45.145.66.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Intercom LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	3389BruteforceStormFW22	2020-08-05 08:07:48

Comments on same subnet:

IP	Type	Details	Datetime
45.145.66.104	attackbots	Excessive Port-Scanning	2020-10-04 02:34:03
45.145.66.104	attackbotsspam	[HOST2] Port Scan detected	2020-10-03 18:21:49
45.145.66.159	attackbotsspam	RDPBruteGam24	2020-09-29 02:25:57
45.145.66.159	attack	RDPBruteGam24	2020-09-28 18:33:33
45.145.66.67	attack	scans once in preceeding hours on the ports (in chronological order) 20425 resulting in total of 13 scans from 45.145.66.0/23 block.	2020-09-13 22:45:10
45.145.66.67	attackspambots	Fail2Ban Ban Triggered	2020-09-13 14:40:51
45.145.66.67	attackbots	Fail2Ban Ban Triggered	2020-09-13 06:23:54
45.145.66.104	attackbots	Unauthorized connection attempt from IP address 45.145.66.104 on Port 3389(RDP)	2020-09-09 17:11:10
45.145.66.96	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 13947 proto: tcp cat: Misc Attackbytes: 60	2020-09-08 04:18:28
45.145.66.96	attackbots	SmallBizIT.US 20 packets to tcp(13911,13959,13990,14001,14015,14016,14022,14028,14036,14052,14068,14069,14075,14076,14120,14132,14146,14170,14186,14194)	2020-09-07 19:54:56
45.145.66.96	attackspambots	Port scan: Attack repeated for 24 hours	2020-09-06 04:08:16
45.145.66.96	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 14029 proto: tcp cat: Misc Attackbytes: 60	2020-09-05 19:53:35
45.145.66.90	attackbots	9922/tcp 4899/tcp 1022/tcp... [2020-06-27/08-27]230pkt,86pt.(tcp)	2020-08-29 15:27:53
45.145.66.120	attackbots	[H1.VM8] Blocked by UFW	2020-08-27 07:37:28
45.145.66.21	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 29939 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:41:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.145.66.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.145.66.4.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072500 1800 900 604800 86400

;; Query time: 666 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 26 00:45:30 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 4.66.145.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.66.145.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.89.27.248	attack	$f2bV_matches	2019-11-23 06:07:03
147.135.211.127	attackspam	fail2ban honeypot	2019-11-23 06:31:59
218.78.46.81	attack	Nov 22 23:37:25 ns37 sshd[19447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.46.81 Nov 22 23:37:25 ns37 sshd[19447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.46.81	2019-11-23 06:44:49
158.255.6.196	attack	SMTP:25. Incomplete TCP connect. Port probe?	2019-11-23 06:50:26
86.29.117.153	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/86.29.117.153/ GB - 1H : (59) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN5089 IP : 86.29.117.153 CIDR : 86.24.0.0/13 PREFIX COUNT : 259 UNIQUE IP COUNT : 9431296 ATTACKS DETECTED ASN5089 : 1H - 2 3H - 2 6H - 3 12H - 3 24H - 4 DateTime : 2019-11-22 15:43:18 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-23 06:47:01
186.155.197.119	attackspam	Automatic report - Port Scan Attack	2019-11-23 06:51:31
160.242.200.187	attackbots	Nov 22 15:39:57 mxgate1 postfix/postscreen[11640]: CONNECT from [160.242.200.187]:48892 to [176.31.12.44]:25 Nov 22 15:39:57 mxgate1 postfix/dnsblog[11641]: addr 160.242.200.187 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 22 15:39:57 mxgate1 postfix/dnsblog[11641]: addr 160.242.200.187 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 22 15:39:57 mxgate1 postfix/dnsblog[11656]: addr 160.242.200.187 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 22 15:39:58 mxgate1 postfix/dnsblog[11643]: addr 160.242.200.187 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 22 15:40:03 mxgate1 postfix/postscreen[11640]: DNSBL rank 4 for [160.242.200.187]:48892 Nov x@x Nov 22 15:40:06 mxgate1 postfix/postscreen[11640]: HANGUP after 2.6 from [160.242.200.187]:48892 in tests after SMTP handshake Nov 22 15:40:06 mxgate1 postfix/postscreen[11640]: DISCONNECT [160.242.200.187]:48892 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=160.242.200.187	2019-11-23 06:24:22
196.3.97.86	attackspambots	Automatic report - XMLRPC Attack	2019-11-23 06:16:17
165.227.225.195	attackspambots	2019-11-22T22:06:39.137900abusebot-8.cloudsearch.cf sshd\[14371\]: Invalid user 0123456788 from 165.227.225.195 port 33212	2019-11-23 06:19:43
66.70.206.215	attackbots	Invalid user 0 from 66.70.206.215 port 45916	2019-11-23 06:31:34
125.74.69.229	attackbots	Nov 22 17:12:15 heicom postfix/smtpd\[32280\]: warning: unknown\[125.74.69.229\]: SASL LOGIN authentication failed: authentication failure Nov 22 17:12:18 heicom postfix/smtpd\[1252\]: warning: unknown\[125.74.69.229\]: SASL LOGIN authentication failed: authentication failure Nov 22 17:12:23 heicom postfix/smtpd\[32280\]: warning: unknown\[125.74.69.229\]: SASL LOGIN authentication failed: authentication failure Nov 22 17:12:28 heicom postfix/smtpd\[1252\]: warning: unknown\[125.74.69.229\]: SASL LOGIN authentication failed: authentication failure Nov 22 17:12:34 heicom postfix/smtpd\[32280\]: warning: unknown\[125.74.69.229\]: SASL LOGIN authentication failed: authentication failure ...	2019-11-23 06:34:45
106.59.135.77	attackspam	106.59.135.77 attempt unauthorized access to FTP accounts via brute force	2019-11-23 06:25:54
46.101.224.184	attackbotsspam	Invalid user vc from 46.101.224.184 port 40822	2019-11-23 06:51:15
114.237.109.218	attackspambots	$f2bV_matches	2019-11-23 06:08:31
106.75.193.16	attackbots	Invalid user ABU from 106.75.193.16 port 31753	2019-11-23 06:33:05

Recently Reported IPs

103.3.77.202	14.58.112.12	103.117.36.231	14.55.229.63
14.54.196.62	41.225.30.80	94.112.234.161	106.53.117.10
49.234.219.76	187.156.84.58	118.89.193.91	109.65.67.8
72.234.113.51	14.52.247.198	238.55.64.237	14.50.38.20
14.48.133.246	82.14.14.121	14.46.191.24	45.166.213.12