45.136.108.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	465. On May 17 2020 experienced a Brute Force SSH login attempt -> 125 unique times by 45.136.108.85.	2020-05-20 21:03:10
attackspambots	sshd jail - ssh hack attempt	2020-05-14 08:53:19
attackbotsspam	May 07 10:19:10 host sshd[16047]: Invalid user 0 from 45.136.108.85 port 49712	2020-05-12 16:32:44
attackspam	May 7 00:10:32 sip sshd[142839]: Invalid user 0 from 45.136.108.85 port 20558 May 7 00:10:35 sip sshd[142839]: Failed password for invalid user 0 from 45.136.108.85 port 20558 ssh2 May 7 00:10:37 sip sshd[142839]: Disconnecting invalid user 0 45.136.108.85 port 20558: Change of username or service not allowed: (0,ssh-connection) -> (22,ssh-connection) [preauth] ...	2020-05-07 06:56:56
attack	May 4 10:46:37 nextcloud sshd\[15017\]: Invalid user 0 from 45.136.108.85 May 4 10:46:37 nextcloud sshd\[15017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 May 4 10:46:39 nextcloud sshd\[15017\]: Failed password for invalid user 0 from 45.136.108.85 port 11708 ssh2	2020-05-04 17:24:42
attackbots	2020-05-01 13:22:36 server sshd[5136]: Failed password for invalid user 0 from 45.136.108.85 port 21008 ssh2	2020-05-03 03:50:10
attack	Invalid user 0 from 45.136.108.85 port 45007	2020-04-30 06:28:49
attackbots	Apr 28 00:15:58 ubuntu sshd[14083]: Invalid user 0 from 45.136.108.85 port 28288 Apr 28 00:16:01 ubuntu sshd[14083]: Failed password for invalid user 0 from 45.136.108.85 port 28288 ssh2 Apr 28 00:16:03 ubuntu sshd[14083]: Disconnecting invalid user 0 45.136.108.85 port 28288: Change of username or service not allowed: (0,ssh-connection) -> (22,ssh-connection) [preauth] ...	2020-04-28 08:16:59
attackspambots	Apr 27 08:31:04 v22018053744266470 sshd[10038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Apr 27 08:31:06 v22018053744266470 sshd[10038]: Failed password for invalid user 0 from 45.136.108.85 port 24282 ssh2 Apr 27 08:31:09 v22018053744266470 sshd[10045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 ...	2020-04-27 14:52:58
attackspambots	Apr 19 22:28:22 : SSH login attempts with invalid user	2020-04-24 06:13:59
attackspam	...	2020-04-20 07:56:10
attack	$f2bV_matches	2020-04-16 19:28:53
attackspambots	Fail2Ban	2020-04-16 00:42:31
attackspam	...	2020-04-14 16:55:56
attack	Apr 14 00:29:16 legacy sshd[840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Apr 14 00:29:18 legacy sshd[840]: Failed password for invalid user 0 from 45.136.108.85 port 41470 ssh2 Apr 14 00:29:23 legacy sshd[851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 ...	2020-04-14 07:05:06
attackspambots	April 12 2020, 08:40:00 [sshd] - Banned from the Cipher Host hosting platform by Fail2ban.	2020-04-12 19:16:56
attackspam	Fail2Ban Ban Triggered (2)	2020-04-09 00:06:44
attackspam	April 05 2020, 14:25:50 [sshd] - Banned from the Cipher Host hosting platform by Fail2ban.	2020-04-05 23:32:05
attackbotsspam	Apr 5 11:34:14 karger sshd[27230]: Connection from 45.136.108.85 port 20529 on 188.68.60.164 port 22 Apr 5 11:34:14 karger sshd[27230]: Invalid user 0 from 45.136.108.85 port 20529 Apr 5 11:34:16 karger sshd[27232]: Connection from 45.136.108.85 port 2658 on 188.68.60.164 port 22 Apr 5 11:34:20 karger sshd[27232]: Invalid user 22 from 45.136.108.85 port 2658 Apr 5 11:34:23 karger sshd[27234]: Connection from 45.136.108.85 port 51925 on 188.68.60.164 port 22 Apr 5 11:34:25 karger sshd[27234]: Invalid user 101 from 45.136.108.85 port 51925 Apr 5 11:34:26 karger sshd[27236]: Connection from 45.136.108.85 port 35992 on 188.68.60.164 port 22 Apr 5 11:34:28 karger sshd[27236]: Invalid user 123 from 45.136.108.85 port 35992 Apr 5 11:34:29 karger sshd[27242]: Connection from 45.136.108.85 port 1218 on 188.68.60.164 port 22 Apr 5 11:34:31 karger sshd[27242]: Invalid user 1111 from 45.136.108.85 port 1218 ...	2020-04-05 17:48:29
attackspam	Apr 2 20:38:13 www sshd\[9515\]: Invalid user 0 from 45.136.108.85 Apr 2 20:38:20 www sshd\[9517\]: Invalid user 22 from 45.136.108.85 ...	2020-04-03 08:55:32
attackspambots	01.04.2020 18:40:27 SSH access blocked by firewall	2020-04-02 03:37:50
attack	Apr 1 04:04:29 server sshd\[31916\]: Invalid user 0 from 45.136.108.85 Apr 1 04:04:29 server sshd\[31916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Apr 1 04:04:30 server sshd\[31916\]: Failed password for invalid user 0 from 45.136.108.85 port 32571 ssh2 Apr 1 04:04:31 server sshd\[31917\]: Failed password for invalid user 0 from 45.136.108.85 port 42421 ssh2 Apr 1 12:03:57 server sshd\[19664\]: Invalid user 0 from 45.136.108.85 Apr 1 12:03:57 server sshd\[19664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 ...	2020-04-01 19:40:51
attackbots	Mar 28 02:38:12 yolandtech-ams3 sshd\[2619\]: Invalid user 0 from 45.136.108.85 Mar 28 02:38:14 yolandtech-ams3 sshd\[2621\]: Invalid user 22 from 45.136.108.85 Mar 28 02:38:15 yolandtech-ams3 sshd\[2623\]: Invalid user 101 from 45.136.108.85 Mar 28 02:38:19 yolandtech-ams3 sshd\[2625\]: Invalid user 123 from 45.136.108.85 Mar 28 02:38:24 yolandtech-ams3 sshd\[2627\]: Invalid user 1111 from 45.136.108.85 ...	2020-03-28 14:45:32
attackbots	$f2bV_matches	2020-03-23 05:20:41
attackbots	20/3/22@02:12:13: FAIL: Alarm-SSH address from=45.136.108.85 ...	2020-03-22 14:44:34
attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-03-20 14:23:02
attackbots	Brute-force attempt banned	2020-03-14 08:19:54
attackbotsspam	SSH_scan	2020-03-06 13:44:14
attackspambots	Mar 5 11:41:17 vps647732 sshd[19388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Mar 5 11:41:19 vps647732 sshd[19388]: Failed password for invalid user 0 from 45.136.108.85 port 8600 ssh2 ...	2020-03-05 19:05:33
attackbotsspam	$f2bV_matches	2020-03-05 00:46:41

Comments on same subnet:

IP	Type	Details	Datetime
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3330
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.85.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111201 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 13 04:42:51 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 85.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.108.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.47.192.71	attackspam	unauthorized connection attempt	2020-01-12 14:27:39
186.216.127.86	attackbotsspam	unauthorized connection attempt	2020-01-12 14:26:14
157.230.156.51	attack	2020-01-12T06:52:43.697727shield sshd\[28909\]: Invalid user kiran from 157.230.156.51 port 51874 2020-01-12T06:52:43.702135shield sshd\[28909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.156.51 2020-01-12T06:52:45.905522shield sshd\[28909\]: Failed password for invalid user kiran from 157.230.156.51 port 51874 ssh2 2020-01-12T06:55:32.768128shield sshd\[30326\]: Invalid user sz from 157.230.156.51 port 49862 2020-01-12T06:55:32.772757shield sshd\[30326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.156.51	2020-01-12 14:59:20
112.165.231.52	attackspambots	Unauthorized connection attempt detected from IP address 112.165.231.52 to port 23 [J]	2020-01-12 14:18:30
51.91.110.249	attackspam	Unauthorized connection attempt detected from IP address 51.91.110.249 to port 2220 [J]	2020-01-12 14:12:06
175.144.244.200	attack	unauthorized connection attempt	2020-01-12 14:28:28
78.189.87.38	attackbots	Unauthorized connection attempt detected from IP address 78.189.87.38 to port 23 [J]	2020-01-12 15:02:55
222.186.180.147	attack	2020-01-12T06:46:17.754827abusebot-3.cloudsearch.cf sshd[26783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-01-12T06:46:19.969705abusebot-3.cloudsearch.cf sshd[26783]: Failed password for root from 222.186.180.147 port 39048 ssh2 2020-01-12T06:46:22.849947abusebot-3.cloudsearch.cf sshd[26783]: Failed password for root from 222.186.180.147 port 39048 ssh2 2020-01-12T06:46:17.754827abusebot-3.cloudsearch.cf sshd[26783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-01-12T06:46:19.969705abusebot-3.cloudsearch.cf sshd[26783]: Failed password for root from 222.186.180.147 port 39048 ssh2 2020-01-12T06:46:22.849947abusebot-3.cloudsearch.cf sshd[26783]: Failed password for root from 222.186.180.147 port 39048 ssh2 2020-01-12T06:46:17.754827abusebot-3.cloudsearch.cf sshd[26783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-01-12 14:51:43
116.31.105.198	attackbotsspam	Unauthorized connection attempt detected from IP address 116.31.105.198 to port 2220 [J]	2020-01-12 15:03:51
177.40.185.35	attackspambots	1578804990 - 01/12/2020 05:56:30 Host: 177.40.185.35/177.40.185.35 Port: 445 TCP Blocked	2020-01-12 15:02:35
123.233.246.52	attackspambots	Jan 11 23:57:15 web1 postfix/smtpd[11030]: warning: unknown[123.233.246.52]: SASL LOGIN authentication failed: authentication failure ...	2020-01-12 14:14:00
80.227.12.38	attack	Sep 9 03:30:57 vtv3 sshd[15836]: Invalid user mtucker from 80.227.12.38 port 58684 Sep 9 03:30:57 vtv3 sshd[15836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 Sep 9 03:30:59 vtv3 sshd[15836]: Failed password for invalid user mtucker from 80.227.12.38 port 58684 ssh2 Sep 9 03:35:39 vtv3 sshd[18098]: Invalid user times from 80.227.12.38 port 49182 Sep 9 03:35:39 vtv3 sshd[18098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 Sep 9 03:49:23 vtv3 sshd[24506]: Invalid user kbm from 80.227.12.38 port 49108 Sep 9 03:49:23 vtv3 sshd[24506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 Sep 9 03:49:24 vtv3 sshd[24506]: Failed password for invalid user kbm from 80.227.12.38 port 49108 ssh2 Sep 9 03:54:11 vtv3 sshd[27070]: Invalid user ivete from 80.227.12.38 port 39594 Sep 9 03:54:11 vtv3 sshd[27070]: pam_unix(sshd:auth): authentication failure	2020-01-12 14:54:08
61.228.113.10	attackbotsspam	unauthorized connection attempt	2020-01-12 14:43:30
166.62.80.166	attack	Jan 12 06:23:43 vmd17057 sshd\[32661\]: Invalid user admin from 166.62.80.166 port 56840 Jan 12 06:23:43 vmd17057 sshd\[32661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.62.80.166 Jan 12 06:23:46 vmd17057 sshd\[32661\]: Failed password for invalid user admin from 166.62.80.166 port 56840 ssh2 ...	2020-01-12 14:53:55
46.200.71.82	attackspambots	unauthorized connection attempt	2020-01-12 14:44:36

Recently Reported IPs

214.111.185.138	177.66.70.93	111.234.196.12	127.75.203.186
188.17.166.121	233.185.96.129	163.171.37.78	185.37.115.83
166.78.41.53	238.85.98.29	205.16.16.20	56.144.141.162
163.212.3.66	183.229.39.139	34.89.192.105	44.211.114.218
205.230.105.171	42.60.109.198	100.33.35.135	115.128.15.130