45.136.109.138

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	massive Port Scans	2019-11-07 13:54:26
attackspam	Port scan on 5 port(s): 6227 6425 6517 6774 6790	2019-09-21 07:25:44

Comments on same subnet:

IP	Type	Details	Datetime
45.136.109.219	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60	2020-08-19 23:39:13
45.136.109.219	attackspam	slow and persistent scanner	2020-08-17 20:34:11
45.136.109.251	attackbotsspam	Port scanning [3 denied]	2020-08-14 14:18:15
45.136.109.219	attackbots	TCP (SYN) 45.136.109.219:50230 -> port 53, len 44	2020-08-07 08:11:38
45.136.109.219	attackbotsspam	[Tue Aug 04 17:47:28 2020] - DDoS Attack From IP: 45.136.109.219 Port: 41096	2020-08-06 18:31:50
45.136.109.219	attack	TCP (SYN) 45.136.109.219:43869 -> port 53, len 44	2020-08-05 23:34:34
45.136.109.158	attack	Unauthorized connection attempt detected from IP address 45.136.109.158 to port 3389	2020-07-22 15:39:59
45.136.109.87	attack	BruteForce RDP attempts from 45.136.109.175	2020-07-17 14:21:12
45.136.109.158	attack	SmallBizIT.US 2 packets to tcp(3389,3391)	2020-07-07 12:28:14
45.136.109.158	attackbots	Unauthorized connection attempt detected from IP address 45.136.109.158 to port 4489 [T]	2020-07-05 22:47:55
45.136.109.175	attackspambots	Icarus honeypot on github	2020-07-02 08:25:18
45.136.109.251	attackbots	Multiport scan : 15 ports scanned 2888 3381 3382 3402 3420 3501 3502 4003 4018 5909 7926 8093 9000 9261 9833	2020-06-21 07:47:48
45.136.109.219	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 6389 proto: TCP cat: Misc Attack	2020-06-06 08:47:05
45.136.109.222	attackspam	Mar 22 03:57:09 src: 45.136.109.222 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100	2020-03-22 12:01:46
45.136.109.222	attackbotsspam	Mar 18 22:14:16 src: 45.136.109.222 signature match: "BACKDOOR Subseven connection attempt" (sid: 100207) tcp port: 27374	2020-03-19 06:22:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.109.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48959
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.109.138.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092002 1800 900 604800 86400

;; Query time: 845 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 07:25:41 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 138.109.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.109.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.92.149.60	attackbotsspam	Oct 5 13:37:16 host sshd\[23247\]: Invalid user Parola12\# from 81.92.149.60 port 35450 Oct 5 13:37:16 host sshd\[23247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.92.149.60 ...	2019-10-05 22:37:45
176.31.125.165	attackspambots	Oct 5 04:26:59 wbs sshd\[31697\]: Invalid user 123Spring from 176.31.125.165 Oct 5 04:26:59 wbs sshd\[31697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns398360.ip-176-31-125.eu Oct 5 04:27:01 wbs sshd\[31697\]: Failed password for invalid user 123Spring from 176.31.125.165 port 50632 ssh2 Oct 5 04:30:38 wbs sshd\[32023\]: Invalid user Hotel123 from 176.31.125.165 Oct 5 04:30:38 wbs sshd\[32023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns398360.ip-176-31-125.eu	2019-10-05 22:35:53
60.173.178.149	attackbots	Telnet Server BruteForce Attack	2019-10-05 22:57:13
51.38.162.232	attackspambots	Unauthorized access detected from banned ip	2019-10-05 22:35:00
60.191.66.212	attackspambots	Oct 5 04:37:18 kapalua sshd\[14723\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.66.212 user=root Oct 5 04:37:20 kapalua sshd\[14723\]: Failed password for root from 60.191.66.212 port 58962 ssh2 Oct 5 04:41:55 kapalua sshd\[15258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.66.212 user=root Oct 5 04:41:58 kapalua sshd\[15258\]: Failed password for root from 60.191.66.212 port 37544 ssh2 Oct 5 04:46:41 kapalua sshd\[15682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.66.212 user=root	2019-10-05 22:49:25
106.12.202.181	attackbots	Oct 5 04:32:22 php1 sshd\[19648\]: Invalid user 1qaz3edc from 106.12.202.181 Oct 5 04:32:22 php1 sshd\[19648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.181 Oct 5 04:32:24 php1 sshd\[19648\]: Failed password for invalid user 1qaz3edc from 106.12.202.181 port 56139 ssh2 Oct 5 04:37:27 php1 sshd\[20099\]: Invalid user 1qaz3edc from 106.12.202.181 Oct 5 04:37:27 php1 sshd\[20099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.181	2019-10-05 22:46:11
200.196.249.170	attackbotsspam	2019-10-05T09:52:41.9790311495-001 sshd\[21728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170 user=root 2019-10-05T09:52:44.1255971495-001 sshd\[21728\]: Failed password for root from 200.196.249.170 port 55272 ssh2 2019-10-05T09:58:05.6955471495-001 sshd\[22126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170 user=root 2019-10-05T09:58:08.3234041495-001 sshd\[22126\]: Failed password for root from 200.196.249.170 port 38116 ssh2 2019-10-05T10:03:13.7836381495-001 sshd\[22478\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170 user=root 2019-10-05T10:03:16.0252881495-001 sshd\[22478\]: Failed password for root from 200.196.249.170 port 49186 ssh2 ...	2019-10-05 22:19:22
222.252.90.151	attackspam	Chat Spam	2019-10-05 22:48:35
195.72.159.90	attackspam	HTTP/80/443 Probe, Hack -	2019-10-05 22:44:31
42.159.114.184	attackspambots	Oct 5 14:28:37 hcbbdb sshd\[28521\]: Invalid user PA\$\$WORD@2017 from 42.159.114.184 Oct 5 14:28:37 hcbbdb sshd\[28521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.114.184 Oct 5 14:28:40 hcbbdb sshd\[28521\]: Failed password for invalid user PA\$\$WORD@2017 from 42.159.114.184 port 63285 ssh2 Oct 5 14:33:56 hcbbdb sshd\[29069\]: Invalid user PA\$\$WORD@2017 from 42.159.114.184 Oct 5 14:33:56 hcbbdb sshd\[29069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.114.184	2019-10-05 22:43:41
46.229.168.146	attackspambots	Malicious Traffic/Form Submission	2019-10-05 22:35:34
193.31.24.113	attack	10/05/2019-16:23:09.339301 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic	2019-10-05 22:26:33
180.163.236.10	attackspam	Automatic report - Banned IP Access	2019-10-05 22:30:04
92.124.147.111	attack	IMAP	2019-10-05 22:58:27
85.30.215.48	attack	Chat Spam	2019-10-05 22:48:51

Recently Reported IPs

152.208.53.76	139.212.219.5	118.187.5.163	94.50.161.24
141.47.14.135	89.101.42.159	31.4.245.150	95.9.158.94
94.100.7.215	45.136.109.136	217.15.146.197	49.231.15.109
197.51.226.82	165.22.10.160	191.32.226.232	190.171.216.114
189.57.26.18	190.48.118.163	189.176.94.18	188.128.73.58