45.145.66.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Intercom LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	TCP (SYN) 45.145.66.12:47059 -> port 56659, len 44	2020-07-15 14:07:03
attackbotsspam	TCP (SYN) 45.145.66.12:49178 -> port 23983, len 44	2020-07-11 21:51:44
attackspam	TCP (SYN) 45.145.66.12:44939 -> port 23680, len 44	2020-07-06 23:39:21
attackbotsspam	TCP (SYN) 45.145.66.12:49111 -> port 23496, len 44	2020-07-05 23:11:41
attack	[MK-VM2] Blocked by UFW	2020-07-04 12:57:19
attack	SmallBizIT.US 3 packets to tcp(12777,13999,16555)	2020-06-26 12:09:45
attackbots	TCP (SYN) 45.145.66.12:54405 -> port 5444, len 44	2020-06-21 08:07:37
attackbotsspam	Scanned 333 unique addresses for 20 unique TCP ports in 24 hours	2020-06-19 23:30:42

Comments on same subnet:

IP	Type	Details	Datetime
45.145.66.104	attackbots	Excessive Port-Scanning	2020-10-04 02:34:03
45.145.66.104	attackbotsspam	[HOST2] Port Scan detected	2020-10-03 18:21:49
45.145.66.159	attackbotsspam	RDPBruteGam24	2020-09-29 02:25:57
45.145.66.159	attack	RDPBruteGam24	2020-09-28 18:33:33
45.145.66.67	attack	scans once in preceeding hours on the ports (in chronological order) 20425 resulting in total of 13 scans from 45.145.66.0/23 block.	2020-09-13 22:45:10
45.145.66.67	attackspambots	Fail2Ban Ban Triggered	2020-09-13 14:40:51
45.145.66.67	attackbots	Fail2Ban Ban Triggered	2020-09-13 06:23:54
45.145.66.104	attackbots	Unauthorized connection attempt from IP address 45.145.66.104 on Port 3389(RDP)	2020-09-09 17:11:10
45.145.66.96	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 13947 proto: tcp cat: Misc Attackbytes: 60	2020-09-08 04:18:28
45.145.66.96	attackbots	SmallBizIT.US 20 packets to tcp(13911,13959,13990,14001,14015,14016,14022,14028,14036,14052,14068,14069,14075,14076,14120,14132,14146,14170,14186,14194)	2020-09-07 19:54:56
45.145.66.96	attackspambots	Port scan: Attack repeated for 24 hours	2020-09-06 04:08:16
45.145.66.96	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 14029 proto: tcp cat: Misc Attackbytes: 60	2020-09-05 19:53:35
45.145.66.90	attackbots	9922/tcp 4899/tcp 1022/tcp... [2020-06-27/08-27]230pkt,86pt.(tcp)	2020-08-29 15:27:53
45.145.66.120	attackbots	[H1.VM8] Blocked by UFW	2020-08-27 07:37:28
45.145.66.21	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 29939 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:41:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.145.66.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12152
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.145.66.12.			IN	A

;; AUTHORITY SECTION:
.			200	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061900 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 23:30:36 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 12.66.145.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.66.145.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.177.57.77	attack	Jan 1 23:53:07 debian-2gb-nbg1-2 kernel: \[178517.941479\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.177.57.77 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=8779 PROTO=TCP SPT=12524 DPT=5555 WINDOW=7620 RES=0x00 SYN URGP=0	2020-01-02 08:04:28
45.136.108.125	attackbots	Jan 2 00:16:26 debian-2gb-nbg1-2 kernel: \[179917.000737\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.125 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=40467 PROTO=TCP SPT=51325 DPT=1001 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-02 07:50:41
212.64.109.175	attackspambots	Jan 2 00:53:36 ArkNodeAT sshd\[19137\]: Invalid user newpass from 212.64.109.175 Jan 2 00:53:36 ArkNodeAT sshd\[19137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.109.175 Jan 2 00:53:39 ArkNodeAT sshd\[19137\]: Failed password for invalid user newpass from 212.64.109.175 port 58969 ssh2	2020-01-02 08:10:57
106.13.53.173	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-01-02 07:49:52
151.80.254.75	attackbotsspam	SSH-BruteForce	2020-01-02 08:24:17
178.128.226.52	attackbots	Jan 2 01:02:31 [host] sshd[17845]: Invalid user jana from 178.128.226.52 Jan 2 01:02:31 [host] sshd[17845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.226.52 Jan 2 01:02:33 [host] sshd[17845]: Failed password for invalid user jana from 178.128.226.52 port 53814 ssh2	2020-01-02 08:14:54
128.199.103.239	attackspambots	Jan 1 17:52:57 mail sshd\[27791\]: Invalid user sherian from 128.199.103.239 Jan 1 17:52:57 mail sshd\[27791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.103.239 ...	2020-01-02 08:08:54
218.92.0.158	attack	2020-01-02T00:16:53.290987abusebot-4.cloudsearch.cf sshd[1014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.158 user=root 2020-01-02T00:16:55.549579abusebot-4.cloudsearch.cf sshd[1014]: Failed password for root from 218.92.0.158 port 41432 ssh2 2020-01-02T00:16:59.477886abusebot-4.cloudsearch.cf sshd[1014]: Failed password for root from 218.92.0.158 port 41432 ssh2 2020-01-02T00:16:53.290987abusebot-4.cloudsearch.cf sshd[1014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.158 user=root 2020-01-02T00:16:55.549579abusebot-4.cloudsearch.cf sshd[1014]: Failed password for root from 218.92.0.158 port 41432 ssh2 2020-01-02T00:16:59.477886abusebot-4.cloudsearch.cf sshd[1014]: Failed password for root from 218.92.0.158 port 41432 ssh2 2020-01-02T00:16:53.290987abusebot-4.cloudsearch.cf sshd[1014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218. ...	2020-01-02 08:17:50
222.186.3.186	attackspambots	SSH Brute Force	2020-01-02 08:26:55
168.232.198.18	attack	Jan 2 01:29:24 server sshd\[9542\]: Invalid user ftpuser from 168.232.198.18 Jan 2 01:29:24 server sshd\[9542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168-232-198-18.static.konectivatelecomunicacoes.com.br Jan 2 01:29:28 server sshd\[9542\]: Failed password for invalid user ftpuser from 168.232.198.18 port 44288 ssh2 Jan 2 01:52:55 server sshd\[14745\]: Invalid user ts3server from 168.232.198.18 Jan 2 01:52:55 server sshd\[14745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168-232-198-18.static.konectivatelecomunicacoes.com.br ...	2020-01-02 08:13:36
195.231.4.104	attackspam	Jan 1 14:01:50 hanapaa sshd\[8075\]: Invalid user deliva from 195.231.4.104 Jan 1 14:01:50 hanapaa sshd\[8075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.231.4.104 Jan 1 14:01:52 hanapaa sshd\[8075\]: Failed password for invalid user deliva from 195.231.4.104 port 59971 ssh2 Jan 1 14:06:30 hanapaa sshd\[8434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.231.4.104 user=root Jan 1 14:06:32 hanapaa sshd\[8434\]: Failed password for root from 195.231.4.104 port 42389 ssh2	2020-01-02 08:21:22
94.191.76.19	attack	Jan 1 23:53:21 vps647732 sshd[20294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.76.19 Jan 1 23:53:22 vps647732 sshd[20294]: Failed password for invalid user automon from 94.191.76.19 port 55624 ssh2 ...	2020-01-02 07:53:57
106.12.189.2	attackbotsspam	Jan 2 01:31:08 server sshd\[10238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.2 user=root Jan 2 01:31:10 server sshd\[10238\]: Failed password for root from 106.12.189.2 port 33810 ssh2 Jan 2 01:52:37 server sshd\[14707\]: Invalid user potsdam from 106.12.189.2 Jan 2 01:52:37 server sshd\[14707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.2 Jan 2 01:52:38 server sshd\[14707\]: Failed password for invalid user potsdam from 106.12.189.2 port 56170 ssh2 ...	2020-01-02 08:23:39
141.98.80.69	attackspam	Jan 2 00:47:13 debian-2gb-nbg1-2 kernel: \[181764.515300\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=141.98.80.69 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=15321 PROTO=TCP SPT=50356 DPT=33393 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-02 07:55:55
207.154.239.128	attackspam	Invalid user dspace from 207.154.239.128 port 48574	2020-01-02 08:12:10

Recently Reported IPs

196.220.171.7	192.35.168.215	156.216.36.119	125.162.57.245
193.47.61.195	49.146.34.1	2.93.140.44	118.25.106.244
200.52.139.25	79.187.16.142	111.241.104.183	1.186.79.204
176.194.57.111	15.27.82.235	174.234.19.36	177.132.241.131
41.184.35.122	189.7.33.167	174.35.25.129	190.193.135.172