2.133.1.66 - IPInfo

Basic Info

City: Astana

Region: Astana

Country: Kazakhstan

Internet Service Provider: Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.133.164.41	attackbotsspam	[portscan] Port scan	2020-03-19 04:40:32
2.133.198.97	attackbots	Email rejected due to spam filtering	2020-03-04 01:28:51
2.133.118.254	attackbots	Nov 11 00:25:00 mailman postfix/smtpd[15122]: NOQUEUE: reject: RCPT from unknown[2.133.118.254]: 554 5.7.1 Service unavailable; Client host [2.133.118.254] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/2.133.118.254; from= to= proto=ESMTP helo=<[5.250.142.241]> Nov 11 00:29:37 mailman postfix/smtpd[15122]: NOQUEUE: reject: RCPT from unknown[2.133.118.254]: 554 5.7.1 Service unavailable; Client host [2.133.118.254] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/2.133.118.254; from= to= proto=ESMTP helo=<[5.250.142.241]>	2019-11-11 15:37:40
2.133.129.254	attackbots	Unauthorized connection attempt from IP address 2.133.129.254 on Port 445(SMB)	2019-09-09 07:15:11
2.133.146.145	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 05:32:54,411 INFO [amun_request_handler] PortScan Detected on Port: 445 (2.133.146.145)	2019-07-08 14:28:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.133.1.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24387
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.133.1.66.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022121500 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 15 17:41:38 CST 2022
;; MSG SIZE  rcvd: 103

Host info

66.1.133.2.in-addr.arpa domain name pointer 2.133.1.66.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.1.133.2.in-addr.arpa	name = 2.133.1.66.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.255.83.44	attackspambots	Aug 29 02:24:40 SilenceServices sshd[22778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.83.44 Aug 29 02:24:42 SilenceServices sshd[22778]: Failed password for invalid user kadri from 51.255.83.44 port 38766 ssh2 Aug 29 02:28:42 SilenceServices sshd[24305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.83.44	2019-08-29 12:33:10
187.190.153.118	attackbots	Aug 29 01:12:19 mxgate1 postfix/postscreen[6734]: CONNECT from [187.190.153.118]:16709 to [176.31.12.44]:25 Aug 29 01:12:19 mxgate1 postfix/dnsblog[6739]: addr 187.190.153.118 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 29 01:12:19 mxgate1 postfix/dnsblog[6739]: addr 187.190.153.118 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 29 01:12:19 mxgate1 postfix/dnsblog[6735]: addr 187.190.153.118 listed by domain cbl.abuseat.org as 127.0.0.2 Aug 29 01:12:19 mxgate1 postfix/dnsblog[6738]: addr 187.190.153.118 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Aug 29 01:12:20 mxgate1 postfix/dnsblog[6736]: addr 187.190.153.118 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 29 01:12:25 mxgate1 postfix/postscreen[6734]: DNSBL rank 5 for [187.190.153.118]:16709 Aug x@x Aug 29 01:12:26 mxgate1 postfix/postscreen[6734]: HANGUP after 1.3 from [187.190.153.118]:16709 in tests after SMTP handshake Aug 29 01:12:26 mxgate1 postfix/postscreen[6734]: DISCONNECT [187.1........ -------------------------------	2019-08-29 12:38:10
177.184.245.86	attackbotsspam	Currently 7 failed/unauthorized logins attempts via SMTP/IMAP whostnameh 7 different usernames and wrong password: 2019-08-29T01:13:20+02:00 x@x 2019-08-16T07:22:59+02:00 x@x 2019-08-06T01:27:19+02:00 x@x 2019-08-04T12:25:36+02:00 x@x 2019-08-01T05:05:57+02:00 x@x 2019-07-29T13:51:16+02:00 x@x 2019-07-08T02:46:29+02:00 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.184.245.86	2019-08-29 12:41:40
220.191.228.2	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 23:31:45,154 INFO [shellcode_manager] (220.191.228.2) no match, writing hexdump (677d19f8d41932a7f7e6a39c4596dcd5 :4064) - SMB (Unknown)	2019-08-29 12:07:14
1.186.45.250	attackbotsspam	Aug 29 05:05:23 root sshd[16943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.45.250 Aug 29 05:05:25 root sshd[16943]: Failed password for invalid user monero from 1.186.45.250 port 36357 ssh2 Aug 29 05:09:56 root sshd[17033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.45.250 ...	2019-08-29 12:16:44
92.223.159.3	attack	Aug 28 16:44:25 auw2 sshd\[22646\]: Invalid user alexandru from 92.223.159.3 Aug 28 16:44:25 auw2 sshd\[22646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.223.159.3 Aug 28 16:44:26 auw2 sshd\[22646\]: Failed password for invalid user alexandru from 92.223.159.3 port 48746 ssh2 Aug 28 16:48:32 auw2 sshd\[22996\]: Invalid user ts3srv from 92.223.159.3 Aug 28 16:48:32 auw2 sshd\[22996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.223.159.3	2019-08-29 12:00:56
115.208.150.77	attackbotsspam	SSH invalid-user multiple login attempts	2019-08-29 12:10:51
159.65.151.216	attackbots	Aug 29 03:51:45 hcbbdb sshd\[26700\]: Invalid user mathlida from 159.65.151.216 Aug 29 03:51:45 hcbbdb sshd\[26700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.151.216 Aug 29 03:51:47 hcbbdb sshd\[26700\]: Failed password for invalid user mathlida from 159.65.151.216 port 57508 ssh2 Aug 29 03:56:36 hcbbdb sshd\[27216\]: Invalid user cynthia from 159.65.151.216 Aug 29 03:56:36 hcbbdb sshd\[27216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.151.216	2019-08-29 12:21:43
54.38.18.211	attackspambots	Aug 29 02:21:31 localhost sshd\[7092\]: Invalid user postgres from 54.38.18.211 port 57532 Aug 29 02:21:31 localhost sshd\[7092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.18.211 Aug 29 02:21:34 localhost sshd\[7092\]: Failed password for invalid user postgres from 54.38.18.211 port 57532 ssh2 ...	2019-08-29 12:08:38
34.80.37.61	attackbots	Invalid user git from 34.80.37.61 port 50920 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.37.61 Failed password for invalid user git from 34.80.37.61 port 50920 ssh2 Invalid user ftp2 from 34.80.37.61 port 40088 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.37.61	2019-08-29 12:20:20
67.205.135.127	attack	Aug 29 06:29:47 OPSO sshd\[30762\]: Invalid user libuuid from 67.205.135.127 port 47438 Aug 29 06:29:47 OPSO sshd\[30762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.127 Aug 29 06:29:49 OPSO sshd\[30762\]: Failed password for invalid user libuuid from 67.205.135.127 port 47438 ssh2 Aug 29 06:33:38 OPSO sshd\[31542\]: Invalid user jupiter from 67.205.135.127 port 35362 Aug 29 06:33:38 OPSO sshd\[31542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.127	2019-08-29 12:37:09
92.41.93.215	attackbotsspam	weather fading and BBC RUYLES THE WAVES PRODUCERS	2019-08-29 12:08:57
119.29.170.202	attack	Aug 29 02:49:33 mail sshd\[22887\]: Invalid user gpu from 119.29.170.202 port 38358 Aug 29 02:49:33 mail sshd\[22887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202 Aug 29 02:49:34 mail sshd\[22887\]: Failed password for invalid user gpu from 119.29.170.202 port 38358 ssh2 Aug 29 02:52:29 mail sshd\[23214\]: Invalid user rodrigo from 119.29.170.202 port 37040 Aug 29 02:52:29 mail sshd\[23214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202	2019-08-29 12:36:32
212.0.149.87	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-29 00:47:43,465 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.0.149.87)	2019-08-29 12:35:10
41.33.205.10	attackspambots	Brute force attempt	2019-08-29 11:59:16

Recently Reported IPs

183.35.28.217	17.196.140.205	150.32.237.166	148.83.193.54
146.159.4.181	130.197.60.104	132.180.208.100	123.201.225.162
0.110.55.73	148.64.127.77	1.116.129.209	91.78.207.203
93.106.121.55	90.224.164.190	86.209.168.242	85.144.139.104
84.51.122.255	172.253.228.17	77.162.207.175	76.202.156.23