45.145.66.65 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Intercom LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	scans 9 times in preceeding hours on the ports (in chronological order) 3385 3380 3387 3389 3383 3390 3383 3387 3388	2020-07-06 23:38:40
attackspambots	Port scan on 5 port(s): 3381 3384 3385 3386 3389	2020-07-06 07:31:15
attackbotsspam	Hacking	2020-06-27 05:46:05

Comments on same subnet:

IP	Type	Details	Datetime
45.145.66.104	attackbots	Excessive Port-Scanning	2020-10-04 02:34:03
45.145.66.104	attackbotsspam	[HOST2] Port Scan detected	2020-10-03 18:21:49
45.145.66.159	attackbotsspam	RDPBruteGam24	2020-09-29 02:25:57
45.145.66.159	attack	RDPBruteGam24	2020-09-28 18:33:33
45.145.66.67	attack	scans once in preceeding hours on the ports (in chronological order) 20425 resulting in total of 13 scans from 45.145.66.0/23 block.	2020-09-13 22:45:10
45.145.66.67	attackspambots	Fail2Ban Ban Triggered	2020-09-13 14:40:51
45.145.66.67	attackbots	Fail2Ban Ban Triggered	2020-09-13 06:23:54
45.145.66.104	attackbots	Unauthorized connection attempt from IP address 45.145.66.104 on Port 3389(RDP)	2020-09-09 17:11:10
45.145.66.96	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 13947 proto: tcp cat: Misc Attackbytes: 60	2020-09-08 04:18:28
45.145.66.96	attackbots	SmallBizIT.US 20 packets to tcp(13911,13959,13990,14001,14015,14016,14022,14028,14036,14052,14068,14069,14075,14076,14120,14132,14146,14170,14186,14194)	2020-09-07 19:54:56
45.145.66.96	attackspambots	Port scan: Attack repeated for 24 hours	2020-09-06 04:08:16
45.145.66.96	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 14029 proto: tcp cat: Misc Attackbytes: 60	2020-09-05 19:53:35
45.145.66.90	attackbots	9922/tcp 4899/tcp 1022/tcp... [2020-06-27/08-27]230pkt,86pt.(tcp)	2020-08-29 15:27:53
45.145.66.120	attackbots	[H1.VM8] Blocked by UFW	2020-08-27 07:37:28
45.145.66.21	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 29939 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:41:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.145.66.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.145.66.65.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062602 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 27 05:45:54 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 65.66.145.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.66.145.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.199.0.161	attackspambots	Automatic report - Banned IP Access	2020-08-18 01:08:01
111.72.195.189	attackbotsspam	Aug 17 14:29:29 srv01 postfix/smtpd\[23358\]: warning: unknown\[111.72.195.189\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 14:29:42 srv01 postfix/smtpd\[23358\]: warning: unknown\[111.72.195.189\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 14:29:59 srv01 postfix/smtpd\[23358\]: warning: unknown\[111.72.195.189\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 14:30:18 srv01 postfix/smtpd\[23358\]: warning: unknown\[111.72.195.189\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 14:30:27 srv01 postfix/smtpd\[23358\]: warning: unknown\[111.72.195.189\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-18 01:18:01
1.171.47.154	attackbotsspam	1597665776 - 08/17/2020 14:02:56 Host: 1.171.47.154/1.171.47.154 Port: 445 TCP Blocked	2020-08-18 00:52:56
103.100.188.29	attack	Unauthorized connection attempt from IP address 103.100.188.29 on Port 445(SMB)	2020-08-18 01:17:08
111.231.18.208	attackbots	Aug 17 16:42:02 xeon sshd[57735]: Failed password for root from 111.231.18.208 port 38106 ssh2	2020-08-18 01:12:37
94.23.33.22	attack	$f2bV_matches	2020-08-18 01:03:01
211.144.69.249	attackbots	2020-08-17T18:57:26.147232billing sshd[14609]: Failed password for invalid user admin from 211.144.69.249 port 3729 ssh2 2020-08-17T19:02:48.057353billing sshd[26766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.69.249 user=root 2020-08-17T19:02:49.317884billing sshd[26766]: Failed password for root from 211.144.69.249 port 3102 ssh2 ...	2020-08-18 01:04:19
103.60.212.2	attackspambots	Aug 17 12:15:28 game-panel sshd[23220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.212.2 Aug 17 12:15:30 game-panel sshd[23220]: Failed password for invalid user admin from 103.60.212.2 port 54150 ssh2 Aug 17 12:18:47 game-panel sshd[23365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.212.2	2020-08-18 01:31:50
31.193.125.236	attackbots	Unauthorized connection attempt from IP address 31.193.125.236 on Port 445(SMB)	2020-08-18 01:14:11
51.75.76.201	attack	web-1 [ssh_2] SSH Attack	2020-08-18 01:06:07
52.148.134.250	attack	/app_master/telerik.web.ui.dialoghandler.aspx	2020-08-18 00:46:43
112.85.42.104	attack	Aug 17 09:55:56 dignus sshd[32423]: Failed password for root from 112.85.42.104 port 22433 ssh2 Aug 17 09:55:58 dignus sshd[32423]: Failed password for root from 112.85.42.104 port 22433 ssh2 Aug 17 09:56:07 dignus sshd[32453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root Aug 17 09:56:09 dignus sshd[32453]: Failed password for root from 112.85.42.104 port 46644 ssh2 Aug 17 09:56:11 dignus sshd[32453]: Failed password for root from 112.85.42.104 port 46644 ssh2 ...	2020-08-18 01:01:17
5.196.225.174	attackbotsspam	Invalid user wch from 5.196.225.174 port 50419	2020-08-18 00:50:33
62.122.156.74	attackbotsspam	Aug 17 14:02:45 sshgateway sshd\[25282\]: Invalid user patrick from 62.122.156.74 Aug 17 14:02:45 sshgateway sshd\[25282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.122.156.74 Aug 17 14:02:47 sshgateway sshd\[25282\]: Failed password for invalid user patrick from 62.122.156.74 port 33062 ssh2	2020-08-18 01:06:52
134.175.150.132	attackbots	$f2bV_matches	2020-08-18 00:49:18

Recently Reported IPs

187.188.202.97	77.40.70.10	13.65.147.228	220.140.3.43
187.154.229.174	191.233.232.251	200.33.4.68	228.204.25.28
192.254.104.112	41.215.180.237	190.152.71.46	77.243.46.200
177.35.18.146	58.31.197.252	50.38.49.14	149.163.34.106
3.90.64.79	132.182.156.100	119.139.239.61	235.61.184.172