45.136.108.162

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 31 - port: 500 proto: TCP cat: Misc Attack	2019-12-24 05:10:38

Comments on same subnet:

IP	Type	Details	Datetime
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.162.			IN	A

;; AUTHORITY SECTION:
.			205	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122300 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 19:25:28 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 162.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 162.108.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
70.89.88.1	attack	Nov 13 08:28:20 jane sshd[1202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.89.88.1 Nov 13 08:28:22 jane sshd[1202]: Failed password for invalid user gissing from 70.89.88.1 port 15519 ssh2 ...	2019-11-13 16:11:04
79.137.84.144	attack	Nov 13 10:13:40 sauna sshd[174035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.84.144 Nov 13 10:13:42 sauna sshd[174035]: Failed password for invalid user capucine from 79.137.84.144 port 54276 ssh2 ...	2019-11-13 16:26:38
175.181.36.242	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/175.181.36.242/ TW - 1H : (10) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN9919 IP : 175.181.36.242 CIDR : 175.181.36.0/24 PREFIX COUNT : 829 UNIQUE IP COUNT : 674816 ATTACKS DETECTED ASN9919 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-13 07:28:34 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-13 15:54:15
185.176.27.170	attack	Nov 13 06:25:12 TCP Attack: SRC=185.176.27.170 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=247 PROTO=TCP SPT=52214 DPT=60222 WINDOW=1024 RES=0x00 SYN URGP=0	2019-11-13 16:08:57
142.93.44.83	attackspam	142.93.44.83 - - \[13/Nov/2019:08:46:06 +0100\] "POST /wp-login.php HTTP/1.0" 200 2406 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 142.93.44.83 - - \[13/Nov/2019:08:46:08 +0100\] "POST /wp-login.php HTTP/1.0" 200 2364 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 142.93.44.83 - - \[13/Nov/2019:08:46:11 +0100\] "POST /wp-login.php HTTP/1.0" 200 2374 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-13 15:52:11
49.88.112.71	attackbotsspam	Nov 13 08:18:18 game-panel sshd[18849]: Failed password for root from 49.88.112.71 port 18970 ssh2 Nov 13 08:20:32 game-panel sshd[18911]: Failed password for root from 49.88.112.71 port 50785 ssh2	2019-11-13 16:25:28
183.129.160.229	attackspam	183.129.160.229 was recorded 14 times by 12 hosts attempting to connect to the following ports: 57907,51827,29798,60620,65281,4462,25273,21040,20482,17,46614,10321,43909,30281. Incident counter (4h, 24h, all-time): 14, 98, 963	2019-11-13 15:56:20
79.133.56.144	attack	Nov 13 07:28:21 dedicated sshd[10832]: Invalid user admin from 79.133.56.144 port 40042	2019-11-13 16:02:34
113.172.163.153	attackspambots	Lines containing failures of 113.172.163.153 Oct 17 17:24:35 server-name sshd[4567]: User r.r from 113.172.163.153 not allowed because not listed in AllowUsers Oct 17 17:24:35 server-name sshd[4567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.163.153 user=r.r Oct 17 17:24:37 server-name sshd[4567]: Failed password for invalid user r.r from 113.172.163.153 port 39984 ssh2 Oct 17 17:24:39 server-name sshd[4567]: Connection closed by invalid user r.r 113.172.163.153 port 39984 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.172.163.153	2019-11-13 15:57:20
41.40.88.191	attackbotsspam	2019-11-13T07:11:38.818104tmaserv sshd\[23153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.40.88.191 2019-11-13T07:11:40.158990tmaserv sshd\[23153\]: Failed password for invalid user cochrane from 41.40.88.191 port 23102 ssh2 2019-11-13T08:19:33.464402tmaserv sshd\[26715\]: Invalid user guest from 41.40.88.191 port 52936 2019-11-13T08:19:33.467441tmaserv sshd\[26715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.40.88.191 2019-11-13T08:19:35.233654tmaserv sshd\[26715\]: Failed password for invalid user guest from 41.40.88.191 port 52936 ssh2 2019-11-13T08:26:56.583890tmaserv sshd\[27129\]: Invalid user ronsse from 41.40.88.191 port 14731 2019-11-13T08:26:56.586795tmaserv sshd\[27129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.40.88.191 ...	2019-11-13 16:05:18
45.40.203.242	attackspambots	$f2bV_matches	2019-11-13 16:11:33
145.239.76.165	attackbotsspam	145.239.76.165 - - \[13/Nov/2019:07:28:23 +0100\] "POST /wp-login.php HTTP/1.0" 200 4802 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.76.165 - - \[13/Nov/2019:07:28:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 4640 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.76.165 - - \[13/Nov/2019:07:28:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 4639 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-13 15:57:53
175.211.112.250	attack	2019-11-13T06:28:33.478827abusebot-5.cloudsearch.cf sshd\[22629\]: Invalid user robert from 175.211.112.250 port 50996	2019-11-13 15:56:42
116.118.52.101	attackbotsspam	Automatic report - Port Scan Attack	2019-11-13 16:18:56
173.212.218.126	attack	...	2019-11-13 16:27:33

Recently Reported IPs

217.249.130.106	156.213.229.209	82.200.30.162	156.198.89.55
45.162.62.94	156.199.51.115	61.161.191.58	116.103.232.158
77.45.157.140	156.207.201.0	197.40.99.245	156.195.75.198
197.40.134.36	208.113.153.233	49.147.119.33	115.79.51.177
41.37.101.38	197.43.203.16	162.241.149.130	156.212.117.216