45.129.33.45 - IPInfo

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: TT1 Datacenter UG (haftungsbeschraenkt)

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ET DROP Dshield Block Listed Source group 1 - port: 11919 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 02:42:24
attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 1629 proto: tcp cat: Misc Attackbytes: 60	2020-08-11 07:36:42

Comments on same subnet:

IP	Type	Details	Datetime
45.129.33.168	attack	Dec 13 21:22:00 router.asus.com kernel: DROP IN=eth0 OUT= MAC=b8:86:87:f3:ff:58:00:01:5c:98:9a:46:08:00 SRC=45.129.33.168 DST=AA.BB.CC.DD LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=22869 PROTO=TCP SPT=59221 DPT=21398 SEQ=3578506072 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Scans from the 45.129.33.0/24 range have been incessant. hostslick.de does not respond to email.	2020-12-14 11:37:48
45.129.33.122	attackbots	Port-scan: detected 150 distinct ports within a 24-hour window.	2020-10-14 07:07:41
45.129.33.147	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 39601 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 06:03:33
45.129.33.9	attackbotsspam	TCP (SYN) 45.129.33.9:53668 -> port 10226, len 44	2020-10-14 05:49:00
45.129.33.12	attack	TCP (SYN) 45.129.33.12:54343 -> port 60282, len 44	2020-10-14 05:48:33
45.129.33.19	attack	ET DROP Dshield Block Listed Source group 1 - port: 4578 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:48:01
45.129.33.22	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 6367 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:47:49
45.129.33.53	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 7394 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:47:33
45.129.33.56	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 13478 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:47:02
45.129.33.80	attackspam	TCP (SYN) 45.129.33.80:56794 -> port 5319, len 44	2020-10-14 05:46:44
45.129.33.101	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 39596 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:46:12
45.129.33.142	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 39635 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:45:42
45.129.33.145	attack	ET DROP Dshield Block Listed Source group 1 - port: 39557 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:45:18
45.129.33.13	attack	ET DROP Dshield Block Listed Source group 1 - port: 9853 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:30:31
45.129.33.18	attack	ET DROP Dshield Block Listed Source group 1 - port: 4098 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:29:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.129.33.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50609
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.129.33.45.			IN	A

;; AUTHORITY SECTION:
.			489	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081001 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 11 07:36:39 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 45.33.129.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.33.129.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.226.226.82	attackspambots	Oct 11 23:44:17 anodpoucpklekan sshd[37211]: Invalid user P@$$w0rd001 from 188.226.226.82 port 59594 ...	2019-10-12 07:52:18
137.74.201.15	attack	windhundgang.de 137.74.201.15 \[11/Oct/2019:21:01:15 +0200\] "POST /wp-login.php HTTP/1.1" 200 8415 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" windhundgang.de 137.74.201.15 \[11/Oct/2019:21:01:18 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4219 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-12 08:20:50
78.36.97.216	attack	detected by Fail2Ban	2019-10-12 08:32:00
219.85.174.71	attackspam	Unauthorized connection attempt from IP address 219.85.174.71 on Port 445(SMB)	2019-10-12 08:23:04
201.151.139.242	attackspam	Unauthorized connection attempt from IP address 201.151.139.242 on Port 445(SMB)	2019-10-12 08:08:19
164.177.54.185	attackbots	Unauthorized connection attempt from IP address 164.177.54.185 on Port 445(SMB)	2019-10-12 07:58:40
200.194.60.96	attackbotsspam	Unauthorized connection attempt from IP address 200.194.60.96 on Port 445(SMB)	2019-10-12 07:55:25
217.21.147.112	attackbotsspam	SMB Server BruteForce Attack	2019-10-12 08:25:24
220.130.178.36	attackbots	Oct 11 14:09:21 hanapaa sshd\[431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net user=root Oct 11 14:09:23 hanapaa sshd\[431\]: Failed password for root from 220.130.178.36 port 44646 ssh2 Oct 11 14:13:54 hanapaa sshd\[854\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net user=root Oct 11 14:13:56 hanapaa sshd\[854\]: Failed password for root from 220.130.178.36 port 55456 ssh2 Oct 11 14:18:21 hanapaa sshd\[1233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net user=root	2019-10-12 08:19:06
103.238.185.23	attackspambots	SMB Server BruteForce Attack	2019-10-12 07:54:13
170.254.151.214	attack	Unauthorized connection attempt from IP address 170.254.151.214 on Port 445(SMB)	2019-10-12 08:18:18
177.85.204.134	attack	Unauthorized connection attempt from IP address 177.85.204.134 on Port 445(SMB)	2019-10-12 08:29:09
163.172.111.25	attackbotsspam	SIP Server BruteForce Attack	2019-10-12 08:26:05
218.86.123.242	attackspambots	Oct 11 08:53:50 php1 sshd\[20830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242 user=root Oct 11 08:53:52 php1 sshd\[20830\]: Failed password for root from 218.86.123.242 port 58711 ssh2 Oct 11 08:57:39 php1 sshd\[21154\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242 user=root Oct 11 08:57:42 php1 sshd\[21154\]: Failed password for root from 218.86.123.242 port 22755 ssh2 Oct 11 09:01:37 php1 sshd\[21466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.86.123.242 user=root	2019-10-12 08:02:47
117.54.4.92	attackbotsspam	Unauthorized connection attempt from IP address 117.54.4.92 on Port 445(SMB)	2019-10-12 08:12:20

Recently Reported IPs

66.13.6.252	45.129.33.41	62.2.140.198	36.252.190.8
21.247.97.193	187.78.93.218	8.60.75.143	188.104.165.78
19.201.209.228	14.27.211.88	200.50.179.95	253.166.68.47
221.16.151.143	177.125.53.177	144.86.96.9	197.130.110.59
25.230.14.135	46.9.74.174	127.16.33.205	62.161.79.12