45.136.110.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russia

Internet Service Provider: ComTrade LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Excessive Port-Scanning	2019-10-17 13:20:50
attackspam	Oct 16 12:23:46 h2177944 kernel: \[4097391.314960\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=52705 PROTO=TCP SPT=46337 DPT=1192 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 12:40:58 h2177944 kernel: \[4098422.394622\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=5026 PROTO=TCP SPT=46337 DPT=1506 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 12:41:59 h2177944 kernel: \[4098483.406647\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=47779 PROTO=TCP SPT=46337 DPT=1379 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 13:07:26 h2177944 kernel: \[4100009.890461\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=23396 PROTO=TCP SPT=46337 DPT=1619 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 13:23:35 h2177944 kernel: \[4100979.189519\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9	2019-10-16 20:57:34
attackbotsspam	Port scan	2019-10-12 19:55:07
attackspambots	Oct 8 18:30:17 h2177944 kernel: \[3428302.785124\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=25818 PROTO=TCP SPT=52754 DPT=73 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:34:58 h2177944 kernel: \[3428584.304903\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=3542 PROTO=TCP SPT=52754 DPT=460 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:35:46 h2177944 kernel: \[3428632.043486\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8559 PROTO=TCP SPT=52754 DPT=568 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:36:10 h2177944 kernel: \[3428655.667086\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11554 PROTO=TCP SPT=52754 DPT=944 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 8 18:40:40 h2177944 kernel: \[3428926.532442\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.11 DST=85.214.117.9 LEN=40	2019-10-09 01:25:19
attackspam	Scanning random ports - tries to find possible vulnerable services	2019-10-08 03:22:51

Comments on same subnet:

IP	Type	Details	Datetime
45.136.110.227	attackspam	TCP scanned	2020-06-15 02:24:50
45.136.110.25	attack	Mar 13 18:33:09 debian-2gb-nbg1-2 kernel: \[6379921.888201\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=31856 PROTO=TCP SPT=45838 DPT=2891 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-14 01:34:57
45.136.110.25	attackspam	Mar 13 05:18:39 debian-2gb-nbg1-2 kernel: \[6332254.684603\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=29917 PROTO=TCP SPT=42567 DPT=5768 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-13 12:22:14
45.136.110.25	attackbots	Mar 12 18:54:02 debian-2gb-nbg1-2 kernel: \[6294779.364795\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=50546 PROTO=TCP SPT=40824 DPT=3009 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-13 02:06:49
45.136.110.25	attackbots	Mar 12 06:06:36 debian-2gb-nbg1-2 kernel: \[6248736.057240\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=36529 PROTO=TCP SPT=40824 DPT=3230 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-12 13:12:51
45.136.110.25	attackspam	Mar 11 20:18:44 debian-2gb-nbg1-2 kernel: \[6213465.545709\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=44819 PROTO=TCP SPT=52822 DPT=4035 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-12 04:08:04
45.136.110.25	attack	Mar 11 06:03:41 debian-2gb-nbg1-2 kernel: \[6162165.528514\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63434 PROTO=TCP SPT=51295 DPT=3710 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-11 13:05:03
45.136.110.135	attackspambots	Scanning random ports - tries to find possible vulnerable services	2020-03-11 06:59:16
45.136.110.25	attack	Mar 9 00:46:54 debian-2gb-nbg1-2 kernel: \[5970368.159838\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=43699 PROTO=TCP SPT=53340 DPT=5288 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-09 08:27:58
45.136.110.25	attackspambots	Mar 8 17:38:09 debian-2gb-nbg1-2 kernel: \[5944645.387471\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=53755 PROTO=TCP SPT=53340 DPT=5263 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-09 00:45:36
45.136.110.25	attack	Mar 8 02:00:28 debian-2gb-nbg1-2 kernel: \[5888387.149380\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=57156 PROTO=TCP SPT=49617 DPT=4308 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-08 09:20:05
45.136.110.25	attackbots	Mar 7 14:08:54 debian-2gb-nbg1-2 kernel: \[5845695.146432\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=45338 PROTO=TCP SPT=49617 DPT=4364 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-07 21:34:50
45.136.110.25	attackbotsspam	Mar 5 23:22:53 debian-2gb-nbg1-2 kernel: \[5706141.085150\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=46803 PROTO=TCP SPT=56630 DPT=12121 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-06 06:27:20
45.136.110.25	attackspam	Mar 5 01:11:04 debian-2gb-nbg1-2 kernel: \[5626236.499804\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=60913 PROTO=TCP SPT=59333 DPT=3934 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-05 08:20:16
45.136.110.135	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 04-03-2020 13:35:09.	2020-03-05 01:31:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.110.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28545
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.110.11.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100702 1800 900 604800 86400

;; Query time: 515 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 03:22:48 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 11.110.136.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.110.136.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.93.20.161	attackbotsspam	56104/tcp 38252/tcp 33404/tcp... [2019-11-28/12-25]22pkt,22pt.(tcp)	2019-12-25 21:15:52
197.58.175.97	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-12-25 21:40:33
110.17.2.120	attackspam	Scanning	2019-12-25 21:23:49
51.15.56.133	attackspambots	Invalid user backup from 51.15.56.133 port 50596	2019-12-25 21:03:36
65.49.20.71	attackspambots	[portscan] tcp/22 [SSH] *(RWIN=65535)(12251243)	2019-12-25 21:41:44
165.227.113.2	attackspambots	Invalid user informix from 165.227.113.2 port 55346	2019-12-25 21:40:50
36.41.174.139	attackbotsspam	Invalid user shieh from 36.41.174.139 port 37638	2019-12-25 21:31:42
39.153.252.196	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-25 21:11:13
77.201.199.59	attackbotsspam	SSH invalid-user multiple login try	2019-12-25 21:13:51
86.42.230.158	attackbotsspam	Dec 25 14:56:22 master sshd[19189]: Failed password for invalid user patrice from 86.42.230.158 port 46660 ssh2	2019-12-25 21:34:25
129.226.129.144	attackspambots	Invalid user berthet from 129.226.129.144 port 35548	2019-12-25 21:22:05
124.217.235.145	attackspam	Automatic report - Banned IP Access	2019-12-25 21:32:31
124.123.100.166	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 25-12-2019 06:20:09.	2019-12-25 21:04:25
95.183.234.244	attackbots	Unauthorized connection attempt detected from IP address 95.183.234.244 to port 445	2019-12-25 21:27:57
45.238.232.42	attackspambots	Invalid user guinard from 45.238.232.42 port 48172	2019-12-25 21:28:21

Recently Reported IPs

164.64.37.65	122.166.62.122	71.212.33.192	176.118.55.251
112.89.158.112	104.143.181.86	3.229.82.144	32.178.120.217
159.118.168.79	173.94.202.247	60.42.3.190	212.108.91.72
115.103.103.130	223.209.80.59	167.2.64.176	69.1.119.22
73.202.18.75	203.95.223.15	73.228.186.82	153.227.180.10