45.136.108.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	RDP Bruteforce	2020-01-01 00:21:19
attack	3389BruteforceFW22	2019-11-25 00:28:10
attack	3389BruteforceStormFW22	2019-11-03 03:49:57

Comments on same subnet:

IP	Type	Details	Datetime
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.13.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110201 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 03:49:54 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 13.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.108.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.1.225.239	attackbotsspam	Unauthorised access (Feb 18) SRC=61.1.225.239 LEN=52 TTL=109 ID=4990 DF TCP DPT=445 WINDOW=8192 SYN	2020-02-18 16:09:51
5.196.75.47	attackbots	$f2bV_matches	2020-02-18 16:29:40
49.49.56.50	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 16:22:37
104.131.203.173	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-02-18 16:23:24
61.177.172.158	attack	2020-02-18T08:18:48.004077shield sshd\[11790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root 2020-02-18T08:18:50.097552shield sshd\[11790\]: Failed password for root from 61.177.172.158 port 59333 ssh2 2020-02-18T08:18:51.849966shield sshd\[11790\]: Failed password for root from 61.177.172.158 port 59333 ssh2 2020-02-18T08:18:53.878991shield sshd\[11790\]: Failed password for root from 61.177.172.158 port 59333 ssh2 2020-02-18T08:20:32.304181shield sshd\[12111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root	2020-02-18 16:31:58
218.92.0.168	attack	Feb 18 09:03:59 SilenceServices sshd[12284]: Failed password for root from 218.92.0.168 port 22472 ssh2 Feb 18 09:04:02 SilenceServices sshd[12284]: Failed password for root from 218.92.0.168 port 22472 ssh2 Feb 18 09:04:05 SilenceServices sshd[12284]: Failed password for root from 218.92.0.168 port 22472 ssh2 Feb 18 09:04:09 SilenceServices sshd[12284]: Failed password for root from 218.92.0.168 port 22472 ssh2	2020-02-18 16:14:55
49.50.202.202	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 16:10:42
222.186.175.140	attackspam	Feb 18 09:40:40 eventyay sshd[19021]: Failed password for root from 222.186.175.140 port 31976 ssh2 Feb 18 09:40:53 eventyay sshd[19021]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 31976 ssh2 [preauth] Feb 18 09:40:58 eventyay sshd[19024]: Failed password for root from 222.186.175.140 port 46192 ssh2 ...	2020-02-18 16:43:21
43.224.39.158	attackbotsspam	Feb 18 05:54:48 grey postfix/smtpd\[28964\]: NOQUEUE: reject: RCPT from unknown\[43.224.39.158\]: 554 5.7.1 Service unavailable\; Client host \[43.224.39.158\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=43.224.39.158\; from=\ to=\ proto=SMTP helo=\ ...	2020-02-18 16:06:43
181.111.181.50	attack	Feb 18 09:02:22 serwer sshd\[3912\]: Invalid user training from 181.111.181.50 port 40600 Feb 18 09:02:22 serwer sshd\[3912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.111.181.50 Feb 18 09:02:24 serwer sshd\[3912\]: Failed password for invalid user training from 181.111.181.50 port 40600 ssh2 ...	2020-02-18 16:48:27
41.170.84.122	attackbotsspam	Feb 17 21:13:12 auw2 sshd\[10587\]: Invalid user washington from 41.170.84.122 Feb 17 21:13:12 auw2 sshd\[10587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.170.84.122 Feb 17 21:13:15 auw2 sshd\[10587\]: Failed password for invalid user washington from 41.170.84.122 port 58934 ssh2 Feb 17 21:16:27 auw2 sshd\[10929\]: Invalid user Test from 41.170.84.122 Feb 17 21:16:27 auw2 sshd\[10929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.170.84.122	2020-02-18 16:07:18
103.247.217.229	attackbots	Unauthorised access (Feb 18) SRC=103.247.217.229 LEN=52 TTL=112 ID=17178 DF TCP DPT=445 WINDOW=8192 SYN	2020-02-18 16:21:49
64.225.77.105	attackspambots	2020-02-18T05:54:09.795986vfs-server-01 sshd\[15195\]: Invalid user ubnt from 64.225.77.105 port 34504 2020-02-18T05:54:09.986411vfs-server-01 sshd\[15197\]: Invalid user admin from 64.225.77.105 port 34714 2020-02-18T05:54:10.359372vfs-server-01 sshd\[15201\]: Invalid user 1234 from 64.225.77.105 port 34974	2020-02-18 16:32:18
193.112.108.135	attack	Feb 18 04:54:37 *** sshd[11639]: Invalid user dvs from 193.112.108.135	2020-02-18 16:10:07
49.36.54.136	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 16:48:07

Recently Reported IPs

37.107.168.63	191.6.192.202	4.74.28.209	97.108.132.150
214.216.151.85	248.86.77.89	182.132.78.53	191.174.106.255
185.136.5.71	90.232.34.55	10.124.198.47	83.188.164.200
21.26.193.184	108.4.118.198	194.31.173.58	61.145.143.208
69.4.183.165	42.9.238.153	185.80.54.220	13.176.200.24