City: Clifton
Region: New Jersey
Country: United States
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: DigitalOcean, LLC
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | leo_www |
2020-04-10 08:47:52 |
| attackspambots | Apr 7 23:54:32 ns3164893 sshd[3925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 Apr 7 23:54:35 ns3164893 sshd[3925]: Failed password for invalid user deploy from 45.55.242.26 port 37091 ssh2 ... |
2020-04-08 06:03:24 |
| attackbotsspam | Mar 29 14:39:28 xeon sshd[14524]: Failed password for invalid user ems from 45.55.242.26 port 33501 ssh2 |
2020-03-30 03:45:19 |
| attackspam | Jul 29 14:45:53 plusreed sshd[30330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 user=root Jul 29 14:45:55 plusreed sshd[30330]: Failed password for root from 45.55.242.26 port 43867 ssh2 ... |
2019-07-30 05:57:08 |
| attack | Jul 26 04:16:29 s64-1 sshd[13884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 Jul 26 04:16:31 s64-1 sshd[13884]: Failed password for invalid user httpd from 45.55.242.26 port 37754 ssh2 Jul 26 04:21:05 s64-1 sshd[13970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 ... |
2019-07-26 10:35:15 |
| attack | Jul 25 21:34:37 s64-1 sshd[5644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 Jul 25 21:34:38 s64-1 sshd[5644]: Failed password for invalid user player from 45.55.242.26 port 47159 ssh2 Jul 25 21:39:04 s64-1 sshd[5703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26 ... |
2019-07-26 03:53:05 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.55.242.212 | attack | Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2 ... |
2020-10-01 03:12:43 |
| 45.55.242.212 | attackbotsspam | Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2 ... |
2020-09-30 19:27:17 |
| 45.55.242.212 | attackspam | Aug 31 12:28:54 ip-172-31-16-56 sshd\[16124\]: Invalid user terry from 45.55.242.212\ Aug 31 12:28:56 ip-172-31-16-56 sshd\[16124\]: Failed password for invalid user terry from 45.55.242.212 port 40105 ssh2\ Aug 31 12:32:39 ip-172-31-16-56 sshd\[16149\]: Invalid user anurag from 45.55.242.212\ Aug 31 12:32:40 ip-172-31-16-56 sshd\[16149\]: Failed password for invalid user anurag from 45.55.242.212 port 43607 ssh2\ Aug 31 12:36:24 ip-172-31-16-56 sshd\[16189\]: Invalid user minecraft from 45.55.242.212\ |
2020-08-31 21:32:17 |
| 45.55.242.212 | attack | Aug 22 00:28:39 jane sshd[19723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 Aug 22 00:28:40 jane sshd[19723]: Failed password for invalid user 09 from 45.55.242.212 port 32842 ssh2 ... |
2020-08-22 07:06:48 |
| 45.55.242.204 | attack | 2020-08-14 21:18:05 | |
| 45.55.242.212 | attack | Aug 8 12:53:31 django-0 sshd[29084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 user=root Aug 8 12:53:33 django-0 sshd[29084]: Failed password for root from 45.55.242.212 port 60894 ssh2 ... |
2020-08-08 23:24:40 |
| 45.55.242.212 | attackbots | Aug 7 23:57:10 ip106 sshd[31572]: Failed password for root from 45.55.242.212 port 43241 ssh2 ... |
2020-08-08 06:18:46 |
| 45.55.242.212 | attackspam | Aug 5 22:39:41 mockhub sshd[6606]: Failed password for root from 45.55.242.212 port 53333 ssh2 ... |
2020-08-06 15:07:43 |
| 45.55.242.212 | attack | *Port Scan* detected from 45.55.242.212 (US/United States/New Jersey/Clifton/-). 4 hits in the last 220 seconds |
2020-08-05 05:19:36 |
| 45.55.242.212 | attack | 2020-08-01T14:48:40.490321linuxbox-skyline sshd[24258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 user=root 2020-08-01T14:48:42.512447linuxbox-skyline sshd[24258]: Failed password for root from 45.55.242.212 port 52687 ssh2 ... |
2020-08-02 05:34:21 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.242.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49075
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.242.26. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019072502 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 03:53:01 CST 2019
;; MSG SIZE rcvd: 116Host 26.242.55.45.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 26.242.55.45.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 189.1.162.154 | attackspambots | Triggered by Fail2Ban at Vostok web server |
2019-06-30 10:29:02 |
| 157.230.128.181 | attackspambots | 29.06.2019 18:48:19 SSH access blocked by firewall |
2019-06-30 11:11:41 |
| 186.216.154.189 | attackbotsspam | Jun 29 14:48:55 web1 postfix/smtpd[29349]: warning: unknown[186.216.154.189]: SASL PLAIN authentication failed: authentication failure ... |
2019-06-30 10:58:40 |
| 185.53.88.45 | attackbotsspam | \[2019-06-29 22:12:20\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-29T22:12:20.456-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900519",SessionID="0x7f13a8e39958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/62625",ACLName="no_extension_match" \[2019-06-29 22:13:37\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-29T22:13:37.439-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441217900519",SessionID="0x7f13a8d3cb78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/64269",ACLName="no_extension_match" \[2019-06-29 22:14:53\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-29T22:14:53.318-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900519",SessionID="0x7f13a8d3cb78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/55176",ACLName="no_exte |
2019-06-30 10:40:41 |
| 212.156.115.95 | attackbotsspam | Unauthorised access (Jun 29) SRC=212.156.115.95 LEN=40 TTL=239 ID=6748 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Jun 25) SRC=212.156.115.95 LEN=40 TTL=239 ID=5576 TCP DPT=445 WINDOW=1024 SYN |
2019-06-30 11:12:21 |
| 188.75.122.213 | attack | port scan and connect, tcp 23 (telnet) |
2019-06-30 10:46:03 |
| 106.12.116.185 | attackspam | Jun 30 03:20:42 [host] sshd[26203]: Invalid user smbprint from 106.12.116.185 Jun 30 03:20:42 [host] sshd[26203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.116.185 Jun 30 03:20:44 [host] sshd[26203]: Failed password for invalid user smbprint from 106.12.116.185 port 60554 ssh2 |
2019-06-30 11:08:15 |
| 5.196.75.47 | attackspam | [ssh] SSH attack |
2019-06-30 10:54:07 |
| 2.50.138.114 | attackbots | 23/tcp [2019-06-29]1pkt |
2019-06-30 10:25:39 |
| 122.42.32.230 | attack | utm - spam |
2019-06-30 11:06:10 |
| 106.52.106.61 | attackbotsspam | Jun 30 00:56:20 vtv3 sshd\[7792\]: Invalid user eurobos from 106.52.106.61 port 33152 Jun 30 00:56:20 vtv3 sshd\[7792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61 Jun 30 00:56:23 vtv3 sshd\[7792\]: Failed password for invalid user eurobos from 106.52.106.61 port 33152 ssh2 Jun 30 00:59:59 vtv3 sshd\[9278\]: Invalid user amaina from 106.52.106.61 port 43462 Jun 30 00:59:59 vtv3 sshd\[9278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61 Jun 30 01:11:37 vtv3 sshd\[15328\]: Invalid user bi from 106.52.106.61 port 49466 Jun 30 01:11:37 vtv3 sshd\[15328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61 Jun 30 01:11:38 vtv3 sshd\[15328\]: Failed password for invalid user bi from 106.52.106.61 port 49466 ssh2 Jun 30 01:13:23 vtv3 sshd\[16065\]: Invalid user mcserv from 106.52.106.61 port 38228 Jun 30 01:13:23 vtv3 sshd\[16065\]: pam_unix\( |
2019-06-30 10:47:16 |
| 209.251.247.183 | attackspambots | SSH Brute-Force reported by Fail2Ban |
2019-06-30 10:53:10 |
| 122.238.45.110 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 17:18:39,383 INFO [amun_request_handler] PortScan Detected on Port: 445 (122.238.45.110) |
2019-06-30 10:40:04 |
| 116.118.104.167 | attack | Jun 30 03:08:45 www sshd\[27578\]: Invalid user william from 116.118.104.167 port 62140 ... |
2019-06-30 10:43:44 |
| 51.254.249.208 | attackspambots | Automatic report generated by Wazuh |
2019-06-30 10:49:18 |