45.55.242.26 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	leo_www	2020-04-10 08:47:52
attackspambots	Apr 7 23:54:32 ns3164893 sshd[3925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 Apr 7 23:54:35 ns3164893 sshd[3925]: Failed password for invalid user deploy from 45.55.242.26 port 37091 ssh2 ...	2020-04-08 06:03:24
attackbotsspam	Mar 29 14:39:28 xeon sshd[14524]: Failed password for invalid user ems from 45.55.242.26 port 33501 ssh2	2020-03-30 03:45:19
attackspam	Jul 29 14:45:53 plusreed sshd[30330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 user=root Jul 29 14:45:55 plusreed sshd[30330]: Failed password for root from 45.55.242.26 port 43867 ssh2 ...	2019-07-30 05:57:08
attack	Jul 26 04:16:29 s64-1 sshd[13884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 Jul 26 04:16:31 s64-1 sshd[13884]: Failed password for invalid user httpd from 45.55.242.26 port 37754 ssh2 Jul 26 04:21:05 s64-1 sshd[13970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 ...	2019-07-26 10:35:15
attack	Jul 25 21:34:37 s64-1 sshd[5644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 Jul 25 21:34:38 s64-1 sshd[5644]: Failed password for invalid user player from 45.55.242.26 port 47159 ssh2 Jul 25 21:39:04 s64-1 sshd[5703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 ...	2019-07-26 03:53:05

Comments on same subnet:

IP	Type	Details	Datetime
45.55.242.212	attack	Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2 ...	2020-10-01 03:12:43
45.55.242.212	attackbotsspam	Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2 ...	2020-09-30 19:27:17
45.55.242.212	attackspam	Aug 31 12:28:54 ip-172-31-16-56 sshd\[16124\]: Invalid user terry from 45.55.242.212\ Aug 31 12:28:56 ip-172-31-16-56 sshd\[16124\]: Failed password for invalid user terry from 45.55.242.212 port 40105 ssh2\ Aug 31 12:32:39 ip-172-31-16-56 sshd\[16149\]: Invalid user anurag from 45.55.242.212\ Aug 31 12:32:40 ip-172-31-16-56 sshd\[16149\]: Failed password for invalid user anurag from 45.55.242.212 port 43607 ssh2\ Aug 31 12:36:24 ip-172-31-16-56 sshd\[16189\]: Invalid user minecraft from 45.55.242.212\	2020-08-31 21:32:17
45.55.242.212	attack	Aug 22 00:28:39 jane sshd[19723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Aug 22 00:28:40 jane sshd[19723]: Failed password for invalid user 09 from 45.55.242.212 port 32842 ssh2 ...	2020-08-22 07:06:48
45.55.242.204	attack		2020-08-14 21:18:05
45.55.242.212	attack	Aug 8 12:53:31 django-0 sshd[29084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 user=root Aug 8 12:53:33 django-0 sshd[29084]: Failed password for root from 45.55.242.212 port 60894 ssh2 ...	2020-08-08 23:24:40
45.55.242.212	attackbots	Aug 7 23:57:10 ip106 sshd[31572]: Failed password for root from 45.55.242.212 port 43241 ssh2 ...	2020-08-08 06:18:46
45.55.242.212	attackspam	Aug 5 22:39:41 mockhub sshd[6606]: Failed password for root from 45.55.242.212 port 53333 ssh2 ...	2020-08-06 15:07:43
45.55.242.212	attack	Port Scan detected from 45.55.242.212 (US/United States/New Jersey/Clifton/-). 4 hits in the last 220 seconds	2020-08-05 05:19:36
45.55.242.212	attack	2020-08-01T14:48:40.490321linuxbox-skyline sshd[24258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 user=root 2020-08-01T14:48:42.512447linuxbox-skyline sshd[24258]: Failed password for root from 45.55.242.212 port 52687 ssh2 ...	2020-08-02 05:34:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.242.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49075
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.242.26.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 03:53:01 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 26.242.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 26.242.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.128.113.132	attackspam	2020-02-04 22:07:57 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=admin@no-server.de\) 2020-02-04 22:08:04 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=admin\) 2020-02-04 22:08:14 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data 2020-02-04 22:08:29 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data 2020-02-04 22:08:38 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data ...	2020-02-05 05:16:43
192.176.48.174	attackspambots	Honeypot attack, port: 5555, PTR: a174.broadband8.quicknet.se.	2020-02-05 04:57:33
197.43.232.181	attackspambots	firewall-block, port(s): 23/tcp	2020-02-05 05:10:35
178.62.183.219	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 04-02-2020 20:20:12.	2020-02-05 05:27:31
41.139.171.139	attack	Brute force attempt	2020-02-05 05:06:59
59.46.199.227	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-05 05:32:26
95.25.2.225	attackbots	port scan and connect, tcp 23 (telnet)	2020-02-05 04:56:46
45.143.222.132	attack	Feb 4 21:13:52 mxgate1 postfix/postscreen[19461]: CONNECT from [45.143.222.132]:53442 to [176.31.12.44]:25 Feb 4 21:13:52 mxgate1 postfix/dnsblog[19463]: addr 45.143.222.132 listed by domain zen.spamhaus.org as 127.0.0.4 Feb 4 21:13:52 mxgate1 postfix/dnsblog[19463]: addr 45.143.222.132 listed by domain zen.spamhaus.org as 127.0.0.3 Feb 4 21:13:52 mxgate1 postfix/dnsblog[19464]: addr 45.143.222.132 listed by domain cbl.abuseat.org as 127.0.0.2 Feb 4 21:13:58 mxgate1 postfix/postscreen[19461]: DNSBL rank 3 for [45.143.222.132]:53442 Feb x@x Feb 4 21:13:59 mxgate1 postfix/postscreen[19461]: DISCONNECT [45.143.222.132]:53442 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.143.222.132	2020-02-05 05:02:13
121.159.50.45	attackbots	Honeypot attack, port: 4567, PTR: PTR record not found	2020-02-05 05:02:37
45.148.10.89	attackspambots	DATE:2020-02-04 21:20:16, IP:45.148.10.89, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-05 05:22:27
84.224.192.24	attackspambots	Feb 4 21:20:32 grey postfix/smtpd\[25091\]: NOQUEUE: reject: RCPT from netacc-gpn-4-192-24.pool.telenor.hu\[84.224.192.24\]: 554 5.7.1 Service unavailable\; Client host \[84.224.192.24\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?84.224.192.24\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-05 05:01:48
103.87.76.66	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-05 05:05:07
193.17.189.83	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 04-02-2020 20:20:16.	2020-02-05 05:22:06
175.203.76.251	attackspambots	Honeypot attack, port: 4567, PTR: PTR record not found	2020-02-05 05:07:53
177.124.88.1	attack	Feb 4 21:32:08 srv-ubuntu-dev3 sshd[61197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1 user=root Feb 4 21:32:10 srv-ubuntu-dev3 sshd[61197]: Failed password for root from 177.124.88.1 port 59017 ssh2 Feb 4 21:35:57 srv-ubuntu-dev3 sshd[61507]: Invalid user cher from 177.124.88.1 Feb 4 21:35:57 srv-ubuntu-dev3 sshd[61507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1 Feb 4 21:35:57 srv-ubuntu-dev3 sshd[61507]: Invalid user cher from 177.124.88.1 Feb 4 21:36:00 srv-ubuntu-dev3 sshd[61507]: Failed password for invalid user cher from 177.124.88.1 port 45297 ssh2 Feb 4 21:39:38 srv-ubuntu-dev3 sshd[62140]: Invalid user jenkins from 177.124.88.1 Feb 4 21:39:38 srv-ubuntu-dev3 sshd[62140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.124.88.1 Feb 4 21:39:38 srv-ubuntu-dev3 sshd[62140]: Invalid user jenkins from 177.124.88.1 ...	2020-02-05 04:53:01

Recently Reported IPs

116.51.148.27	128.159.241.34	200.52.7.107	192.3.59.21
149.94.239.53	2003:dd:6f32:a076:753b:3f38:a24b:8722	103.132.150.78	218.11.150.18
106.12.176.3	114.41.152.150	218.90.83.180	54.36.150.112
91.206.15.120	101.83.66.241	117.74.214.185	84.210.131.218
179.177.9.159	215.70.47.74	200.194.47.153	149.157.97.11