City: unknown
Region: unknown
Country: United States
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Port Scan detected! ... |
2020-06-03 17:17:22 |
| attack | firewall-block, port(s): 9102/tcp |
2020-04-27 21:38:15 |
| attackbotsspam | scans once in preceeding hours on the ports (in chronological order) 10025 resulting in total of 3 scans from 45.55.0.0/16 block. |
2020-04-26 00:02:33 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.55.34.87 | attackbotsspam | familiengesundheitszentrum-fulda.de 45.55.34.87 \[28/Jul/2019:23:20:00 +0200\] "POST /wp-login.php HTTP/1.1" 200 5692 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" familiengesundheitszentrum-fulda.de 45.55.34.87 \[28/Jul/2019:23:20:01 +0200\] "POST /wp-login.php HTTP/1.1" 200 5687 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-07-29 12:48:41 |
| 45.55.34.87 | attackspam | 45.55.34.87 - - [26/Jul/2019:02:53:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.34.87 - - [26/Jul/2019:02:53:39 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.34.87 - - [26/Jul/2019:02:53:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.34.87 - - [26/Jul/2019:02:53:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.34.87 - - [26/Jul/2019:02:53:41 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.34.87 - - [26/Jul/2019:02:53:41 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-07-26 16:29:36 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.34.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57036
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.34.91. IN A
;; AUTHORITY SECTION:
. 385 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020042500 1800 900 604800 86400
;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 26 00:02:27 CST 2020
;; MSG SIZE rcvd: 11591.34.55.45.in-addr.arpa domain name pointer jarpa.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
91.34.55.45.in-addr.arpa name = jarpa.org.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 167.114.115.33 | attackspam | Oct 3 13:31:51 rush sshd[7754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.115.33 Oct 3 13:31:53 rush sshd[7754]: Failed password for invalid user walter from 167.114.115.33 port 49258 ssh2 Oct 3 13:35:58 rush sshd[7886]: Failed password for root from 167.114.115.33 port 58530 ssh2 ... |
2020-10-03 23:04:16 |
| 117.247.86.117 | attackspambots | Invalid user gts from 117.247.86.117 port 34079 |
2020-10-03 22:38:15 |
| 117.69.159.201 | attack | Oct 3 01:09:40 srv01 postfix/smtpd\[14058\]: warning: unknown\[117.69.159.201\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 01:13:06 srv01 postfix/smtpd\[21628\]: warning: unknown\[117.69.159.201\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 01:13:17 srv01 postfix/smtpd\[21628\]: warning: unknown\[117.69.159.201\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 01:13:33 srv01 postfix/smtpd\[21628\]: warning: unknown\[117.69.159.201\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 01:13:52 srv01 postfix/smtpd\[21628\]: warning: unknown\[117.69.159.201\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-10-03 22:44:13 |
| 192.35.169.20 | attackbotsspam |
|
2020-10-03 22:39:07 |
| 114.67.102.123 | attackbotsspam | Oct 3 15:47:04 prox sshd[11884]: Failed password for root from 114.67.102.123 port 41824 ssh2 Oct 3 15:52:49 prox sshd[17345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.102.123 |
2020-10-03 22:33:35 |
| 196.52.43.103 | attack |
|
2020-10-03 22:42:03 |
| 197.5.145.102 | attackbots | Invalid user nagios from 197.5.145.102 port 10915 |
2020-10-03 22:40:16 |
| 14.241.245.179 | attackbots | Invalid user go from 14.241.245.179 port 51334 |
2020-10-03 23:01:00 |
| 106.54.203.54 | attackspambots | Oct 3 02:57:52 staging sshd[184827]: Invalid user vss from 106.54.203.54 port 56344 Oct 3 02:57:52 staging sshd[184827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.203.54 Oct 3 02:57:52 staging sshd[184827]: Invalid user vss from 106.54.203.54 port 56344 Oct 3 02:57:54 staging sshd[184827]: Failed password for invalid user vss from 106.54.203.54 port 56344 ssh2 ... |
2020-10-03 23:14:49 |
| 89.248.168.157 | attackbotsspam | firewall-block, port(s): 1063/tcp |
2020-10-03 22:55:35 |
| 83.171.253.144 | attack | (mod_security) mod_security (id:210730) triggered by 83.171.253.144 (RU/Russia/-): 5 in the last 300 secs |
2020-10-03 22:56:37 |
| 167.71.47.142 | attackbots | Automatic Fail2ban report - Trying login SSH |
2020-10-03 22:40:38 |
| 71.6.146.186 | attack |
|
2020-10-03 22:46:53 |
| 134.175.19.39 | attackspambots | Invalid user sk from 134.175.19.39 port 42406 |
2020-10-03 23:15:59 |
| 124.156.240.118 | attack | 33/tcp 16010/tcp 32777/udp... [2020-08-05/10-02]8pkt,6pt.(tcp),2pt.(udp) |
2020-10-03 22:59:32 |