45.55.82.44 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	45.55.82.44 - - \[10/Dec/2019:07:25:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 3079 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - \[10/Dec/2019:07:25:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 3037 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - \[10/Dec/2019:07:25:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 3047 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-10 21:18:18
attackspambots	45.55.82.44 - - [03/Dec/2019:23:33:03 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:05 +0100] "POST /wp-login.php HTTP/1.1" 200 2294 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:05 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2268 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:07 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2269 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-04 08:43:27
attackspam	Automatic report - Banned IP Access	2019-11-19 13:04:42
attack	\[Sun Nov 17 11:28:58.836776 2019\] \[authz_core:error\] \[pid 1853\] \[client 45.55.82.44:51781\] AH01630: client denied by server configuration: /var/www/michele/xmlrpc.php ...	2019-11-17 19:28:47
attackspambots	xmlrpc attack	2019-08-05 13:19:16
attack	joshuajohannes.de 45.55.82.44 \[18/Jul/2019:23:08:28 +0200\] "POST /wp-login.php HTTP/1.1" 200 5606 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" joshuajohannes.de 45.55.82.44 \[18/Jul/2019:23:08:29 +0200\] "POST /wp-login.php HTTP/1.1" 200 5613 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-19 06:06:45
attackbots	xmlrpc attack	2019-06-23 17:23:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.82.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64432
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.82.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 19:41:01 +08 2019
;; MSG SIZE  rcvd: 115

Host info

Host 44.82.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 44.82.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.161.45.187	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-02 13:25:02
66.70.130.152	attack	Invalid user play from 66.70.130.152 port 56548	2020-08-02 13:27:19
94.102.56.231	attack	Aug 2 06:18:16 debian-2gb-nbg1-2 kernel: \[18600373.625228\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.56.231 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=21136 PROTO=TCP SPT=48550 DPT=8631 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-02 13:12:16
40.117.225.27	attackspambots	Invalid user qichen from 40.117.225.27 port 17511	2020-08-02 12:56:44
195.37.190.77	attackspambots	Unauthorized connection attempt detected from IP address 195.37.190.77 to port 443	2020-08-02 13:09:46
177.76.188.74	attack	Aug 1 18:56:08 php1 sshd\[21227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.76.188.74 user=root Aug 1 18:56:11 php1 sshd\[21227\]: Failed password for root from 177.76.188.74 port 46002 ssh2 Aug 1 19:00:56 php1 sshd\[21549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.76.188.74 user=root Aug 1 19:00:58 php1 sshd\[21549\]: Failed password for root from 177.76.188.74 port 57976 ssh2 Aug 1 19:05:44 php1 sshd\[21850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.76.188.74 user=root	2020-08-02 13:10:15
163.172.220.105	attackbots	Port Scan detected from 163.172.220.105 (NL/Netherlands/North Holland/Amsterdam/163-172-220-105.rev.poneytelecom.eu). 4 hits in the last 190 seconds	2020-08-02 13:03:42
104.244.77.95	attackspambots	Aug 2 05:54:22 hell sshd[31005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.77.95 Aug 2 05:54:24 hell sshd[31005]: Failed password for invalid user admin from 104.244.77.95 port 41727 ssh2 ...	2020-08-02 13:28:31
169.255.148.18	attackspambots	Aug 2 06:59:01 sip sshd[1164030]: Failed password for root from 169.255.148.18 port 33765 ssh2 Aug 2 07:02:10 sip sshd[1164044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.255.148.18 user=root Aug 2 07:02:12 sip sshd[1164044]: Failed password for root from 169.255.148.18 port 55617 ssh2 ...	2020-08-02 13:06:07
45.127.62.55	attack	Aug 2 00:42:00 ws24vmsma01 sshd[26741]: Failed password for root from 45.127.62.55 port 39379 ssh2 ...	2020-08-02 12:52:15
179.191.88.58	attackbotsspam	Invalid user bg from 179.191.88.58 port 47932	2020-08-02 13:19:04
93.174.89.55	attackbotsspam	Port Scan detected from 93.174.89.55 (NL/Netherlands/North Holland/Amsterdam/no-reverse-dns-configured.com). 4 hits in the last 240 seconds	2020-08-02 12:50:41
106.54.202.152	attackbots	Aug 2 06:41:24 lnxmail61 sshd[19831]: Failed password for root from 106.54.202.152 port 47274 ssh2 Aug 2 06:41:24 lnxmail61 sshd[19831]: Failed password for root from 106.54.202.152 port 47274 ssh2	2020-08-02 13:03:57
61.133.232.250	attackbotsspam	Aug 2 05:49:37 eventyay sshd[20774]: Failed password for root from 61.133.232.250 port 2483 ssh2 Aug 2 05:51:23 eventyay sshd[20839]: Failed password for root from 61.133.232.250 port 41757 ssh2 ...	2020-08-02 12:55:15
36.67.63.29	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-02 13:42:39

Recently Reported IPs

105.186.66.252	176.109.239.203	77.245.155.172	128.199.110.63
104.37.213.132	159.203.98.228	118.25.238.76	3.85.67.28
87.106.167.59	103.98.189.180	163.172.162.55	54.38.33.249
31.132.69.221	95.85.15.224	111.200.245.158	106.13.15.122
103.35.128.77	218.102.89.203	178.197.229.63	103.8.119.166