45.136.109.195

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-17 22:53:12
attackspambots	Fail2Ban Ban Triggered	2019-12-26 23:14:29
attack	Port scan on 13 port(s): 1045 1990 3311 3325 3350 3407 4007 5501 11611 15251 38038 41214 43834	2019-12-15 04:37:26

Comments on same subnet:

IP	Type	Details	Datetime
45.136.109.219	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 6000 proto: tcp cat: Misc Attackbytes: 60	2020-08-19 23:39:13
45.136.109.219	attackspam	slow and persistent scanner	2020-08-17 20:34:11
45.136.109.251	attackbotsspam	Port scanning [3 denied]	2020-08-14 14:18:15
45.136.109.219	attackbots	TCP (SYN) 45.136.109.219:50230 -> port 53, len 44	2020-08-07 08:11:38
45.136.109.219	attackbotsspam	[Tue Aug 04 17:47:28 2020] - DDoS Attack From IP: 45.136.109.219 Port: 41096	2020-08-06 18:31:50
45.136.109.219	attack	TCP (SYN) 45.136.109.219:43869 -> port 53, len 44	2020-08-05 23:34:34
45.136.109.158	attack	Unauthorized connection attempt detected from IP address 45.136.109.158 to port 3389	2020-07-22 15:39:59
45.136.109.87	attack	BruteForce RDP attempts from 45.136.109.175	2020-07-17 14:21:12
45.136.109.158	attack	SmallBizIT.US 2 packets to tcp(3389,3391)	2020-07-07 12:28:14
45.136.109.158	attackbots	Unauthorized connection attempt detected from IP address 45.136.109.158 to port 4489 [T]	2020-07-05 22:47:55
45.136.109.175	attackspambots	Icarus honeypot on github	2020-07-02 08:25:18
45.136.109.251	attackbots	Multiport scan : 15 ports scanned 2888 3381 3382 3402 3420 3501 3502 4003 4018 5909 7926 8093 9000 9261 9833	2020-06-21 07:47:48
45.136.109.219	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 6389 proto: TCP cat: Misc Attack	2020-06-06 08:47:05
45.136.109.222	attackspam	Mar 22 03:57:09 src: 45.136.109.222 signature match: "BACKDOOR NetSphere Connection attempt" (sid: 100044) tcp port: 30100	2020-03-22 12:01:46
45.136.109.222	attackbotsspam	Mar 18 22:14:16 src: 45.136.109.222 signature match: "BACKDOOR Subseven connection attempt" (sid: 100207) tcp port: 27374	2020-03-19 06:22:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.109.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22406
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.109.195.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121401 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 15 04:37:23 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 195.109.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 195.109.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.60.69	attack	Sep 19 17:56:01 webhost01 sshd[3840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.60.69 Sep 19 17:56:03 webhost01 sshd[3840]: Failed password for invalid user admin from 134.209.60.69 port 50422 ssh2 ...	2019-09-19 21:16:02
222.186.42.15	attackspam	2019-09-19T13:20:54.638075abusebot-6.cloudsearch.cf sshd\[3071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.15 user=root	2019-09-19 21:23:23
185.75.207.223	attackspambots	port scan and connect, tcp 23 (telnet)	2019-09-19 20:45:50
177.159.121.130	attack	T: f2b postfix aggressive 3x	2019-09-19 21:09:29
46.0.203.166	attack	2019-09-19T08:46:11.4004351495-001 sshd\[25976\]: Invalid user zaq12wsx from 46.0.203.166 port 56960 2019-09-19T08:46:11.4082681495-001 sshd\[25976\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.0.203.166 2019-09-19T08:46:13.6894171495-001 sshd\[25976\]: Failed password for invalid user zaq12wsx from 46.0.203.166 port 56960 ssh2 2019-09-19T08:50:29.6260991495-001 sshd\[26165\]: Invalid user 111111 from 46.0.203.166 port 44024 2019-09-19T08:50:29.6333441495-001 sshd\[26165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.0.203.166 2019-09-19T08:50:31.3323711495-001 sshd\[26165\]: Failed password for invalid user 111111 from 46.0.203.166 port 44024 ssh2 ...	2019-09-19 21:01:48
201.163.98.154	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:55:50.	2019-09-19 21:00:33
119.194.248.131	attack	2019-09-19T11:54:09.464043+01:00 suse sshd[19566]: Invalid user admin from 119.194.248.131 port 53624 2019-09-19T11:54:12.340354+01:00 suse sshd[19566]: error: PAM: User not known to the underlying authentication module for illegal user admin from 119.194.248.131 2019-09-19T11:54:09.464043+01:00 suse sshd[19566]: Invalid user admin from 119.194.248.131 port 53624 2019-09-19T11:54:12.340354+01:00 suse sshd[19566]: error: PAM: User not known to the underlying authentication module for illegal user admin from 119.194.248.131 2019-09-19T11:54:09.464043+01:00 suse sshd[19566]: Invalid user admin from 119.194.248.131 port 53624 2019-09-19T11:54:12.340354+01:00 suse sshd[19566]: error: PAM: User not known to the underlying authentication module for illegal user admin from 119.194.248.131 2019-09-19T11:54:12.342459+01:00 suse sshd[19566]: Failed keyboard-interactive/pam for invalid user admin from 119.194.248.131 port 53624 ssh2 ...	2019-09-19 21:29:12
189.115.42.72	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:55:48.	2019-09-19 21:04:48
114.143.8.37	attack	2019-09-19T10:55:41.977189abusebot-2.cloudsearch.cf sshd\[12080\]: Invalid user Administrator from 114.143.8.37 port 55553	2019-09-19 21:12:52
49.88.112.85	attackspambots	2019-09-19T13:24:42.698860abusebot-3.cloudsearch.cf sshd\[16598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85 user=root	2019-09-19 21:31:58
221.10.99.211	attackbotsspam	Sep 19 12:54:44 andromeda postfix/smtpd\[47428\]: warning: unknown\[221.10.99.211\]: SASL PLAIN authentication failed: authentication failure Sep 19 12:54:53 andromeda postfix/smtpd\[43583\]: warning: unknown\[221.10.99.211\]: SASL PLAIN authentication failed: authentication failure Sep 19 12:55:01 andromeda postfix/smtpd\[43628\]: warning: unknown\[221.10.99.211\]: SASL PLAIN authentication failed: authentication failure Sep 19 12:55:10 andromeda postfix/smtpd\[47422\]: warning: unknown\[221.10.99.211\]: SASL PLAIN authentication failed: authentication failure Sep 19 12:55:19 andromeda postfix/smtpd\[43628\]: warning: unknown\[221.10.99.211\]: SASL PLAIN authentication failed: authentication failure	2019-09-19 21:23:54
183.88.171.200	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:55:23.	2019-09-19 21:25:36
162.247.74.217	attackbotsspam	Sep 19 10:56:04 thevastnessof sshd[6471]: Failed password for root from 162.247.74.217 port 34004 ssh2 ...	2019-09-19 20:53:13
125.130.110.20	attackspambots	Sep 19 15:11:12 dedicated sshd[32454]: Invalid user bnc from 125.130.110.20 port 38928	2019-09-19 21:27:40
185.158.0.161	attackspam	2019-09-19T11:55:15.741565+01:00 suse sshd[19664]: User root from 185.158.0.161 not allowed because not listed in AllowUsers 2019-09-19T11:55:18.586914+01:00 suse sshd[19664]: error: PAM: Authentication failure for illegal user root from 185.158.0.161 2019-09-19T11:55:15.741565+01:00 suse sshd[19664]: User root from 185.158.0.161 not allowed because not listed in AllowUsers 2019-09-19T11:55:18.586914+01:00 suse sshd[19664]: error: PAM: Authentication failure for illegal user root from 185.158.0.161 2019-09-19T11:55:15.741565+01:00 suse sshd[19664]: User root from 185.158.0.161 not allowed because not listed in AllowUsers 2019-09-19T11:55:18.586914+01:00 suse sshd[19664]: error: PAM: Authentication failure for illegal user root from 185.158.0.161 2019-09-19T11:55:18.588633+01:00 suse sshd[19664]: Failed keyboard-interactive/pam for invalid user root from 185.158.0.161 port 40609 ssh2 ...	2019-09-19 20:58:56

Recently Reported IPs

87.3.191.119	112.85.193.229	193.151.24.210	99.154.145.38
98.115.141.57	99.108.199.203	223.20.243.216	141.207.54.220
78.35.239.76	67.11.38.67	31.129.94.125	64.41.189.162
24.11.87.146	211.147.234.110	201.82.156.64	180.97.204.253
13.40.77.83	84.84.28.196	148.202.37.156	78.202.36.170