45.145.66.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Intercom LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	3389BruteforceStormFW22	2020-08-05 08:07:48

Comments on same subnet:

IP	Type	Details	Datetime
45.145.66.104	attackbots	Excessive Port-Scanning	2020-10-04 02:34:03
45.145.66.104	attackbotsspam	[HOST2] Port Scan detected	2020-10-03 18:21:49
45.145.66.159	attackbotsspam	RDPBruteGam24	2020-09-29 02:25:57
45.145.66.159	attack	RDPBruteGam24	2020-09-28 18:33:33
45.145.66.67	attack	scans once in preceeding hours on the ports (in chronological order) 20425 resulting in total of 13 scans from 45.145.66.0/23 block.	2020-09-13 22:45:10
45.145.66.67	attackspambots	Fail2Ban Ban Triggered	2020-09-13 14:40:51
45.145.66.67	attackbots	Fail2Ban Ban Triggered	2020-09-13 06:23:54
45.145.66.104	attackbots	Unauthorized connection attempt from IP address 45.145.66.104 on Port 3389(RDP)	2020-09-09 17:11:10
45.145.66.96	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 13947 proto: tcp cat: Misc Attackbytes: 60	2020-09-08 04:18:28
45.145.66.96	attackbots	SmallBizIT.US 20 packets to tcp(13911,13959,13990,14001,14015,14016,14022,14028,14036,14052,14068,14069,14075,14076,14120,14132,14146,14170,14186,14194)	2020-09-07 19:54:56
45.145.66.96	attackspambots	Port scan: Attack repeated for 24 hours	2020-09-06 04:08:16
45.145.66.96	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 14029 proto: tcp cat: Misc Attackbytes: 60	2020-09-05 19:53:35
45.145.66.90	attackbots	9922/tcp 4899/tcp 1022/tcp... [2020-06-27/08-27]230pkt,86pt.(tcp)	2020-08-29 15:27:53
45.145.66.120	attackbots	[H1.VM8] Blocked by UFW	2020-08-27 07:37:28
45.145.66.21	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 29939 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:41:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.145.66.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.145.66.4.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072500 1800 900 604800 86400

;; Query time: 666 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 26 00:45:30 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 4.66.145.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.66.145.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.167.240.222	attack	Invalid user pqv from 180.167.240.222 port 52208	2020-05-20 01:06:23
66.70.130.149	attackspambots	May 19 11:49:21 mail sshd[30536]: Invalid user evs from 66.70.130.149 May 19 11:49:21 mail sshd[30536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.130.149 May 19 11:49:21 mail sshd[30536]: Invalid user evs from 66.70.130.149 May 19 11:49:22 mail sshd[30536]: Failed password for invalid user evs from 66.70.130.149 port 36582 ssh2 ...	2020-05-20 01:15:46
182.61.3.223	attackbots	$f2bV_matches	2020-05-20 00:54:29
51.254.120.159	attackbotsspam	May 19 11:50:34 lnxded63 sshd[19140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.120.159	2020-05-20 01:02:48
183.83.38.40	attackbots	1589881727 - 05/19/2020 11:48:47 Host: 183.83.38.40/183.83.38.40 Port: 445 TCP Blocked	2020-05-20 01:23:57
178.62.252.146	attackspam	Blocked for port scanning (Port 23 / Telnet brute-force). Time: Sun May 17. 06:47:24 2020 +0200 IP: 178.62.252.146 (NL/Netherlands/-) Sample of block hits: May 17 06:46:47 vserv kernel: [4933629.880353] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868 PROTO=TCP SPT=47410 DPT=23 WINDOW=47045 RES=0x00 SYN URGP=0 May 17 06:46:50 vserv kernel: [4933632.893893] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868 PROTO=TCP SPT=47410 DPT=23 WINDOW=47045 RES=0x00 SYN URGP=0 May 17 06:46:55 vserv kernel: [4933637.601554] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868 PROTO=TCP SPT=47410 DPT=23 WINDOW=47045 RES=0x00 SYN URGP=0 May 17 06:46:56 vserv kernel: [4933638.657102] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868	2020-05-20 01:25:29
14.231.176.135	attackbotsspam	1589881962 - 05/19/2020 11:52:42 Host: 14.231.176.135/14.231.176.135 Port: 445 TCP Blocked	2020-05-20 00:41:36
51.161.34.38	attackbots	$f2bV_matches	2020-05-20 00:38:54
180.76.103.247	attackbots	Invalid user hib from 180.76.103.247 port 43274	2020-05-20 00:27:11
139.59.254.93	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-20 00:27:27
189.18.243.210	attackbotsspam	(sshd) Failed SSH login from 189.18.243.210 (BR/Brazil/189-18-243-210.dsl.telesp.net.br): 12 in the last 3600 secs	2020-05-20 01:17:04
5.145.249.152	attackbots	1589881762 - 05/19/2020 11:49:22 Host: 5.145.249.152/5.145.249.152 Port: 445 TCP Blocked	2020-05-20 01:16:06
45.254.25.213	attackspambots	May 19 18:32:05 vps687878 sshd\[16362\]: Invalid user xpx from 45.254.25.213 port 44568 May 19 18:32:05 vps687878 sshd\[16362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.254.25.213 May 19 18:32:07 vps687878 sshd\[16362\]: Failed password for invalid user xpx from 45.254.25.213 port 44568 ssh2 May 19 18:39:56 vps687878 sshd\[17175\]: Invalid user xff from 45.254.25.213 port 40164 May 19 18:39:56 vps687878 sshd\[17175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.254.25.213 ...	2020-05-20 01:01:07
61.74.118.139	attack	May 19 18:51:43 vps sshd[657754]: Failed password for invalid user fsb from 61.74.118.139 port 49628 ssh2 May 19 18:55:45 vps sshd[677243]: Invalid user nhq from 61.74.118.139 port 55094 May 19 18:55:45 vps sshd[677243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139 May 19 18:55:48 vps sshd[677243]: Failed password for invalid user nhq from 61.74.118.139 port 55094 ssh2 May 19 18:59:39 vps sshd[692194]: Invalid user dingbo from 61.74.118.139 port 60556 ...	2020-05-20 01:11:21
182.52.122.255	attackspam	1589881758 - 05/19/2020 11:49:18 Host: 182.52.122.255/182.52.122.255 Port: 445 TCP Blocked	2020-05-20 01:16:38

Recently Reported IPs

103.3.77.202	14.58.112.12	103.117.36.231	14.55.229.63
14.54.196.62	41.225.30.80	94.112.234.161	106.53.117.10
49.234.219.76	187.156.84.58	118.89.193.91	109.65.67.8
72.234.113.51	14.52.247.198	238.55.64.237	14.50.38.20
14.48.133.246	82.14.14.121	14.46.191.24	45.166.213.12