for invalid user postgres from 45.55.231.94 port 39914 ssh2 ...	2020-07-19 03:11:20
attack	Invalid user test2 from 45.55.231.94 port 36532	2020-07-16 20:00:05
attackspam	20 attempts against mh-ssh on cloud	2020-07-13 06:59:23
attack	Jul 3 01:44:01 main sshd[6861]: Failed password for invalid user ip from 45.55.231.94 port 52340 ssh2	2020-07-04 04:51:31
attackbots	Jun 26 08:04:03 ns381471 sshd[8127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Jun 26 08:04:05 ns381471 sshd[8127]: Failed password for invalid user rsq from 45.55.231.94 port 49916 ssh2	2020-06-26 14:22:51
attackbotsspam	SSH Brute-Force. Ports scanning.	2020-06-25 01:49:02
attack	2020-06-11T15:07:45.636107vps773228.ovh.net sshd[2592]: Failed password for root from 45.55.231.94 port 48842 ssh2 2020-06-11T15:12:26.788752vps773228.ovh.net sshd[2698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 user=root 2020-06-11T15:12:29.198670vps773228.ovh.net sshd[2698]: Failed password for root from 45.55.231.94 port 51240 ssh2 2020-06-11T15:17:07.937550vps773228.ovh.net sshd[2820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 user=root 2020-06-11T15:17:09.589631vps773228.ovh.net sshd[2820]: Failed password for root from 45.55.231.94 port 53632 ssh2 ...	2020-06-12 01:10:09
attack	Jun 7 19:39:03 srv sshd[7794]: Failed password for root from 45.55.231.94 port 47314 ssh2	2020-06-08 03:25:25
attackspam	leo_www	2020-05-15 23:29:47
attackbotsspam	May 14 15:40:44 l02a sshd[26581]: Invalid user boost from 45.55.231.94 May 14 15:40:44 l02a sshd[26581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 May 14 15:40:44 l02a sshd[26581]: Invalid user boost from 45.55.231.94 May 14 15:40:46 l02a sshd[26581]: Failed password for invalid user boost from 45.55.231.94 port 50738 ssh2	2020-05-14 23:00:19
attack	May 4 08:38:49 vmd17057 sshd[25469]: Failed password for root from 45.55.231.94 port 49450 ssh2 ...	2020-05-04 16:35:36
attack	SSH Brute-Force. Ports scanning.	2020-05-03 21:49:49
attack	SSH Brute-Forcing (server1)	2020-05-03 15:00:40
attack	Brute-force attempt banned	2020-05-01 17:31:20
attack	SSH invalid-user multiple login try	2020-04-30 04:19:43
attack	SSH Brute Force	2020-04-23 04:59:09
attack	Apr 20 04:41:53 ws26vmsma01 sshd[54369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Apr 20 04:41:55 ws26vmsma01 sshd[54369]: Failed password for invalid user mx from 45.55.231.94 port 50272 ssh2 ...	2020-04-20 12:51:17
attack	SSH brute force	2020-04-18 08:27:45
attackbotsspam	Port Scan detected from 45.55.231.94 (US/United States/New Jersey/Clifton/-). 4 hits in the last 150 seconds	2020-04-17 01:48:24
attackspambots	2020-04-15T11:55:49.771063Z c4265eb7a0da New connection: 45.55.231.94:32782 (172.17.0.5:2222) [session: c4265eb7a0da] 2020-04-15T12:09:23.271478Z 72266a680452 New connection: 45.55.231.94:48514 (172.17.0.5:2222) [session: 72266a680452]	2020-04-16 00:30:16
attackbotsspam	Apr 15 04:14:38 game-panel sshd[24755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Apr 15 04:14:41 game-panel sshd[24755]: Failed password for invalid user bocloud from 45.55.231.94 port 34480 ssh2 Apr 15 04:19:39 game-panel sshd[24955]: Failed password for root from 45.55.231.94 port 42658 ssh2	2020-04-15 12:25:32
attackbotsspam	Mar 28 15:45:26 sshgateway sshd\[25345\]: Invalid user qan from 45.55.231.94 Mar 28 15:45:26 sshgateway sshd\[25345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Mar 28 15:45:28 sshgateway sshd\[25345\]: Failed password for invalid user qan from 45.55.231.94 port 55506 ssh2	2020-03-29 05:07:04
attack	DATE:2020-03-22 00:03:48, IP:45.55.231.94, PORT:ssh SSH brute force auth (docker-dc)	2020-03-22 07:26:34
attackspambots	2020-03-12T20:01:02.176432abusebot-2.cloudsearch.cf sshd[9199]: Invalid user user0 from 45.55.231.94 port 56180 2020-03-12T20:01:02.184215abusebot-2.cloudsearch.cf sshd[9199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-03-12T20:01:02.176432abusebot-2.cloudsearch.cf sshd[9199]: Invalid user user0 from 45.55.231.94 port 56180 2020-03-12T20:01:04.304026abusebot-2.cloudsearch.cf sshd[9199]: Failed password for invalid user user0 from 45.55.231.94 port 56180 ssh2 2020-03-12T20:06:08.966540abusebot-2.cloudsearch.cf sshd[9529]: Invalid user openerp from 45.55.231.94 port 44022 2020-03-12T20:06:08.976493abusebot-2.cloudsearch.cf sshd[9529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-03-12T20:06:08.966540abusebot-2.cloudsearch.cf sshd[9529]: Invalid user openerp from 45.55.231.94 port 44022 2020-03-12T20:06:10.765760abusebot-2.cloudsearch.cf sshd[9529]: Failed password f ...	2020-03-13 04:38:44
attack	$f2bV_matches	2020-03-05 03:55:51
attackspambots	Invalid user services from 45.55.231.94 port 34010	2020-02-21 07:34:20

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.231.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39792
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.231.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060801 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 09 06:16:47 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 94.231.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 94.231.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.41.224.100	attackspambots	Honeypot attack, port: 23, PTR: host-176-41-224-100.reverse.superonline.net.	2019-07-24 22:04:44
218.25.89.90	attackbotsspam	Jul 24 15:06:48 mail sshd\[18940\]: Failed password for invalid user ubuntu from 218.25.89.90 port 41244 ssh2 Jul 24 15:27:07 mail sshd\[19266\]: Invalid user kirk from 218.25.89.90 port 57910 Jul 24 15:27:07 mail sshd\[19266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.25.89.90 ...	2019-07-24 22:30:07
37.34.177.134	attackspam	Jul 24 14:39:25 rpi sshd[18179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.34.177.134 Jul 24 14:39:27 rpi sshd[18179]: Failed password for invalid user admin1234 from 37.34.177.134 port 45750 ssh2	2019-07-24 22:37:22
185.176.27.26	attackspam	1 attempts last 24 Hours	2019-07-24 22:49:35
112.35.46.21	attackspambots	Jul 24 12:25:25 mail sshd\[22278\]: Failed password for invalid user admin from 112.35.46.21 port 39854 ssh2 Jul 24 12:27:22 mail sshd\[22563\]: Invalid user sergio from 112.35.46.21 port 39438 Jul 24 12:27:22 mail sshd\[22563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.46.21 Jul 24 12:27:24 mail sshd\[22563\]: Failed password for invalid user sergio from 112.35.46.21 port 39438 ssh2 Jul 24 12:29:19 mail sshd\[22811\]: Invalid user omsagent from 112.35.46.21 port 38746 Jul 24 12:29:19 mail sshd\[22811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.46.21	2019-07-24 22:11:36
94.131.219.162	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-24 21:56:35
167.99.66.166	attackspam	Jul 24 16:28:06 [host] sshd[12920]: Invalid user test from 167.99.66.166 Jul 24 16:28:06 [host] sshd[12920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.166 Jul 24 16:28:08 [host] sshd[12920]: Failed password for invalid user test from 167.99.66.166 port 38692 ssh2	2019-07-24 22:57:44
69.248.69.40	attack	Honeypot attack, port: 81, PTR: c-69-248-69-40.hsd1.nj.comcast.net.	2019-07-24 22:23:52
89.248.168.112	attackbots	Unauthorised access (Jul 24) SRC=89.248.168.112 LEN=40 TTL=249 ID=54321 TCP DPT=21 WINDOW=65535 SYN Unauthorised access (Jul 23) SRC=89.248.168.112 LEN=40 TTL=249 ID=54321 TCP DPT=5432 WINDOW=65535 SYN	2019-07-24 22:14:05
178.128.106.154	attackspam	178.128.106.154 - - [24/Jul/2019:12:10:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.106.154 - - [24/Jul/2019:12:10:48 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.106.154 - - [24/Jul/2019:12:10:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.106.154 - - [24/Jul/2019:12:10:56 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.106.154 - - [24/Jul/2019:12:10:57 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.106.154 - - [24/Jul/2019:12:11:03 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-07-24 22:46:19
74.208.42.133	attack	xmlrpc attack	2019-07-24 22:42:05
193.187.116.162	attackbotsspam	fell into ViewStateTrap:wien2018	2019-07-24 22:14:43
51.83.72.147	attack	Jul 24 13:41:05 localhost sshd\[55796\]: Invalid user www from 51.83.72.147 port 40796 Jul 24 13:41:05 localhost sshd\[55796\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.72.147 Jul 24 13:41:06 localhost sshd\[55796\]: Failed password for invalid user www from 51.83.72.147 port 40796 ssh2 Jul 24 13:45:35 localhost sshd\[55907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.72.147 user=root Jul 24 13:45:37 localhost sshd\[55907\]: Failed password for root from 51.83.72.147 port 37380 ssh2 ...	2019-07-24 22:04:03
212.113.132.65	attackspambots	212.113.132.65 - - [24/Jul/2019:11:47:38 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.113.132.65 - - [24/Jul/2019:11:47:38 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.113.132.65 - - [24/Jul/2019:11:47:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.113.132.65 - - [24/Jul/2019:11:47:39 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.113.132.65 - - [24/Jul/2019:11:47:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.113.132.65 - - [24/Jul/2019:11:47:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-24 22:38:41
165.22.195.161	attackspam	24.07.2019 12:39:46 Connection to port 55555 blocked by firewall	2019-07-24 22:05:05

Recently Reported IPs

68.183.223.151	223.241.5.132	14.215.115.161	95.154.138.22
196.38.156.146	58.80.224.193	234.203.245.3	113.161.85.182
65.25.187.71	139.174.145.172	181.91.155.94	226.156.206.234
215.219.103.6	51.254.176.79	119.244.50.216	34.74.180.182
33.55.65.193	95.110.227.5	215.190.249.150	124.73.95.240