Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackspam
odoo8
...
2020-06-07 15:12:12
attackspam
May 16 04:29:27 server sshd[54925]: Failed password for invalid user jesse from 45.55.6.42 port 51750 ssh2
May 16 04:42:00 server sshd[64738]: Failed password for invalid user oracle from 45.55.6.42 port 46856 ssh2
May 16 04:47:12 server sshd[3482]: Failed password for invalid user oraprod from 45.55.6.42 port 50416 ssh2
2020-05-16 12:59:02
attackbotsspam
<6 unauthorized SSH connections
2020-05-14 17:37:57
attackbotsspam
*Port Scan* detected from 45.55.6.42 (US/United States/California/San Francisco/-). 4 hits in the last 15 seconds
2020-05-07 02:25:10
attackbotsspam
May  4 09:26:05 inter-technics sshd[24622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42  user=root
May  4 09:26:07 inter-technics sshd[24622]: Failed password for root from 45.55.6.42 port 37166 ssh2
May  4 09:30:49 inter-technics sshd[25888]: Invalid user julie from 45.55.6.42 port 42719
May  4 09:30:49 inter-technics sshd[25888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
May  4 09:30:49 inter-technics sshd[25888]: Invalid user julie from 45.55.6.42 port 42719
May  4 09:30:51 inter-technics sshd[25888]: Failed password for invalid user julie from 45.55.6.42 port 42719 ssh2
...
2020-05-04 18:24:50
attack
Apr 29 17:18:15 host sshd[30908]: Invalid user acs from 45.55.6.42 port 43198
...
2020-04-29 23:24:36
attackspam
2020-04-28T14:32:17.817169shield sshd\[4536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42  user=root
2020-04-28T14:32:19.813664shield sshd\[4536\]: Failed password for root from 45.55.6.42 port 56783 ssh2
2020-04-28T14:36:57.062630shield sshd\[5177\]: Invalid user sanga from 45.55.6.42 port 35096
2020-04-28T14:36:57.066359shield sshd\[5177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
2020-04-28T14:36:59.168197shield sshd\[5177\]: Failed password for invalid user sanga from 45.55.6.42 port 35096 ssh2
2020-04-29 03:27:16
attackbotsspam
Invalid user test from 45.55.6.42 port 46551
2020-04-25 13:25:22
attack
*Port Scan* detected from 45.55.6.42 (US/United States/California/San Francisco/-). 4 hits in the last 85 seconds
2020-04-21 21:22:26
attackbotsspam
Apr 15 14:13:08 server sshd[50029]: Failed password for invalid user vnc from 45.55.6.42 port 55382 ssh2
Apr 15 14:18:52 server sshd[51745]: Failed password for invalid user oracle from 45.55.6.42 port 36643 ssh2
Apr 15 14:23:30 server sshd[53186]: Failed password for invalid user test from 45.55.6.42 port 40132 ssh2
2020-04-15 21:03:48
attackbots
$f2bV_matches
2020-04-10 03:18:37
attack
Invalid user cailin from 45.55.6.42 port 55990
2020-04-03 15:28:54
attack
$f2bV_matches
2020-03-29 01:23:31
attack
SSH Brute-Force attacks
2020-03-25 09:28:16
attack
(sshd) Failed SSH login from 45.55.6.42 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 24 04:47:59 amsweb01 sshd[30204]: Invalid user test from 45.55.6.42 port 46577
Mar 24 04:48:01 amsweb01 sshd[30204]: Failed password for invalid user test from 45.55.6.42 port 46577 ssh2
Mar 24 04:56:12 amsweb01 sshd[31101]: Invalid user long from 45.55.6.42 port 58906
Mar 24 04:56:15 amsweb01 sshd[31101]: Failed password for invalid user long from 45.55.6.42 port 58906 ssh2
Mar 24 05:00:59 amsweb01 sshd[31709]: Invalid user wangcs from 45.55.6.42 port 34420
2020-03-24 13:18:23
attack
Mar 19 03:02:40 itv-usvr-02 sshd[31190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42  user=root
Mar 19 03:08:19 itv-usvr-02 sshd[31352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42  user=root
Mar 19 03:10:30 itv-usvr-02 sshd[31542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42  user=root
2020-03-19 05:40:36
attack
2020-03-08T21:29:57.528912abusebot-8.cloudsearch.cf sshd[30170]: Invalid user cisco from 45.55.6.42 port 39645
2020-03-08T21:29:57.536265abusebot-8.cloudsearch.cf sshd[30170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
2020-03-08T21:29:57.528912abusebot-8.cloudsearch.cf sshd[30170]: Invalid user cisco from 45.55.6.42 port 39645
2020-03-08T21:29:59.859120abusebot-8.cloudsearch.cf sshd[30170]: Failed password for invalid user cisco from 45.55.6.42 port 39645 ssh2
2020-03-08T21:35:20.395070abusebot-8.cloudsearch.cf sshd[30439]: Invalid user zhup from 45.55.6.42 port 48872
2020-03-08T21:35:20.403749abusebot-8.cloudsearch.cf sshd[30439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
2020-03-08T21:35:20.395070abusebot-8.cloudsearch.cf sshd[30439]: Invalid user zhup from 45.55.6.42 port 48872
2020-03-08T21:35:22.400524abusebot-8.cloudsearch.cf sshd[30439]: Failed password for invalid u
...
2020-03-09 05:43:46
attackspambots
Mar  7 14:31:57 mail sshd[15989]: Invalid user fct from 45.55.6.42
Mar  7 14:31:57 mail sshd[15989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
Mar  7 14:31:57 mail sshd[15989]: Invalid user fct from 45.55.6.42
Mar  7 14:31:59 mail sshd[15989]: Failed password for invalid user fct from 45.55.6.42 port 40511 ssh2
...
2020-03-08 00:40:50
attack
suspicious action Mon, 24 Feb 2020 01:42:35 -0300
2020-02-24 21:17:55
attackbots
Feb 19 16:48:42 vps sshd[15832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 
Feb 19 16:48:45 vps sshd[15832]: Failed password for invalid user Michelle from 45.55.6.42 port 50413 ssh2
Feb 19 17:12:54 vps sshd[17084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 
...
2020-02-20 04:37:19
attackspambots
Feb 17 06:21:33 srv01 sshd[28378]: Invalid user teste from 45.55.6.42 port 51865
Feb 17 06:21:33 srv01 sshd[28378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
Feb 17 06:21:33 srv01 sshd[28378]: Invalid user teste from 45.55.6.42 port 51865
Feb 17 06:21:35 srv01 sshd[28378]: Failed password for invalid user teste from 45.55.6.42 port 51865 ssh2
Feb 17 06:23:41 srv01 sshd[28484]: Invalid user admin from 45.55.6.42 port 33866
...
2020-02-17 15:03:48
attack
Feb 16 19:59:09 MK-Soft-VM6 sshd[19051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42 
Feb 16 19:59:11 MK-Soft-VM6 sshd[19051]: Failed password for invalid user sanjeev from 45.55.6.42 port 53281 ssh2
...
2020-02-17 03:38:43
attack
$f2bV_matches
2020-02-12 06:20:43
attackbots
Feb  9 14:42:44 silence02 sshd[31932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
Feb  9 14:42:45 silence02 sshd[31932]: Failed password for invalid user vwe from 45.55.6.42 port 52681 ssh2
Feb  9 14:45:53 silence02 sshd[32134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.6.42
2020-02-10 04:12:02
attackspambots
SSH-BruteForce
2020-02-02 08:09:20
attackspambots
Unauthorized connection attempt detected from IP address 45.55.6.42 to port 2220 [J]
2020-01-29 15:31:02
attackbots
Invalid user svt from 45.55.6.42 port 47023
2020-01-18 23:21:23
Comments on same subnet:
IP Type Details Datetime
45.55.67.249 attack
Fraud connect
2024-05-11 01:52:46
45.55.63.118 attackbots
Invalid user vandusen from 45.55.63.118 port 41584
2020-10-13 23:10:09
45.55.63.118 attack
$f2bV_matches
2020-10-13 14:28:20
45.55.63.118 attackbots
Oct 13 00:54:53 eventyay sshd[2588]: Failed password for root from 45.55.63.118 port 35190 ssh2
Oct 13 00:58:25 eventyay sshd[2703]: Failed password for root from 45.55.63.118 port 40376 ssh2
...
2020-10-13 07:09:49
45.55.61.114 attack
C1,WP GET /suche/wp-login.php
2020-10-11 02:56:06
45.55.61.114 attackbots
45.55.61.114 - - [10/Oct/2020:12:32:10 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [10/Oct/2020:12:32:11 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [10/Oct/2020:12:32:12 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-10-10 18:44:37
45.55.65.92 attack
firewall-block, port(s): 23786/tcp
2020-10-05 06:04:49
45.55.65.92 attackbots
[N10.H2.VM2] Port Scanner Detected Blocked by UFW
2020-10-04 22:03:38
45.55.65.92 attackspambots
firewall-block, port(s): 6864/tcp
2020-10-04 13:49:33
45.55.65.92 attack
 TCP (SYN) 45.55.65.92:55907 -> port 24092, len 44
2020-10-04 02:11:02
45.55.65.92 attackspambots
 TCP (SYN) 45.55.65.92:55907 -> port 24092, len 44
2020-10-03 17:56:13
45.55.61.114 attackspambots
45.55.61.114 - - [30/Sep/2020:03:32:27 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [30/Sep/2020:03:32:28 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [30/Sep/2020:03:32:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-30 09:51:12
45.55.61.114 attackbots
45.55.61.114 - - [29/Sep/2020:18:49:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [29/Sep/2020:18:49:43 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [29/Sep/2020:18:49:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-30 02:42:42
45.55.61.114 attackspambots
45.55.61.114 - - [29/Sep/2020:11:41:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [29/Sep/2020:11:41:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2125 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.61.114 - - [29/Sep/2020:11:41:08 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-29 18:45:44
45.55.65.92 attack
 TCP (SYN) 45.55.65.92:44462 -> port 22831, len 44
2020-09-27 01:17:38
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.6.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.6.42.			IN	A

;; AUTHORITY SECTION:
.			465	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011800 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 18 23:21:15 CST 2020
;; MSG SIZE  rcvd: 114
Host info
Host 42.6.55.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.6.55.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
222.186.42.7 attackspam
Sep  9 21:32:57 abendstille sshd\[8291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7  user=root
Sep  9 21:32:59 abendstille sshd\[8291\]: Failed password for root from 222.186.42.7 port 59511 ssh2
Sep  9 21:33:05 abendstille sshd\[8389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7  user=root
Sep  9 21:33:07 abendstille sshd\[8389\]: Failed password for root from 222.186.42.7 port 40013 ssh2
Sep  9 21:33:14 abendstille sshd\[8561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7  user=root
...
2020-09-10 03:35:45
177.47.229.130 attackspambots
Icarus honeypot on github
2020-09-10 03:44:37
113.105.80.34 attackbots
Sep  9 20:38:40 ajax sshd[2830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 
Sep  9 20:38:42 ajax sshd[2830]: Failed password for invalid user telecomadmin from 113.105.80.34 port 48064 ssh2
2020-09-10 03:49:13
106.13.215.94 attackbots
[N10.H2.VM2] Port Scanner Detected Blocked by UFW
2020-09-10 03:52:57
192.119.71.216 attack
ET WORM TheMoon.linksys.router 2
2020-09-10 03:31:32
125.43.69.155 attackbots
Sep  9 21:02:51 minden010 sshd[23965]: Failed password for root from 125.43.69.155 port 8586 ssh2
Sep  9 21:06:50 minden010 sshd[25278]: Failed password for root from 125.43.69.155 port 22610 ssh2
...
2020-09-10 03:39:37
51.178.81.106 attackspam
WordPress wp-login brute force :: 51.178.81.106 0.388 BYPASS [09/Sep/2020:16:57:43  0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2578 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-10 03:46:22
222.186.15.115 attackspambots
Sep  9 21:33:28 piServer sshd[3018]: Failed password for root from 222.186.15.115 port 56098 ssh2
Sep  9 21:33:32 piServer sshd[3018]: Failed password for root from 222.186.15.115 port 56098 ssh2
Sep  9 21:33:36 piServer sshd[3018]: Failed password for root from 222.186.15.115 port 56098 ssh2
...
2020-09-10 03:36:20
139.155.79.7 attackspambots
2020-09-09T16:58:10+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)
2020-09-10 03:33:14
152.32.167.105 attack
Sep  9 20:56:13 PorscheCustomer sshd[27082]: Failed password for root from 152.32.167.105 port 49842 ssh2
Sep  9 20:59:34 PorscheCustomer sshd[27153]: Failed password for root from 152.32.167.105 port 44216 ssh2
...
2020-09-10 03:55:43
58.59.17.74 attackspambots
(sshd) Failed SSH login from 58.59.17.74 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep  9 18:31:28 amsweb01 sshd[10612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.59.17.74  user=root
Sep  9 18:31:30 amsweb01 sshd[10612]: Failed password for root from 58.59.17.74 port 34442 ssh2
Sep  9 18:55:27 amsweb01 sshd[13803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.59.17.74  user=root
Sep  9 18:55:29 amsweb01 sshd[13803]: Failed password for root from 58.59.17.74 port 39454 ssh2
Sep  9 18:57:53 amsweb01 sshd[14125]: Invalid user vhost from 58.59.17.74 port 59244
2020-09-10 03:40:01
181.48.79.178 attackspambots
Invalid user localhost from 181.48.79.178 port 35934
2020-09-10 03:40:45
128.199.239.204 attackbotsspam
2020-09-09T19:38:23+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)
2020-09-10 04:03:55
46.52.131.207 attack
Dovecot Invalid User Login Attempt.
2020-09-10 04:06:52
156.54.164.144 attack
2020-09-09T21:23:15.859230paragon sshd[290422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.164.144
2020-09-09T21:23:15.855144paragon sshd[290422]: Invalid user nagios from 156.54.164.144 port 53587
2020-09-09T21:23:17.935864paragon sshd[290422]: Failed password for invalid user nagios from 156.54.164.144 port 53587 ssh2
2020-09-09T21:26:55.369520paragon sshd[290469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.164.144  user=root
2020-09-09T21:26:57.316145paragon sshd[290469]: Failed password for root from 156.54.164.144 port 56587 ssh2
...
2020-09-10 03:32:43

Recently Reported IPs

246.47.97.111 238.156.132.121 44.176.92.197 139.41.210.67
80.195.223.102 84.1.138.88 169.159.215.27 169.239.62.119
52.60.230.230 116.105.221.111 103.207.128.79 197.62.250.79
197.62.182.13 187.91.14.211 183.89.238.166 179.104.28.12
178.123.107.70 245.47.130.173 23.207.5.239 31.123.148.17