City: unknown
Region: unknown
Country: United States
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | 2020-07-26T06:23:44.134805vps773228.ovh.net sshd[27991]: Invalid user kevin from 45.55.231.94 port 55902 2020-07-26T06:23:44.141453vps773228.ovh.net sshd[27991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-07-26T06:23:44.134805vps773228.ovh.net sshd[27991]: Invalid user kevin from 45.55.231.94 port 55902 2020-07-26T06:23:46.690717vps773228.ovh.net sshd[27991]: Failed password for invalid user kevin from 45.55.231.94 port 55902 ssh2 2020-07-26T06:29:42.506429vps773228.ovh.net sshd[28135]: Invalid user captain from 45.55.231.94 port 40868 ... |
2020-07-26 12:53:12 |
| attackbotsspam | SSH invalid-user multiple login attempts |
2020-07-26 06:12:28 |
| attackbots | 2020-07-22T19:47:10.748187ionos.janbro.de sshd[31648]: Invalid user guillermo from 45.55.231.94 port 47190 2020-07-22T19:47:12.147105ionos.janbro.de sshd[31648]: Failed password for invalid user guillermo from 45.55.231.94 port 47190 ssh2 2020-07-22T19:49:31.687007ionos.janbro.de sshd[31650]: Invalid user mary from 45.55.231.94 port 47718 2020-07-22T19:49:31.906738ionos.janbro.de sshd[31650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-07-22T19:49:31.687007ionos.janbro.de sshd[31650]: Invalid user mary from 45.55.231.94 port 47718 2020-07-22T19:49:33.984574ionos.janbro.de sshd[31650]: Failed password for invalid user mary from 45.55.231.94 port 47718 ssh2 2020-07-22T19:51:52.261925ionos.janbro.de sshd[31659]: Invalid user wol from 45.55.231.94 port 48236 2020-07-22T19:51:52.455033ionos.janbro.de sshd[31659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-07-22T19:51: ... |
2020-07-23 04:06:18 |
| attack | 20 attempts against mh-ssh on echoip |
2020-07-21 17:44:46 |
| attackbots | Jul 18 15:37:43 sso sshd[14051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Jul 18 15:37:45 sso sshd[14051]: Failed password for invalid user postgres from 45.55.231.94 port 39914 ssh2 ... |
2020-07-19 03:11:20 |
| attack | Invalid user test2 from 45.55.231.94 port 36532 |
2020-07-16 20:00:05 |
| attackspam | 20 attempts against mh-ssh on cloud |
2020-07-13 06:59:23 |
| attack | Jul 3 01:44:01 main sshd[6861]: Failed password for invalid user ip from 45.55.231.94 port 52340 ssh2 |
2020-07-04 04:51:31 |
| attackbots | Jun 26 08:04:03 ns381471 sshd[8127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Jun 26 08:04:05 ns381471 sshd[8127]: Failed password for invalid user rsq from 45.55.231.94 port 49916 ssh2 |
2020-06-26 14:22:51 |
| attackbotsspam | SSH Brute-Force. Ports scanning. |
2020-06-25 01:49:02 |
| attack | 2020-06-11T15:07:45.636107vps773228.ovh.net sshd[2592]: Failed password for root from 45.55.231.94 port 48842 ssh2 2020-06-11T15:12:26.788752vps773228.ovh.net sshd[2698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 user=root 2020-06-11T15:12:29.198670vps773228.ovh.net sshd[2698]: Failed password for root from 45.55.231.94 port 51240 ssh2 2020-06-11T15:17:07.937550vps773228.ovh.net sshd[2820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 user=root 2020-06-11T15:17:09.589631vps773228.ovh.net sshd[2820]: Failed password for root from 45.55.231.94 port 53632 ssh2 ... |
2020-06-12 01:10:09 |
| attack | Jun 7 19:39:03 srv sshd[7794]: Failed password for root from 45.55.231.94 port 47314 ssh2 |
2020-06-08 03:25:25 |
| attackspam | leo_www |
2020-05-15 23:29:47 |
| attackbotsspam | May 14 15:40:44 l02a sshd[26581]: Invalid user boost from 45.55.231.94 May 14 15:40:44 l02a sshd[26581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 May 14 15:40:44 l02a sshd[26581]: Invalid user boost from 45.55.231.94 May 14 15:40:46 l02a sshd[26581]: Failed password for invalid user boost from 45.55.231.94 port 50738 ssh2 |
2020-05-14 23:00:19 |
| attack | May 4 08:38:49 vmd17057 sshd[25469]: Failed password for root from 45.55.231.94 port 49450 ssh2 ... |
2020-05-04 16:35:36 |
| attack | SSH Brute-Force. Ports scanning. |
2020-05-03 21:49:49 |
| attack | SSH Brute-Forcing (server1) |
2020-05-03 15:00:40 |
| attack | Brute-force attempt banned |
2020-05-01 17:31:20 |
| attack | SSH invalid-user multiple login try |
2020-04-30 04:19:43 |
| attack | SSH Brute Force |
2020-04-23 04:59:09 |
| attack | Apr 20 04:41:53 ws26vmsma01 sshd[54369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Apr 20 04:41:55 ws26vmsma01 sshd[54369]: Failed password for invalid user mx from 45.55.231.94 port 50272 ssh2 ... |
2020-04-20 12:51:17 |
| attack | SSH brute force |
2020-04-18 08:27:45 |
| attackbotsspam | *Port Scan* detected from 45.55.231.94 (US/United States/New Jersey/Clifton/-). 4 hits in the last 150 seconds |
2020-04-17 01:48:24 |
| attackspambots | 2020-04-15T11:55:49.771063Z c4265eb7a0da New connection: 45.55.231.94:32782 (172.17.0.5:2222) [session: c4265eb7a0da] 2020-04-15T12:09:23.271478Z 72266a680452 New connection: 45.55.231.94:48514 (172.17.0.5:2222) [session: 72266a680452] |
2020-04-16 00:30:16 |
| attackbotsspam | Apr 15 04:14:38 game-panel sshd[24755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Apr 15 04:14:41 game-panel sshd[24755]: Failed password for invalid user bocloud from 45.55.231.94 port 34480 ssh2 Apr 15 04:19:39 game-panel sshd[24955]: Failed password for root from 45.55.231.94 port 42658 ssh2 |
2020-04-15 12:25:32 |
| attackbotsspam | Mar 28 15:45:26 sshgateway sshd\[25345\]: Invalid user qan from 45.55.231.94 Mar 28 15:45:26 sshgateway sshd\[25345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 Mar 28 15:45:28 sshgateway sshd\[25345\]: Failed password for invalid user qan from 45.55.231.94 port 55506 ssh2 |
2020-03-29 05:07:04 |
| attack | DATE:2020-03-22 00:03:48, IP:45.55.231.94, PORT:ssh SSH brute force auth (docker-dc) |
2020-03-22 07:26:34 |
| attackspambots | 2020-03-12T20:01:02.176432abusebot-2.cloudsearch.cf sshd[9199]: Invalid user user0 from 45.55.231.94 port 56180 2020-03-12T20:01:02.184215abusebot-2.cloudsearch.cf sshd[9199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-03-12T20:01:02.176432abusebot-2.cloudsearch.cf sshd[9199]: Invalid user user0 from 45.55.231.94 port 56180 2020-03-12T20:01:04.304026abusebot-2.cloudsearch.cf sshd[9199]: Failed password for invalid user user0 from 45.55.231.94 port 56180 ssh2 2020-03-12T20:06:08.966540abusebot-2.cloudsearch.cf sshd[9529]: Invalid user openerp from 45.55.231.94 port 44022 2020-03-12T20:06:08.976493abusebot-2.cloudsearch.cf sshd[9529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 2020-03-12T20:06:08.966540abusebot-2.cloudsearch.cf sshd[9529]: Invalid user openerp from 45.55.231.94 port 44022 2020-03-12T20:06:10.765760abusebot-2.cloudsearch.cf sshd[9529]: Failed password f ... |
2020-03-13 04:38:44 |
| attack | $f2bV_matches |
2020-03-05 03:55:51 |
| attackspambots | Invalid user services from 45.55.231.94 port 34010 |
2020-02-21 07:34:20 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.231.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39792
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.231.94. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019060801 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 09 06:16:47 CST 2019
;; MSG SIZE rcvd: 116
Host 94.231.55.45.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 94.231.55.45.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 80.82.77.189 | attack | 03/07/2020-06:43:58.134602 80.82.77.189 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-03-07 20:27:46 |
| 199.79.156.27 | attackbotsspam | Honeypot attack, port: 81, PTR: PTR record not found |
2020-03-07 20:34:16 |
| 154.8.164.214 | attack | Mar 7 05:49:27 santamaria sshd\[6089\]: Invalid user rootbsd from 154.8.164.214 Mar 7 05:49:27 santamaria sshd\[6089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.164.214 Mar 7 05:49:29 santamaria sshd\[6089\]: Failed password for invalid user rootbsd from 154.8.164.214 port 44556 ssh2 ... |
2020-03-07 20:46:37 |
| 80.211.158.29 | attackbots | " " |
2020-03-07 20:49:16 |
| 124.251.110.147 | attackspambots | $f2bV_matches |
2020-03-07 20:29:44 |
| 101.78.0.236 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-03-07 20:51:01 |
| 78.128.113.67 | attack | (smtpauth) Failed SMTP AUTH login from 78.128.113.67 (BG/Bulgaria/ip-113-67.4vendeta.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-03-07 16:06:28 plain authenticator failed for ([78.128.113.67]) [78.128.113.67]: 535 Incorrect authentication data (set_id=igep@ardestancement.com) |
2020-03-07 20:38:09 |
| 71.6.233.230 | attack | firewall-block, port(s): 4433/tcp |
2020-03-07 20:15:56 |
| 41.76.8.12 | attackspam | Mar 7 05:50:00 debian-2gb-nbg1-2 kernel: \[5815762.352598\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=41.76.8.12 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=28985 PROTO=TCP SPT=53361 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-07 20:23:48 |
| 213.226.126.85 | attackspam | 2020-03-07T09:31:23.437518abusebot-4.cloudsearch.cf sshd[21804]: Invalid user opforserver from 213.226.126.85 port 34532 2020-03-07T09:31:23.443973abusebot-4.cloudsearch.cf sshd[21804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.226.126.85 2020-03-07T09:31:23.437518abusebot-4.cloudsearch.cf sshd[21804]: Invalid user opforserver from 213.226.126.85 port 34532 2020-03-07T09:31:25.080565abusebot-4.cloudsearch.cf sshd[21804]: Failed password for invalid user opforserver from 213.226.126.85 port 34532 ssh2 2020-03-07T09:35:42.308805abusebot-4.cloudsearch.cf sshd[22024]: Invalid user sshuser from 213.226.126.85 port 52492 2020-03-07T09:35:42.315506abusebot-4.cloudsearch.cf sshd[22024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.226.126.85 2020-03-07T09:35:42.308805abusebot-4.cloudsearch.cf sshd[22024]: Invalid user sshuser from 213.226.126.85 port 52492 2020-03-07T09:35:44.177509abusebot-4.cloud ... |
2020-03-07 20:40:33 |
| 159.89.126.252 | attack | CMS (WordPress or Joomla) login attempt. |
2020-03-07 20:47:09 |
| 169.38.93.99 | attackbots | US_RIPE_<177>1583556588 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 169.38.93.99:61553 |
2020-03-07 20:33:05 |
| 90.150.188.154 | attackbotsspam | unauthorized connection attempt |
2020-03-07 20:47:31 |
| 198.245.63.94 | attack | 2020-03-07T10:26:19.274315shield sshd\[345\]: Invalid user mattermos from 198.245.63.94 port 58126 2020-03-07T10:26:19.280364shield sshd\[345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns508619.ip-198-245-63.net 2020-03-07T10:26:21.409857shield sshd\[345\]: Failed password for invalid user mattermos from 198.245.63.94 port 58126 ssh2 2020-03-07T10:32:10.451754shield sshd\[1775\]: Invalid user andrew from 198.245.63.94 port 56382 2020-03-07T10:32:10.459171shield sshd\[1775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns508619.ip-198-245-63.net |
2020-03-07 20:45:47 |
| 78.128.92.116 | attack | 20/3/6@23:49:25: FAIL: Alarm-Intrusion address from=78.128.92.116 ... |
2020-03-07 20:50:15 |