45.55.40.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	20/4/27@02:23:54: FAIL: Alarm-Telnet address from=45.55.40.149 ...	2020-04-27 19:23:41

Comments on same subnet:

IP	Type	Details	Datetime
45.55.40.146	attackbots	unauthorized connection attempt	2020-01-24 00:54:09
45.55.40.27	attack	abasicmove.de 45.55.40.27 \[08/Nov/2019:05:52:47 +0100\] "POST /wp-login.php HTTP/1.1" 200 5761 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" abasicmove.de 45.55.40.27 \[08/Nov/2019:05:52:48 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4141 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-08 14:25:35

Type

Details

Datetime

45.55.40.146

attackbots

unauthorized connection attempt

2020-01-24 00:54:09

45.55.40.27

attack

abasicmove.de 45.55.40.27 \[08/Nov/2019:05:52:47 +0100\] "POST /wp-login.php HTTP/1.1" 200 5761 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
abasicmove.de 45.55.40.27 \[08/Nov/2019:05:52:48 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4141 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"

2019-11-08 14:25:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.40.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.40.149.			IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042700 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 19:23:36 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 149.40.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.40.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.241.242.75	attackbotsspam	Unauthorized connection attempt detected from IP address 191.241.242.75 to port 445	2019-12-25 13:04:54
107.182.187.34	attackspam	Dec 25 05:54:32 lnxmysql61 sshd[15966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.182.187.34 Dec 25 05:54:33 lnxmysql61 sshd[15966]: Failed password for invalid user hrbcb from 107.182.187.34 port 39106 ssh2 Dec 25 05:58:19 lnxmysql61 sshd[16476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.182.187.34	2019-12-25 13:12:12
187.188.20.94	attackspambots	Unauthorized connection attempt detected from IP address 187.188.20.94 to port 445	2019-12-25 13:07:11
139.199.168.18	attack	Dec 25 00:14:24 plusreed sshd[17600]: Invalid user test from 139.199.168.18 ...	2019-12-25 13:27:32
222.186.173.142	attackbotsspam	Dec 25 00:28:07 linuxvps sshd\[20161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Dec 25 00:28:09 linuxvps sshd\[20161\]: Failed password for root from 222.186.173.142 port 1812 ssh2 Dec 25 00:28:25 linuxvps sshd\[20391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Dec 25 00:28:27 linuxvps sshd\[20391\]: Failed password for root from 222.186.173.142 port 22926 ssh2 Dec 25 00:28:47 linuxvps sshd\[20622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root	2019-12-25 13:35:12
123.18.118.9	attack	Unauthorized connection attempt detected from IP address 123.18.118.9 to port 445	2019-12-25 13:17:18
95.78.183.156	attackspam	ssh failed login	2019-12-25 13:22:36
193.31.24.113	attack	12/25/2019-06:13:22.002895 193.31.24.113 Protocol: 17 ET INFO Session Traversal Utilities for NAT (STUN Binding Request)	2019-12-25 13:22:10
222.186.175.220	attackspam	Dec 25 06:00:38 vps647732 sshd[22153]: Failed password for root from 222.186.175.220 port 14896 ssh2 Dec 25 06:00:51 vps647732 sshd[22153]: error: maximum authentication attempts exceeded for root from 222.186.175.220 port 14896 ssh2 [preauth] ...	2019-12-25 13:01:34
202.29.30.253	attackspambots	Auto reported by IDS	2019-12-25 13:06:35
187.163.64.31	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-25 09:04:58
79.137.75.5	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-12-25 13:18:03
151.80.190.14	attackspambots	Dec 24 23:58:00 web1 postfix/smtpd[22649]: warning: unknown[151.80.190.14]: SASL LOGIN authentication failed: authentication failure ...	2019-12-25 13:22:52
182.61.133.10	attackspam	Automatic report - SSH Brute-Force Attack	2019-12-25 09:09:03
86.105.52.90	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-25 09:07:08

Recently Reported IPs

64.225.114.156	217.61.7.239	185.162.146.225	13.233.83.234
149.202.10.144	127.2.141.191	102.39.126.149	122.71.45.72
202.71.16.53	175.6.0.190	152.67.42.40	39.50.170.57
78.11.28.22	2a0a:b640:1:20::1da1:48c5	177.53.134.85	46.85.121.180
188.153.52.145	42.3.12.12	179.53.37.29	61.238.21.177