45.136.108.38 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 1000 proto: TCP cat: Attempted Information Leak	2019-10-26 07:10:47

Comments on same subnet:

IP	Type	Details	Datetime
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22933
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.38.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102502 1800 900 604800 86400

;; Query time: 513 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 07:10:44 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 38.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 38.108.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.90.51.171	attackspam	Apr 3 13:00:12 ip-172-31-62-245 sshd\[1798\]: Failed password for root from 119.90.51.171 port 53360 ssh2\ Apr 3 13:02:49 ip-172-31-62-245 sshd\[1826\]: Invalid user kazutoyo from 119.90.51.171\ Apr 3 13:02:51 ip-172-31-62-245 sshd\[1826\]: Failed password for invalid user kazutoyo from 119.90.51.171 port 42224 ssh2\ Apr 3 13:05:31 ip-172-31-62-245 sshd\[1846\]: Failed password for root from 119.90.51.171 port 59320 ssh2\ Apr 3 13:08:10 ip-172-31-62-245 sshd\[1862\]: Failed password for root from 119.90.51.171 port 48177 ssh2\	2020-04-04 04:44:54
140.143.236.197	attackbots	Apr 3 22:09:08 ArkNodeAT sshd\[6361\]: Invalid user capture from 140.143.236.197 Apr 3 22:09:08 ArkNodeAT sshd\[6361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.236.197 Apr 3 22:09:10 ArkNodeAT sshd\[6361\]: Failed password for invalid user capture from 140.143.236.197 port 42210 ssh2	2020-04-04 04:36:54
113.193.243.35	attack	$f2bV_matches	2020-04-04 04:47:34
202.29.80.133	attackspam	Apr 3 22:15:42 srv01 sshd[30198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 user=root Apr 3 22:15:44 srv01 sshd[30198]: Failed password for root from 202.29.80.133 port 56301 ssh2 Apr 3 22:19:59 srv01 sshd[30576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 user=root Apr 3 22:20:00 srv01 sshd[30576]: Failed password for root from 202.29.80.133 port 32962 ssh2 Apr 3 22:24:10 srv01 sshd[30852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 user=root Apr 3 22:24:11 srv01 sshd[30852]: Failed password for root from 202.29.80.133 port 37851 ssh2 ...	2020-04-04 04:24:59
31.184.253.8	attackspam	Invalid user pcs from 31.184.253.8 port 52206	2020-04-04 04:17:40
109.106.139.218	attackspambots	2020-04-03T20:02:08.904938abusebot-2.cloudsearch.cf sshd[4154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.106.139.218 user=root 2020-04-03T20:02:10.812835abusebot-2.cloudsearch.cf sshd[4154]: Failed password for root from 109.106.139.218 port 40126 ssh2 2020-04-03T20:06:12.167251abusebot-2.cloudsearch.cf sshd[4449]: Invalid user admin from 109.106.139.218 port 51148 2020-04-03T20:06:12.173328abusebot-2.cloudsearch.cf sshd[4449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.106.139.218 2020-04-03T20:06:12.167251abusebot-2.cloudsearch.cf sshd[4449]: Invalid user admin from 109.106.139.218 port 51148 2020-04-03T20:06:13.243305abusebot-2.cloudsearch.cf sshd[4449]: Failed password for invalid user admin from 109.106.139.218 port 51148 ssh2 2020-04-03T20:09:55.879078abusebot-2.cloudsearch.cf sshd[4691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.1 ...	2020-04-04 04:50:59
109.92.171.168	attackspam	Invalid user git from 109.92.171.168 port 51055	2020-04-04 04:51:28
190.25.232.4	attackbotsspam	SSH invalid-user multiple login attempts	2020-04-04 04:28:43
218.90.121.134	attackspam	Invalid user saf from 218.90.121.134 port 54180	2020-04-04 04:22:57
118.25.126.40	attackspambots	Invalid user qp from 118.25.126.40 port 38888	2020-04-04 04:45:53
220.171.105.34	attack	SSH bruteforce (Triggered fail2ban)	2020-04-04 04:21:53
134.209.176.160	attackbots	04/03/2020-15:18:36.955873 134.209.176.160 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-04 04:39:19
155.94.145.26	attack	Invalid user bwi from 155.94.145.26 port 57692	2020-04-04 04:35:42
123.200.10.42	attackspambots	Apr 3 21:48:02 srv206 sshd[28773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.200.10.42 user=root Apr 3 21:48:04 srv206 sshd[28773]: Failed password for root from 123.200.10.42 port 57698 ssh2 Apr 3 22:00:12 srv206 sshd[28851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.200.10.42 user=root Apr 3 22:00:14 srv206 sshd[28851]: Failed password for root from 123.200.10.42 port 49553 ssh2 ...	2020-04-04 04:42:14
190.223.41.18	attackspambots	Apr 3 20:14:23 marvibiene sshd[52235]: Invalid user jinhaoxuan from 190.223.41.18 port 48624 Apr 3 20:14:23 marvibiene sshd[52235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.223.41.18 Apr 3 20:14:23 marvibiene sshd[52235]: Invalid user jinhaoxuan from 190.223.41.18 port 48624 Apr 3 20:14:24 marvibiene sshd[52235]: Failed password for invalid user jinhaoxuan from 190.223.41.18 port 48624 ssh2 ...	2020-04-04 04:27:37

Recently Reported IPs

90.150.199.106	79.143.28.113	100.103.186.203	202.123.174.149
58.229.123.184	222.223.115.9	221.130.116.254	199.188.200.86
185.156.73.31	175.6.1.218	162.125.35.135	112.175.124.118
104.219.250.230	103.76.56.19	58.229.123.142	231.136.63.132
181.232.147.72	238.205.212.180	144.168.53.165	46.64.21.220