Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbotsspam
leo_www
2020-04-10 08:47:52
attackspambots
Apr  7 23:54:32 ns3164893 sshd[3925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
Apr  7 23:54:35 ns3164893 sshd[3925]: Failed password for invalid user deploy from 45.55.242.26 port 37091 ssh2
...
2020-04-08 06:03:24
attackbotsspam
Mar 29 14:39:28 xeon sshd[14524]: Failed password for invalid user ems from 45.55.242.26 port 33501 ssh2
2020-03-30 03:45:19
attackspam
Jul 29 14:45:53 plusreed sshd[30330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26  user=root
Jul 29 14:45:55 plusreed sshd[30330]: Failed password for root from 45.55.242.26 port 43867 ssh2
...
2019-07-30 05:57:08
attack
Jul 26 04:16:29 s64-1 sshd[13884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
Jul 26 04:16:31 s64-1 sshd[13884]: Failed password for invalid user httpd from 45.55.242.26 port 37754 ssh2
Jul 26 04:21:05 s64-1 sshd[13970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
...
2019-07-26 10:35:15
attack
Jul 25 21:34:37 s64-1 sshd[5644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
Jul 25 21:34:38 s64-1 sshd[5644]: Failed password for invalid user player from 45.55.242.26 port 47159 ssh2
Jul 25 21:39:04 s64-1 sshd[5703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
...
2019-07-26 03:53:05
Comments on same subnet:
IP Type Details Datetime
45.55.242.212 attack
Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212
Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2
...
2020-10-01 03:12:43
45.55.242.212 attackbotsspam
Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212
Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2
...
2020-09-30 19:27:17
45.55.242.212 attackspam
Aug 31 12:28:54 ip-172-31-16-56 sshd\[16124\]: Invalid user terry from 45.55.242.212\
Aug 31 12:28:56 ip-172-31-16-56 sshd\[16124\]: Failed password for invalid user terry from 45.55.242.212 port 40105 ssh2\
Aug 31 12:32:39 ip-172-31-16-56 sshd\[16149\]: Invalid user anurag from 45.55.242.212\
Aug 31 12:32:40 ip-172-31-16-56 sshd\[16149\]: Failed password for invalid user anurag from 45.55.242.212 port 43607 ssh2\
Aug 31 12:36:24 ip-172-31-16-56 sshd\[16189\]: Invalid user minecraft from 45.55.242.212\
2020-08-31 21:32:17
45.55.242.212 attack
Aug 22 00:28:39 jane sshd[19723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 
Aug 22 00:28:40 jane sshd[19723]: Failed password for invalid user 09 from 45.55.242.212 port 32842 ssh2
...
2020-08-22 07:06:48
45.55.242.204 attack
2020-08-14 21:18:05
45.55.242.212 attack
Aug  8 12:53:31 django-0 sshd[29084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212  user=root
Aug  8 12:53:33 django-0 sshd[29084]: Failed password for root from 45.55.242.212 port 60894 ssh2
...
2020-08-08 23:24:40
45.55.242.212 attackbots
Aug  7 23:57:10 ip106 sshd[31572]: Failed password for root from 45.55.242.212 port 43241 ssh2
...
2020-08-08 06:18:46
45.55.242.212 attackspam
Aug  5 22:39:41 mockhub sshd[6606]: Failed password for root from 45.55.242.212 port 53333 ssh2
...
2020-08-06 15:07:43
45.55.242.212 attack
*Port Scan* detected from 45.55.242.212 (US/United States/New Jersey/Clifton/-). 4 hits in the last 220 seconds
2020-08-05 05:19:36
45.55.242.212 attack
2020-08-01T14:48:40.490321linuxbox-skyline sshd[24258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212  user=root
2020-08-01T14:48:42.512447linuxbox-skyline sshd[24258]: Failed password for root from 45.55.242.212 port 52687 ssh2
...
2020-08-02 05:34:21
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.242.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49075
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.242.26.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 03:53:01 CST 2019
;; MSG SIZE  rcvd: 116
Host info
Host 26.242.55.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 26.242.55.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
78.128.113.132 attackspam
2020-02-04 22:07:57 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=admin@no-server.de\)
2020-02-04 22:08:04 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=admin\)
2020-02-04 22:08:14 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data
2020-02-04 22:08:29 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data
2020-02-04 22:08:38 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data
...
2020-02-05 05:16:43
192.176.48.174 attackspambots
Honeypot attack, port: 5555, PTR: a174.broadband8.quicknet.se.
2020-02-05 04:57:33
197.43.232.181 attackspambots
firewall-block, port(s): 23/tcp
2020-02-05 05:10:35
178.62.183.219 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 04-02-2020 20:20:12.
2020-02-05 05:27:31
41.139.171.139 attack
Brute force attempt
2020-02-05 05:06:59
59.46.199.227 attack
Honeypot attack, port: 445, PTR: PTR record not found
2020-02-05 05:32:26
95.25.2.225 attackbots
port scan and connect, tcp 23 (telnet)
2020-02-05 04:56:46
45.143.222.132 attack
Feb  4 21:13:52 mxgate1 postfix/postscreen[19461]: CONNECT from [45.143.222.132]:53442 to [176.31.12.44]:25
Feb  4 21:13:52 mxgate1 postfix/dnsblog[19463]: addr 45.143.222.132 listed by domain zen.spamhaus.org as 127.0.0.4
Feb  4 21:13:52 mxgate1 postfix/dnsblog[19463]: addr 45.143.222.132 listed by domain zen.spamhaus.org as 127.0.0.3
Feb  4 21:13:52 mxgate1 postfix/dnsblog[19464]: addr 45.143.222.132 listed by domain cbl.abuseat.org as 127.0.0.2
Feb  4 21:13:58 mxgate1 postfix/postscreen[19461]: DNSBL rank 3 for [45.143.222.132]:53442
Feb x@x
Feb  4 21:13:59 mxgate1 postfix/postscreen[19461]: DISCONNECT [45.143.222.132]:53442


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=45.143.222.132
2020-02-05 05:02:13
121.159.50.45 attackbots
Honeypot attack, port: 4567, PTR: PTR record not found
2020-02-05 05:02:37
45.148.10.89 attackspambots
DATE:2020-02-04 21:20:16, IP:45.148.10.89, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)
2020-02-05 05:22:27
84.224.192.24 attackspambots
Feb  4 21:20:32 grey postfix/smtpd\[25091\]: NOQUEUE: reject: RCPT from netacc-gpn-4-192-24.pool.telenor.hu\[84.224.192.24\]: 554 5.7.1 Service unavailable\; Client host \[84.224.192.24\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?84.224.192.24\; from=\ to=\ proto=ESMTP helo=\
...
2020-02-05 05:01:48
103.87.76.66 attackbots
Honeypot attack, port: 445, PTR: PTR record not found
2020-02-05 05:05:07
193.17.189.83 attackspambots
Attempt to attack host OS, exploiting network vulnerabilities, on 04-02-2020 20:20:16.
2020-02-05 05:22:06
175.203.76.251 attackspambots
Honeypot attack, port: 4567, PTR: PTR record not found
2020-02-05 05:07:53
177.124.88.1 attack
Feb  4 21:32:08 srv-ubuntu-dev3 sshd[61197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1  user=root
Feb  4 21:32:10 srv-ubuntu-dev3 sshd[61197]: Failed password for root from 177.124.88.1 port 59017 ssh2
Feb  4 21:35:57 srv-ubuntu-dev3 sshd[61507]: Invalid user cher from 177.124.88.1
Feb  4 21:35:57 srv-ubuntu-dev3 sshd[61507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1
Feb  4 21:35:57 srv-ubuntu-dev3 sshd[61507]: Invalid user cher from 177.124.88.1
Feb  4 21:36:00 srv-ubuntu-dev3 sshd[61507]: Failed password for invalid user cher from 177.124.88.1 port 45297 ssh2
Feb  4 21:39:38 srv-ubuntu-dev3 sshd[62140]: Invalid user jenkins from 177.124.88.1
Feb  4 21:39:38 srv-ubuntu-dev3 sshd[62140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1
Feb  4 21:39:38 srv-ubuntu-dev3 sshd[62140]: Invalid user jenkins from 177.124.88.1

...
2020-02-05 04:53:01

Recently Reported IPs

116.51.148.27 128.159.241.34 200.52.7.107 192.3.59.21
149.94.239.53 2003:dd:6f32:a076:753b:3f38:a24b:8722 103.132.150.78 218.11.150.18
106.12.176.3 114.41.152.150 218.90.83.180 54.36.150.112
91.206.15.120 101.83.66.241 117.74.214.185 84.210.131.218
179.177.9.159 215.70.47.74 200.194.47.153 149.157.97.11