Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attackbots
Dec 10 00:29:30 mc1 kernel: \[93013.058847\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.109.102 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=51432 PROTO=TCP SPT=52898 DPT=9014 WINDOW=1024 RES=0x00 SYN URGP=0 
Dec 10 00:30:55 mc1 kernel: \[93098.186966\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.109.102 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=23206 PROTO=TCP SPT=52898 DPT=7036 WINDOW=1024 RES=0x00 SYN URGP=0 
Dec 10 00:33:18 mc1 kernel: \[93241.203234\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.109.102 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=919 PROTO=TCP SPT=52898 DPT=5086 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-12-10 08:08:32
attack
Nov 22 17:04:22   TCP Attack: SRC=45.136.109.102 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=240  PROTO=TCP SPT=52924 DPT=4425 WINDOW=1024 RES=0x00 SYN URGP=0
2019-11-23 03:02:27
attackbotsspam
11/14/2019-13:48:34.298750 45.136.109.102 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-11-15 03:19:27
attackspam
11/14/2019-03:58:24.279813 45.136.109.102 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-11-14 17:15:38
attackbots
11/13/2019-03:38:10.484428 45.136.109.102 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-11-13 18:11:13
attackspam
Oct 29 13:47:03   TCP Attack: SRC=45.136.109.102 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=240  PROTO=TCP SPT=43418 DPT=3335 WINDOW=1024 RES=0x00 SYN URGP=0
2019-10-29 23:56:15
Comments on same subnet:
IP Type Details Datetime
45.136.109.219 attackspambots
ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60
2020-08-19 23:39:13
45.136.109.219 attackspam
slow and persistent scanner
2020-08-17 20:34:11
45.136.109.251 attackbotsspam
Port scanning [3 denied]
2020-08-14 14:18:15
45.136.109.219 attackbots
 TCP (SYN) 45.136.109.219:50230 -> port 53, len 44
2020-08-07 08:11:38
45.136.109.219 attackbotsspam
[Tue Aug 04 17:47:28 2020] - DDoS Attack From IP: 45.136.109.219 Port: 41096
2020-08-06 18:31:50
45.136.109.219 attack
 TCP (SYN) 45.136.109.219:43869 -> port 53, len 44
2020-08-05 23:34:34
45.136.109.158 attack
Unauthorized connection attempt detected from IP address 45.136.109.158 to port 3389
2020-07-22 15:39:59
45.136.109.87 attack
BruteForce RDP attempts from 45.136.109.175
2020-07-17 14:21:12
45.136.109.158 attack
SmallBizIT.US 2 packets to tcp(3389,3391)
2020-07-07 12:28:14
45.136.109.158 attackbots
Unauthorized connection attempt detected from IP address 45.136.109.158 to port 4489 [T]
2020-07-05 22:47:55
45.136.109.175 attackspambots
Icarus honeypot on github
2020-07-02 08:25:18
45.136.109.251 attackbots
Multiport scan : 15 ports scanned 2888 3381 3382 3402 3420 3501 3502 4003 4018 5909 7926 8093 9000 9261 9833
2020-06-21 07:47:48
45.136.109.219 attackbots
ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 6389 proto: TCP cat: Misc Attack
2020-06-06 08:47:05
45.136.109.222 attackspam
Mar 22 03:57:09 src: 45.136.109.222 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100
2020-03-22 12:01:46
45.136.109.222 attackbotsspam
Mar 18 22:14:16 src: 45.136.109.222 signature match: "BACKDOOR Subseven connection attempt" (sid: 100207) tcp port: 27374
2020-03-19 06:22:33
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.109.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51662
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.109.102.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102900 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 23:56:08 CST 2019
;; MSG SIZE  rcvd: 118
Host info
Host 102.109.136.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.109.136.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
193.9.114.139 attack
Jul 16 10:23:02 MK-Soft-Root2 sshd\[4928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.9.114.139  user=root
Jul 16 10:23:04 MK-Soft-Root2 sshd\[4928\]: Failed password for root from 193.9.114.139 port 35120 ssh2
Jul 16 10:23:06 MK-Soft-Root2 sshd\[4928\]: Failed password for root from 193.9.114.139 port 35120 ssh2
...
2019-07-16 17:12:02
112.85.42.194 attackbotsspam
16.07.2019 04:26:08 SSH access blocked by firewall
2019-07-16 17:18:35
37.6.231.131 attackbots
Automatic report - Port Scan Attack
2019-07-16 17:44:57
209.200.15.168 attack
[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(07161101)
2019-07-16 17:21:42
191.100.24.188 attack
Jul 16 06:57:58 s64-1 sshd[12826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.100.24.188
Jul 16 06:58:01 s64-1 sshd[12826]: Failed password for invalid user mich from 191.100.24.188 port 34749 ssh2
Jul 16 07:07:13 s64-1 sshd[13019]: Failed password for backup from 191.100.24.188 port 53365 ssh2
...
2019-07-16 17:31:52
183.131.82.99 attack
Jul 16 05:05:47 plusreed sshd[8066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99  user=root
Jul 16 05:05:48 plusreed sshd[8066]: Failed password for root from 183.131.82.99 port 48184 ssh2
...
2019-07-16 17:08:01
148.72.208.74 attackbots
2019-07-16T09:15:38.339488abusebot-6.cloudsearch.cf sshd\[1955\]: Invalid user mysql from 148.72.208.74 port 58188
2019-07-16 17:23:21
83.239.185.50 attack
Brute force attempt
2019-07-16 17:42:33
114.220.30.146 attack
Telnet Server BruteForce Attack
2019-07-16 17:53:03
125.212.220.195 attackspambots
/gallery.php
2019-07-16 17:46:37
197.54.168.61 attackbots
Automatic report - Port Scan Attack
2019-07-16 17:22:26
173.246.50.123 attackbots
Unauthorised access (Jul 16) SRC=173.246.50.123 LEN=44 TTL=239 ID=64190 TCP DPT=445 WINDOW=1024 SYN
2019-07-16 17:34:48
88.121.72.24 attackbotsspam
Jul 16 11:07:41 OPSO sshd\[21079\]: Invalid user jenkins from 88.121.72.24 port 33998
Jul 16 11:07:41 OPSO sshd\[21079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.121.72.24
Jul 16 11:07:43 OPSO sshd\[21079\]: Failed password for invalid user jenkins from 88.121.72.24 port 33998 ssh2
Jul 16 11:14:44 OPSO sshd\[22009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.121.72.24  user=root
Jul 16 11:14:46 OPSO sshd\[22009\]: Failed password for root from 88.121.72.24 port 33286 ssh2
2019-07-16 17:20:24
154.121.19.37 attack
MagicSpam Rule: valid_helo_domain; Spammer IP: 154.121.19.37
2019-07-16 17:00:52
37.204.105.82 attack
Jul 16 01:29:39 ip-172-31-62-245 sshd\[27195\]: Failed password for root from 37.204.105.82 port 37486 ssh2\
Jul 16 01:29:57 ip-172-31-62-245 sshd\[27199\]: Failed password for root from 37.204.105.82 port 37505 ssh2\
Jul 16 01:30:06 ip-172-31-62-245 sshd\[27199\]: Failed password for root from 37.204.105.82 port 37505 ssh2\
Jul 16 01:30:18 ip-172-31-62-245 sshd\[27204\]: Failed password for root from 37.204.105.82 port 37523 ssh2\
Jul 16 01:30:19 ip-172-31-62-245 sshd\[27204\]: Failed password for root from 37.204.105.82 port 37523 ssh2\
2019-07-16 17:27:39

Recently Reported IPs

100.155.199.80 64.68.81.233 242.17.212.68 137.201.82.161
93.144.108.174 176.161.217.128 104.130.219.44 88.214.26.20
90.57.47.48 227.59.87.174 32.182.175.163 41.122.186.232
209.132.222.149 228.114.106.175 50.114.52.82 79.209.124.139
134.253.31.223 250.137.157.196 6.28.63.83 140.80.15.127