City: unknown
Region: unknown
Country: United States of America
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspam | odoo8 ... |
2020-06-07 15:12:12 |
| attackspam | May 16 04:29:27 server sshd[54925]: Failed password for invalid user jesse from 45.55.6.42 port 51750 ssh2 May 16 04:42:00 server sshd[64738]: Failed password for invalid user oracle from 45.55.6.42 port 46856 ssh2 May 16 04:47:12 server sshd[3482]: Failed password for invalid user oraprod from 45.55.6.42 port 50416 ssh2 |
2020-05-16 12:59:02 |
| attackbotsspam | <6 unauthorized SSH connections |
2020-05-14 17:37:57 |
| attackbotsspam | *Port Scan* detected from 45.55.6.42 (US/United States/California/San Francisco/-). 4 hits in the last 15 seconds |
2020-05-07 02:25:10 |
| attackbotsspam | May 4 09:26:05 inter-technics sshd[24622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 user=root May 4 09:26:07 inter-technics sshd[24622]: Failed password for root from 45.55.6.42 port 37166 ssh2 May 4 09:30:49 inter-technics sshd[25888]: Invalid user julie from 45.55.6.42 port 42719 May 4 09:30:49 inter-technics sshd[25888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 May 4 09:30:49 inter-technics sshd[25888]: Invalid user julie from 45.55.6.42 port 42719 May 4 09:30:51 inter-technics sshd[25888]: Failed password for invalid user julie from 45.55.6.42 port 42719 ssh2 ... |
2020-05-04 18:24:50 |
| attack | Apr 29 17:18:15 host sshd[30908]: Invalid user acs from 45.55.6.42 port 43198 ... |
2020-04-29 23:24:36 |
| attackspam | 2020-04-28T14:32:17.817169shield sshd\[4536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 user=root 2020-04-28T14:32:19.813664shield sshd\[4536\]: Failed password for root from 45.55.6.42 port 56783 ssh2 2020-04-28T14:36:57.062630shield sshd\[5177\]: Invalid user sanga from 45.55.6.42 port 35096 2020-04-28T14:36:57.066359shield sshd\[5177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 2020-04-28T14:36:59.168197shield sshd\[5177\]: Failed password for invalid user sanga from 45.55.6.42 port 35096 ssh2 |
2020-04-29 03:27:16 |
| attackbotsspam | Invalid user test from 45.55.6.42 port 46551 |
2020-04-25 13:25:22 |
| attack | *Port Scan* detected from 45.55.6.42 (US/United States/California/San Francisco/-). 4 hits in the last 85 seconds |
2020-04-21 21:22:26 |
| attackbotsspam | Apr 15 14:13:08 server sshd[50029]: Failed password for invalid user vnc from 45.55.6.42 port 55382 ssh2 Apr 15 14:18:52 server sshd[51745]: Failed password for invalid user oracle from 45.55.6.42 port 36643 ssh2 Apr 15 14:23:30 server sshd[53186]: Failed password for invalid user test from 45.55.6.42 port 40132 ssh2 |
2020-04-15 21:03:48 |
| attackbots | $f2bV_matches |
2020-04-10 03:18:37 |
| attack | Invalid user cailin from 45.55.6.42 port 55990 |
2020-04-03 15:28:54 |
| attack | $f2bV_matches |
2020-03-29 01:23:31 |
| attack | SSH Brute-Force attacks |
2020-03-25 09:28:16 |
| attack | (sshd) Failed SSH login from 45.55.6.42 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 24 04:47:59 amsweb01 sshd[30204]: Invalid user test from 45.55.6.42 port 46577 Mar 24 04:48:01 amsweb01 sshd[30204]: Failed password for invalid user test from 45.55.6.42 port 46577 ssh2 Mar 24 04:56:12 amsweb01 sshd[31101]: Invalid user long from 45.55.6.42 port 58906 Mar 24 04:56:15 amsweb01 sshd[31101]: Failed password for invalid user long from 45.55.6.42 port 58906 ssh2 Mar 24 05:00:59 amsweb01 sshd[31709]: Invalid user wangcs from 45.55.6.42 port 34420 |
2020-03-24 13:18:23 |
| attack | Mar 19 03:02:40 itv-usvr-02 sshd[31190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 user=root Mar 19 03:08:19 itv-usvr-02 sshd[31352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 user=root Mar 19 03:10:30 itv-usvr-02 sshd[31542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 user=root |
2020-03-19 05:40:36 |
| attack | 2020-03-08T21:29:57.528912abusebot-8.cloudsearch.cf sshd[30170]: Invalid user cisco from 45.55.6.42 port 39645 2020-03-08T21:29:57.536265abusebot-8.cloudsearch.cf sshd[30170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 2020-03-08T21:29:57.528912abusebot-8.cloudsearch.cf sshd[30170]: Invalid user cisco from 45.55.6.42 port 39645 2020-03-08T21:29:59.859120abusebot-8.cloudsearch.cf sshd[30170]: Failed password for invalid user cisco from 45.55.6.42 port 39645 ssh2 2020-03-08T21:35:20.395070abusebot-8.cloudsearch.cf sshd[30439]: Invalid user zhup from 45.55.6.42 port 48872 2020-03-08T21:35:20.403749abusebot-8.cloudsearch.cf sshd[30439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 2020-03-08T21:35:20.395070abusebot-8.cloudsearch.cf sshd[30439]: Invalid user zhup from 45.55.6.42 port 48872 2020-03-08T21:35:22.400524abusebot-8.cloudsearch.cf sshd[30439]: Failed password for invalid u ... |
2020-03-09 05:43:46 |
| attackspambots | Mar 7 14:31:57 mail sshd[15989]: Invalid user fct from 45.55.6.42 Mar 7 14:31:57 mail sshd[15989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 Mar 7 14:31:57 mail sshd[15989]: Invalid user fct from 45.55.6.42 Mar 7 14:31:59 mail sshd[15989]: Failed password for invalid user fct from 45.55.6.42 port 40511 ssh2 ... |
2020-03-08 00:40:50 |
| attack | suspicious action Mon, 24 Feb 2020 01:42:35 -0300 |
2020-02-24 21:17:55 |
| attackbots | Feb 19 16:48:42 vps sshd[15832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 Feb 19 16:48:45 vps sshd[15832]: Failed password for invalid user Michelle from 45.55.6.42 port 50413 ssh2 Feb 19 17:12:54 vps sshd[17084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 ... |
2020-02-20 04:37:19 |
| attackspambots | Feb 17 06:21:33 srv01 sshd[28378]: Invalid user teste from 45.55.6.42 port 51865 Feb 17 06:21:33 srv01 sshd[28378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 Feb 17 06:21:33 srv01 sshd[28378]: Invalid user teste from 45.55.6.42 port 51865 Feb 17 06:21:35 srv01 sshd[28378]: Failed password for invalid user teste from 45.55.6.42 port 51865 ssh2 Feb 17 06:23:41 srv01 sshd[28484]: Invalid user admin from 45.55.6.42 port 33866 ... |
2020-02-17 15:03:48 |
| attack | Feb 16 19:59:09 MK-Soft-VM6 sshd[19051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 Feb 16 19:59:11 MK-Soft-VM6 sshd[19051]: Failed password for invalid user sanjeev from 45.55.6.42 port 53281 ssh2 ... |
2020-02-17 03:38:43 |
| attack | $f2bV_matches |
2020-02-12 06:20:43 |
| attackbots | Feb 9 14:42:44 silence02 sshd[31932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 Feb 9 14:42:45 silence02 sshd[31932]: Failed password for invalid user vwe from 45.55.6.42 port 52681 ssh2 Feb 9 14:45:53 silence02 sshd[32134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 |
2020-02-10 04:12:02 |
| attackspambots | SSH-BruteForce |
2020-02-02 08:09:20 |
| attackspambots | Unauthorized connection attempt detected from IP address 45.55.6.42 to port 2220 [J] |
2020-01-29 15:31:02 |
| attackbots | Invalid user svt from 45.55.6.42 port 47023 |
2020-01-18 23:21:23 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.55.67.249 | attack | Fraud connect |
2024-05-11 01:52:46 |
| 45.55.63.118 | attackbots | Invalid user vandusen from 45.55.63.118 port 41584 |
2020-10-13 23:10:09 |
| 45.55.63.118 | attack | $f2bV_matches |
2020-10-13 14:28:20 |
| 45.55.63.118 | attackbots | Oct 13 00:54:53 eventyay sshd[2588]: Failed password for root from 45.55.63.118 port 35190 ssh2 Oct 13 00:58:25 eventyay sshd[2703]: Failed password for root from 45.55.63.118 port 40376 ssh2 ... |
2020-10-13 07:09:49 |
| 45.55.61.114 | attack | C1,WP GET /suche/wp-login.php |
2020-10-11 02:56:06 |
| 45.55.61.114 | attackbots | 45.55.61.114 - - [10/Oct/2020:12:32:10 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Oct/2020:12:32:11 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [10/Oct/2020:12:32:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-10-10 18:44:37 |
| 45.55.65.92 | attack | firewall-block, port(s): 23786/tcp |
2020-10-05 06:04:49 |
| 45.55.65.92 | attackbots | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-04 22:03:38 |
| 45.55.65.92 | attackspambots | firewall-block, port(s): 6864/tcp |
2020-10-04 13:49:33 |
| 45.55.65.92 | attack |
|
2020-10-04 02:11:02 |
| 45.55.65.92 | attackspambots |
|
2020-10-03 17:56:13 |
| 45.55.61.114 | attackspambots | 45.55.61.114 - - [30/Sep/2020:03:32:27 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [30/Sep/2020:03:32:28 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [30/Sep/2020:03:32:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-09-30 09:51:12 |
| 45.55.61.114 | attackbots | 45.55.61.114 - - [29/Sep/2020:18:49:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:18:49:43 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:18:49:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-09-30 02:42:42 |
| 45.55.61.114 | attackspambots | 45.55.61.114 - - [29/Sep/2020:11:41:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:11:41:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2125 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.61.114 - - [29/Sep/2020:11:41:08 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-09-29 18:45:44 |
| 45.55.65.92 | attack |
|
2020-09-27 01:17:38 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.6.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.6.42. IN A
;; AUTHORITY SECTION:
. 465 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020011800 1800 900 604800 86400
;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 18 23:21:15 CST 2020
;; MSG SIZE rcvd: 114Host 42.6.55.45.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 42.6.55.45.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.132.129.219 | attackspambots | DDOS - one of 48 separate Russian addresses (plus one Lithuanian) IP addresses used to attack our website by repeatedly attempting to download the same, large file. All requests had the same signature, RestSharp/106.11.4.0 |
2020-07-10 20:55:21 |
| 49.233.14.115 | attackbots | Jul 10 14:46:36 vps sshd[225501]: Failed password for invalid user gedella from 49.233.14.115 port 55714 ssh2 Jul 10 14:48:46 vps sshd[234369]: Invalid user ronald from 49.233.14.115 port 55322 Jul 10 14:48:46 vps sshd[234369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.14.115 Jul 10 14:48:49 vps sshd[234369]: Failed password for invalid user ronald from 49.233.14.115 port 55322 ssh2 Jul 10 14:50:59 vps sshd[246766]: Invalid user christiane from 49.233.14.115 port 54922 ... |
2020-07-10 21:39:08 |
| 183.109.124.137 | attackspam | Multiple SSH authentication failures from 183.109.124.137 |
2020-07-10 21:42:41 |
| 190.151.37.19 | attackspam | Jul 10 15:21:27 vps687878 sshd\[10419\]: Failed password for invalid user roberto from 190.151.37.19 port 46480 ssh2 Jul 10 15:26:02 vps687878 sshd\[10811\]: Invalid user at from 190.151.37.19 port 43962 Jul 10 15:26:02 vps687878 sshd\[10811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.37.19 Jul 10 15:26:04 vps687878 sshd\[10811\]: Failed password for invalid user at from 190.151.37.19 port 43962 ssh2 Jul 10 15:30:44 vps687878 sshd\[11218\]: Invalid user bn from 190.151.37.19 port 41440 Jul 10 15:30:44 vps687878 sshd\[11218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.37.19 ... |
2020-07-10 21:48:09 |
| 118.25.79.56 | attackspambots | Jul 10 14:29:06 h2646465 sshd[14278]: Invalid user neola from 118.25.79.56 Jul 10 14:29:06 h2646465 sshd[14278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.79.56 Jul 10 14:29:06 h2646465 sshd[14278]: Invalid user neola from 118.25.79.56 Jul 10 14:29:08 h2646465 sshd[14278]: Failed password for invalid user neola from 118.25.79.56 port 33842 ssh2 Jul 10 14:53:57 h2646465 sshd[17495]: Invalid user www from 118.25.79.56 Jul 10 14:53:57 h2646465 sshd[17495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.79.56 Jul 10 14:53:57 h2646465 sshd[17495]: Invalid user www from 118.25.79.56 Jul 10 14:53:59 h2646465 sshd[17495]: Failed password for invalid user www from 118.25.79.56 port 57984 ssh2 Jul 10 14:57:58 h2646465 sshd[18074]: Invalid user brienne from 118.25.79.56 ... |
2020-07-10 21:19:44 |
| 183.134.90.250 | attack | Failed password for invalid user stephen from 183.134.90.250 port 60084 ssh2 |
2020-07-10 21:20:56 |
| 218.92.0.249 | attackbotsspam | Jul 10 15:15:57 server sshd[24310]: Failed none for root from 218.92.0.249 port 26638 ssh2 Jul 10 15:15:59 server sshd[24310]: Failed password for root from 218.92.0.249 port 26638 ssh2 Jul 10 15:16:03 server sshd[24310]: Failed password for root from 218.92.0.249 port 26638 ssh2 |
2020-07-10 21:25:27 |
| 114.33.88.16 | attackbots | Port Scan detected! ... |
2020-07-10 21:30:00 |
| 212.125.10.120 | attackbotsspam | chaangnoifulda.de 212.125.10.120 [10/Jul/2020:14:35:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4275 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" chaangnoifulda.de 212.125.10.120 [10/Jul/2020:14:35:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4275 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-07-10 21:23:17 |
| 35.224.204.56 | attackbots | " " |
2020-07-10 21:07:09 |
| 45.132.129.176 | attackbotsspam | DDOS - one of 48 separate Russian addresses (plus one Lithuanian) IP addresses used to attack our website by repeatedly attempting to download the same, large file. All requests had the same signature, RestSharp/106.11.4.0 |
2020-07-10 20:56:04 |
| 2.56.138.216 | attackspam | DDOS - one of 48 separate Russian addresses (plus one Lithuanian) IP addresses used to attack our website by repeatedly attempting to download the same, large file. All requests had the same signature, RestSharp/106.11.4.0 |
2020-07-10 21:05:11 |
| 202.62.224.61 | attackspam | Jul 10 15:06:36 srv-ubuntu-dev3 sshd[77199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.62.224.61 user=mail Jul 10 15:06:38 srv-ubuntu-dev3 sshd[77199]: Failed password for mail from 202.62.224.61 port 42992 ssh2 Jul 10 15:10:26 srv-ubuntu-dev3 sshd[77808]: Invalid user office from 202.62.224.61 Jul 10 15:10:26 srv-ubuntu-dev3 sshd[77808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.62.224.61 Jul 10 15:10:26 srv-ubuntu-dev3 sshd[77808]: Invalid user office from 202.62.224.61 Jul 10 15:10:28 srv-ubuntu-dev3 sshd[77808]: Failed password for invalid user office from 202.62.224.61 port 55444 ssh2 Jul 10 15:14:25 srv-ubuntu-dev3 sshd[78410]: Invalid user dust from 202.62.224.61 Jul 10 15:14:25 srv-ubuntu-dev3 sshd[78410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.62.224.61 Jul 10 15:14:25 srv-ubuntu-dev3 sshd[78410]: Invalid user dust from 202.6 ... |
2020-07-10 21:18:53 |
| 60.176.88.140 | attackbots | Honeypot hit. |
2020-07-10 21:14:13 |
| 218.92.0.145 | attackspambots | 2020-07-10T13:16:44.193537mail.csmailer.org sshd[6503]: Failed password for root from 218.92.0.145 port 6006 ssh2 2020-07-10T13:16:46.681219mail.csmailer.org sshd[6503]: Failed password for root from 218.92.0.145 port 6006 ssh2 2020-07-10T13:16:49.761365mail.csmailer.org sshd[6503]: Failed password for root from 218.92.0.145 port 6006 ssh2 2020-07-10T13:16:49.761823mail.csmailer.org sshd[6503]: error: maximum authentication attempts exceeded for root from 218.92.0.145 port 6006 ssh2 [preauth] 2020-07-10T13:16:49.761840mail.csmailer.org sshd[6503]: Disconnecting: Too many authentication failures [preauth] ... |
2020-07-10 21:40:25 |