45.55.82.44 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	45.55.82.44 - - \[10/Dec/2019:07:25:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 3079 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - \[10/Dec/2019:07:25:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 3037 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - \[10/Dec/2019:07:25:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 3047 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-10 21:18:18
attackspambots	45.55.82.44 - - [03/Dec/2019:23:33:03 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:05 +0100] "POST /wp-login.php HTTP/1.1" 200 2294 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:05 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2268 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:07 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.82.44 - - [03/Dec/2019:23:33:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2269 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-04 08:43:27
attackspam	Automatic report - Banned IP Access	2019-11-19 13:04:42
attack	\[Sun Nov 17 11:28:58.836776 2019\] \[authz_core:error\] \[pid 1853\] \[client 45.55.82.44:51781\] AH01630: client denied by server configuration: /var/www/michele/xmlrpc.php ...	2019-11-17 19:28:47
attackspambots	xmlrpc attack	2019-08-05 13:19:16
attack	joshuajohannes.de 45.55.82.44 \[18/Jul/2019:23:08:28 +0200\] "POST /wp-login.php HTTP/1.1" 200 5606 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" joshuajohannes.de 45.55.82.44 \[18/Jul/2019:23:08:29 +0200\] "POST /wp-login.php HTTP/1.1" 200 5613 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-19 06:06:45
attackbots	xmlrpc attack	2019-06-23 17:23:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.55.82.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64432
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.55.82.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 19:41:01 +08 2019
;; MSG SIZE  rcvd: 115

Host info

Host 44.82.55.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 44.82.55.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.176.115	attack	Brute force attempt	2020-03-18 02:32:40
183.14.30.164	attackbotsspam	2020-03-17T18:18:39.878464upcloud.m0sh1x2.com sshd[4836]: Invalid user default from 183.14.30.164 port 43450	2020-03-18 03:00:53
91.212.150.145	attack	2020-03-17T18:21:58.241265randservbullet-proofcloud-66.localdomain sshd[6550]: Invalid user support from 91.212.150.145 port 46190 2020-03-17T18:21:58.246635randservbullet-proofcloud-66.localdomain sshd[6550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.150.145 2020-03-17T18:21:58.241265randservbullet-proofcloud-66.localdomain sshd[6550]: Invalid user support from 91.212.150.145 port 46190 2020-03-17T18:22:00.430197randservbullet-proofcloud-66.localdomain sshd[6550]: Failed password for invalid user support from 91.212.150.145 port 46190 ssh2 ...	2020-03-18 02:42:02
116.246.21.23	attack	2020-03-17T18:17:15.085831abusebot-3.cloudsearch.cf sshd[32198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.246.21.23 user=root 2020-03-17T18:17:17.083917abusebot-3.cloudsearch.cf sshd[32198]: Failed password for root from 116.246.21.23 port 34176 ssh2 2020-03-17T18:21:17.439775abusebot-3.cloudsearch.cf sshd[32448]: Invalid user mysql from 116.246.21.23 port 46186 2020-03-17T18:21:17.445349abusebot-3.cloudsearch.cf sshd[32448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.246.21.23 2020-03-17T18:21:17.439775abusebot-3.cloudsearch.cf sshd[32448]: Invalid user mysql from 116.246.21.23 port 46186 2020-03-17T18:21:19.333182abusebot-3.cloudsearch.cf sshd[32448]: Failed password for invalid user mysql from 116.246.21.23 port 46186 ssh2 2020-03-17T18:22:09.714139abusebot-3.cloudsearch.cf sshd[32496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.246.21 ...	2020-03-18 02:31:25
91.208.184.69	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-18 02:50:41
168.243.91.19	attackbotsspam	2020-03-17 19:21:46,583 fail2ban.actions: WARNING [ssh] Ban 168.243.91.19	2020-03-18 02:56:02
5.196.72.11	attack	Mar 17 18:14:36 vlre-nyc-1 sshd\[10566\]: Invalid user yamaguchi from 5.196.72.11 Mar 17 18:14:36 vlre-nyc-1 sshd\[10566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.72.11 Mar 17 18:14:38 vlre-nyc-1 sshd\[10566\]: Failed password for invalid user yamaguchi from 5.196.72.11 port 53040 ssh2 Mar 17 18:21:55 vlre-nyc-1 sshd\[10858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.72.11 user=root Mar 17 18:21:57 vlre-nyc-1 sshd\[10858\]: Failed password for root from 5.196.72.11 port 45346 ssh2 ...	2020-03-18 02:42:59
109.194.174.78	attack	Mar 17 15:22:05 firewall sshd[4834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.174.78 Mar 17 15:22:05 firewall sshd[4834]: Invalid user glassfish3 from 109.194.174.78 Mar 17 15:22:07 firewall sshd[4834]: Failed password for invalid user glassfish3 from 109.194.174.78 port 55417 ssh2 ...	2020-03-18 02:35:25
202.44.40.193	attackspambots	Mar 17 19:22:10 lnxweb62 sshd[9626]: Failed password for root from 202.44.40.193 port 55194 ssh2 Mar 17 19:22:10 lnxweb62 sshd[9626]: Failed password for root from 202.44.40.193 port 55194 ssh2	2020-03-18 02:33:00
200.201.187.98	attackbots	Mar 17 11:18:12 ws19vmsma01 sshd[227877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.201.187.98 Mar 17 11:18:14 ws19vmsma01 sshd[227877]: Failed password for invalid user john from 200.201.187.98 port 54997 ssh2 ...	2020-03-18 02:19:38
222.186.31.135	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root Failed password for root from 222.186.31.135 port 41672 ssh2 Failed password for root from 222.186.31.135 port 41672 ssh2 Failed password for root from 222.186.31.135 port 41672 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root	2020-03-18 02:46:55
112.192.197.67	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-18 02:38:29
128.199.128.215	attackspambots	Mar 17 14:20:21 NPSTNNYC01T sshd[17870]: Failed password for root from 128.199.128.215 port 47662 ssh2 Mar 17 14:22:13 NPSTNNYC01T sshd[17988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.128.215 Mar 17 14:22:15 NPSTNNYC01T sshd[17988]: Failed password for invalid user vnc from 128.199.128.215 port 38416 ssh2 ...	2020-03-18 02:24:57
115.236.66.242	attackbots	SSH Brute-Force Attack	2020-03-18 02:44:37
112.97.180.247	attackspambots	Automatic report - Port Scan Attack	2020-03-18 02:20:27

Recently Reported IPs

105.186.66.252	176.109.239.203	77.245.155.172	128.199.110.63
104.37.213.132	159.203.98.228	118.25.238.76	3.85.67.28
87.106.167.59	103.98.189.180	163.172.162.55	54.38.33.249
31.132.69.221	95.85.15.224	111.200.245.158	106.13.15.122
103.35.128.77	218.102.89.203	178.197.229.63	103.8.119.166