45.136.109.138

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	massive Port Scans	2019-11-07 13:54:26
attackspam	Port scan on 5 port(s): 6227 6425 6517 6774 6790	2019-09-21 07:25:44

Comments on same subnet:

IP	Type	Details	Datetime
45.136.109.219	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60	2020-08-19 23:39:13
45.136.109.219	attackspam	slow and persistent scanner	2020-08-17 20:34:11
45.136.109.251	attackbotsspam	Port scanning [3 denied]	2020-08-14 14:18:15
45.136.109.219	attackbots	TCP (SYN) 45.136.109.219:50230 -> port 53, len 44	2020-08-07 08:11:38
45.136.109.219	attackbotsspam	[Tue Aug 04 17:47:28 2020] - DDoS Attack From IP: 45.136.109.219 Port: 41096	2020-08-06 18:31:50
45.136.109.219	attack	TCP (SYN) 45.136.109.219:43869 -> port 53, len 44	2020-08-05 23:34:34
45.136.109.158	attack	Unauthorized connection attempt detected from IP address 45.136.109.158 to port 3389	2020-07-22 15:39:59
45.136.109.87	attack	BruteForce RDP attempts from 45.136.109.175	2020-07-17 14:21:12
45.136.109.158	attack	SmallBizIT.US 2 packets to tcp(3389,3391)	2020-07-07 12:28:14
45.136.109.158	attackbots	Unauthorized connection attempt detected from IP address 45.136.109.158 to port 4489 [T]	2020-07-05 22:47:55
45.136.109.175	attackspambots	Icarus honeypot on github	2020-07-02 08:25:18
45.136.109.251	attackbots	Multiport scan : 15 ports scanned 2888 3381 3382 3402 3420 3501 3502 4003 4018 5909 7926 8093 9000 9261 9833	2020-06-21 07:47:48
45.136.109.219	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 6389 proto: TCP cat: Misc Attack	2020-06-06 08:47:05
45.136.109.222	attackspam	Mar 22 03:57:09 src: 45.136.109.222 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100	2020-03-22 12:01:46
45.136.109.222	attackbotsspam	Mar 18 22:14:16 src: 45.136.109.222 signature match: "BACKDOOR Subseven connection attempt" (sid: 100207) tcp port: 27374	2020-03-19 06:22:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.109.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48959
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.109.138.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092002 1800 900 604800 86400

;; Query time: 845 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 07:25:41 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 138.109.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.109.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.88.232.196	attackspam	Automatic report - Port Scan Attack	2019-12-27 13:47:29
222.186.180.9	attack	Dec 27 05:25:37 hcbbdb sshd\[30474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root Dec 27 05:25:39 hcbbdb sshd\[30474\]: Failed password for root from 222.186.180.9 port 33436 ssh2 Dec 27 05:25:42 hcbbdb sshd\[30474\]: Failed password for root from 222.186.180.9 port 33436 ssh2 Dec 27 05:25:46 hcbbdb sshd\[30474\]: Failed password for root from 222.186.180.9 port 33436 ssh2 Dec 27 05:25:56 hcbbdb sshd\[30518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root	2019-12-27 13:28:17
119.28.73.77	attackbotsspam	Invalid user ebenezer from 119.28.73.77 port 44434	2019-12-27 13:50:10
182.61.27.149	attackbots	Dec 27 05:56:52 ArkNodeAT sshd\[24471\]: Invalid user roth from 182.61.27.149 Dec 27 05:56:52 ArkNodeAT sshd\[24471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.27.149 Dec 27 05:56:53 ArkNodeAT sshd\[24471\]: Failed password for invalid user roth from 182.61.27.149 port 46246 ssh2	2019-12-27 13:32:09
125.64.94.221	attack	Unauthorized connection attempt detected from IP address 125.64.94.221 to port 1962	2019-12-27 14:02:55
120.52.120.166	attackbots	SSH Brute-Force reported by Fail2Ban	2019-12-27 13:54:14
222.186.175.212	attack	Dec 26 19:33:19 php1 sshd\[16455\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Dec 26 19:33:22 php1 sshd\[16455\]: Failed password for root from 222.186.175.212 port 3806 ssh2 Dec 26 19:33:25 php1 sshd\[16455\]: Failed password for root from 222.186.175.212 port 3806 ssh2 Dec 26 19:33:28 php1 sshd\[16455\]: Failed password for root from 222.186.175.212 port 3806 ssh2 Dec 26 19:33:39 php1 sshd\[16470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root	2019-12-27 13:38:20
149.129.254.65	attackbots	Dec 26 23:12:54 newdogma sshd[16881]: Invalid user wwwrun from 149.129.254.65 port 42248 Dec 26 23:12:54 newdogma sshd[16881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.254.65 Dec 26 23:12:56 newdogma sshd[16881]: Failed password for invalid user wwwrun from 149.129.254.65 port 42248 ssh2 Dec 26 23:12:56 newdogma sshd[16881]: Received disconnect from 149.129.254.65 port 42248:11: Bye Bye [preauth] Dec 26 23:12:56 newdogma sshd[16881]: Disconnected from 149.129.254.65 port 42248 [preauth] Dec 26 23:20:22 newdogma sshd[17038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.254.65 user=mail Dec 26 23:20:24 newdogma sshd[17038]: Failed password for mail from 149.129.254.65 port 59042 ssh2 Dec 26 23:20:25 newdogma sshd[17038]: Received disconnect from 149.129.254.65 port 59042:11: Bye Bye [preauth] Dec 26 23:20:25 newdogma sshd[17038]: Disconnected from 149.129.254.65 port........ -------------------------------	2019-12-27 13:36:43
191.36.191.247	attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-27 13:30:19
61.177.172.158	attackspambots	2019-12-27T05:40:11.884985shield sshd\[12198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root 2019-12-27T05:40:13.526997shield sshd\[12198\]: Failed password for root from 61.177.172.158 port 11804 ssh2 2019-12-27T05:40:15.695972shield sshd\[12198\]: Failed password for root from 61.177.172.158 port 11804 ssh2 2019-12-27T05:40:18.471146shield sshd\[12198\]: Failed password for root from 61.177.172.158 port 11804 ssh2 2019-12-27T05:46:51.285300shield sshd\[13872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root	2019-12-27 13:47:02
191.82.107.83	attackbotsspam	ssh failed login	2019-12-27 13:41:50
165.22.58.247	attackbotsspam	Dec 27 05:09:47 zeus sshd[29612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.58.247 Dec 27 05:09:48 zeus sshd[29612]: Failed password for invalid user junaid from 165.22.58.247 port 44504 ssh2 Dec 27 05:12:28 zeus sshd[29702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.58.247 Dec 27 05:12:31 zeus sshd[29702]: Failed password for invalid user damrongs from 165.22.58.247 port 41298 ssh2	2019-12-27 13:24:18
49.213.194.237	attackspambots	Fail2Ban Ban Triggered	2019-12-27 13:41:22
112.85.42.172	attack	SSH Bruteforce attempt	2019-12-27 13:59:18
82.64.129.178	attackspam	Dec 27 05:44:31 pornomens sshd\[15361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.129.178 user=root Dec 27 05:44:32 pornomens sshd\[15361\]: Failed password for root from 82.64.129.178 port 37474 ssh2 Dec 27 05:56:48 pornomens sshd\[15553\]: Invalid user asterisk from 82.64.129.178 port 55960 Dec 27 05:56:48 pornomens sshd\[15553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.129.178 ...	2019-12-27 13:36:15

Recently Reported IPs

152.208.53.76	139.212.219.5	118.187.5.163	94.50.161.24
141.47.14.135	89.101.42.159	31.4.245.150	95.9.158.94
94.100.7.215	45.136.109.136	217.15.146.197	49.231.15.109
197.51.226.82	165.22.10.160	191.32.226.232	190.171.216.114
189.57.26.18	190.48.118.163	189.176.94.18	188.128.73.58