Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbotsspam
leo_www
2020-04-10 08:47:52
attackspambots
Apr  7 23:54:32 ns3164893 sshd[3925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
Apr  7 23:54:35 ns3164893 sshd[3925]: Failed password for invalid user deploy from 45.55.242.26 port 37091 ssh2
...
2020-04-08 06:03:24
attackbotsspam
Mar 29 14:39:28 xeon sshd[14524]: Failed password for invalid user ems from 45.55.242.26 port 33501 ssh2
2020-03-30 03:45:19
attackspam
Jul 29 14:45:53 plusreed sshd[30330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26  user=root
Jul 29 14:45:55 plusreed sshd[30330]: Failed password for root from 45.55.242.26 port 43867 ssh2
...
2019-07-30 05:57:08
attack
Jul 26 04:16:29 s64-1 sshd[13884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
Jul 26 04:16:31 s64-1 sshd[13884]: Failed password for invalid user httpd from 45.55.242.26 port 37754 ssh2
Jul 26 04:21:05 s64-1 sshd[13970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
...
2019-07-26 10:35:15
attack
Jul 25 21:34:37 s64-1 sshd[5644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
Jul 25 21:34:38 s64-1 sshd[5644]: Failed password for invalid user player from 45.55.242.26 port 47159 ssh2
Jul 25 21:39:04 s64-1 sshd[5703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.26
...
2019-07-26 03:53:05
Comments on same subnet:
IP Type Details Datetime
45.55.242.212 attack
Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212
Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2
...
2020-10-01 03:12:43
45.55.242.212 attackbotsspam
Sep 30 12:01:41 vmd26974 sshd[24085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212
Sep 30 12:01:42 vmd26974 sshd[24085]: Failed password for invalid user mailnull from 45.55.242.212 port 38787 ssh2
...
2020-09-30 19:27:17
45.55.242.212 attackspam
Aug 31 12:28:54 ip-172-31-16-56 sshd\[16124\]: Invalid user terry from 45.55.242.212\
Aug 31 12:28:56 ip-172-31-16-56 sshd\[16124\]: Failed password for invalid user terry from 45.55.242.212 port 40105 ssh2\
Aug 31 12:32:39 ip-172-31-16-56 sshd\[16149\]: Invalid user anurag from 45.55.242.212\
Aug 31 12:32:40 ip-172-31-16-56 sshd\[16149\]: Failed password for invalid user anurag from 45.55.242.212 port 43607 ssh2\
Aug 31 12:36:24 ip-172-31-16-56 sshd\[16189\]: Invalid user minecraft from 45.55.242.212\
2020-08-31 21:32:17
45.55.242.212 attack
Aug 22 00:28:39 jane sshd[19723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212 
Aug 22 00:28:40 jane sshd[19723]: Failed password for invalid user 09 from 45.55.242.212 port 32842 ssh2
...
2020-08-22 07:06:48
45.55.242.204 attack
2020-08-14 21:18:05
45.55.242.212 attack
Aug  8 12:53:31 django-0 sshd[29084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212  user=root
Aug  8 12:53:33 django-0 sshd[29084]: Failed password for root from 45.55.242.212 port 60894 ssh2
...
2020-08-08 23:24:40
45.55.242.212 attackbots
Aug  7 23:57:10 ip106 sshd[31572]: Failed password for root from 45.55.242.212 port 43241 ssh2
...
2020-08-08 06:18:46
45.55.242.212 attackspam
Aug  5 22:39:41 mockhub sshd[6606]: Failed password for root from 45.55.242.212 port 53333 ssh2
...
2020-08-06 15:07:43
45.55.242.212 attack
*Port Scan* detected from 45.55.242.212 (US/United States/New Jersey/Clifton/-). 4 hits in the last 220 seconds
2020-08-05 05:19:36
45.55.242.212 attack
2020-08-01T14:48:40.490321linuxbox-skyline sshd[24258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.242.212  user=root
2020-08-01T14:48:42.512447linuxbox-skyline sshd[24258]: Failed password for root from 45.55.242.212 port 52687 ssh2
...
2020-08-02 05:34:21
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.242.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49075
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.242.26.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072502 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 03:53:01 CST 2019
;; MSG SIZE  rcvd: 116
Host info
Host 26.242.55.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 26.242.55.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
189.1.162.154 attackspambots
Triggered by Fail2Ban at Vostok web server
2019-06-30 10:29:02
157.230.128.181 attackspambots
29.06.2019 18:48:19 SSH access blocked by firewall
2019-06-30 11:11:41
186.216.154.189 attackbotsspam
Jun 29 14:48:55 web1 postfix/smtpd[29349]: warning: unknown[186.216.154.189]: SASL PLAIN authentication failed: authentication failure
...
2019-06-30 10:58:40
185.53.88.45 attackbotsspam
\[2019-06-29 22:12:20\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-29T22:12:20.456-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900519",SessionID="0x7f13a8e39958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/62625",ACLName="no_extension_match"
\[2019-06-29 22:13:37\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-29T22:13:37.439-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441217900519",SessionID="0x7f13a8d3cb78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/64269",ACLName="no_extension_match"
\[2019-06-29 22:14:53\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-29T22:14:53.318-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900519",SessionID="0x7f13a8d3cb78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/55176",ACLName="no_exte
2019-06-30 10:40:41
212.156.115.95 attackbotsspam
Unauthorised access (Jun 29) SRC=212.156.115.95 LEN=40 TTL=239 ID=6748 TCP DPT=445 WINDOW=1024 SYN 
Unauthorised access (Jun 25) SRC=212.156.115.95 LEN=40 TTL=239 ID=5576 TCP DPT=445 WINDOW=1024 SYN
2019-06-30 11:12:21
188.75.122.213 attack
port scan and connect, tcp 23 (telnet)
2019-06-30 10:46:03
106.12.116.185 attackspam
Jun 30 03:20:42 [host] sshd[26203]: Invalid user smbprint from 106.12.116.185
Jun 30 03:20:42 [host] sshd[26203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.116.185
Jun 30 03:20:44 [host] sshd[26203]: Failed password for invalid user smbprint from 106.12.116.185 port 60554 ssh2
2019-06-30 11:08:15
5.196.75.47 attackspam
[ssh] SSH attack
2019-06-30 10:54:07
2.50.138.114 attackbots
23/tcp
[2019-06-29]1pkt
2019-06-30 10:25:39
122.42.32.230 attack
utm - spam
2019-06-30 11:06:10
106.52.106.61 attackbotsspam
Jun 30 00:56:20 vtv3 sshd\[7792\]: Invalid user eurobos from 106.52.106.61 port 33152
Jun 30 00:56:20 vtv3 sshd\[7792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61
Jun 30 00:56:23 vtv3 sshd\[7792\]: Failed password for invalid user eurobos from 106.52.106.61 port 33152 ssh2
Jun 30 00:59:59 vtv3 sshd\[9278\]: Invalid user amaina from 106.52.106.61 port 43462
Jun 30 00:59:59 vtv3 sshd\[9278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61
Jun 30 01:11:37 vtv3 sshd\[15328\]: Invalid user bi from 106.52.106.61 port 49466
Jun 30 01:11:37 vtv3 sshd\[15328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.106.61
Jun 30 01:11:38 vtv3 sshd\[15328\]: Failed password for invalid user bi from 106.52.106.61 port 49466 ssh2
Jun 30 01:13:23 vtv3 sshd\[16065\]: Invalid user mcserv from 106.52.106.61 port 38228
Jun 30 01:13:23 vtv3 sshd\[16065\]: pam_unix\(
2019-06-30 10:47:16
209.251.247.183 attackspambots
SSH Brute-Force reported by Fail2Ban
2019-06-30 10:53:10
122.238.45.110 attackspambots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 17:18:39,383 INFO [amun_request_handler] PortScan Detected on Port: 445 (122.238.45.110)
2019-06-30 10:40:04
116.118.104.167 attack
Jun 30 03:08:45 www sshd\[27578\]: Invalid user william from 116.118.104.167 port 62140
...
2019-06-30 10:43:44
51.254.249.208 attackspambots
Automatic report generated by Wazuh
2019-06-30 10:49:18

Recently Reported IPs

116.51.148.27 128.159.241.34 200.52.7.107 192.3.59.21
149.94.239.53 2003:dd:6f32:a076:753b:3f38:a24b:8722 103.132.150.78 218.11.150.18
106.12.176.3 114.41.152.150 218.90.83.180 54.36.150.112
91.206.15.120 101.83.66.241 117.74.214.185 84.210.131.218
179.177.9.159 215.70.47.74 200.194.47.153 149.157.97.11