Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Republic of Lithuania

Internet Service Provider: BK DC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Make a comment on this IP
Type Details Datetime
attackspambots 
Autoban   5.133.66.20 AUTH/CONNECT
 2019-12-13 04:58:26
Comments on same subnet:
IP Type Details Datetime
5.133.66.72 attackbotsspam 
Mar  9 13:13:25 mail.srvfarm.net postfix/smtpd[4035559]: NOQUEUE: reject: RCPT from unknown[5.133.66.72]: 554 5.7.1 Service unavailable; Client host [5.133.66.72] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=
Mar  9 13:13:25 mail.srvfarm.net postfix/smtpd[4047795]: NOQUEUE: reject: RCPT from unknown[5.133.66.72]: 554 5.7.1 Service unavailable; Client host [5.133.66.72] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=
Mar  9 13:15:20 mail.srvfarm.net postfix/smtpd[4047463]: NOQUEUE: reject: RCPT from unknown[5.133.66.72]: 554 5.7.1 Service unavailable; Client host [5.133.66.72] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=
 2020-03-10 00:26:13
5.133.66.188 attack 
[ER hit] Tried to deliver spam. Already well known.
 2020-03-09 15:48:30
5.133.66.17 attackbots 
2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] sender verify fail for \: Unrouteable address
2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] F=\ rejected RCPT \: Sender verify failed
2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] sender verify fail for \: Unrouteable address
2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] F=\ rejected RCPT \: Sender verify failed
2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] sender verify fail for \: Unrouteable address
2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] F=\ rejected RCPT \: Sender verify failed
2
...
 2020-03-09 02:14:28
5.133.66.86 attackspambots 
Mar  7 15:11:34 mail.srvfarm.net postfix/smtpd[2793240]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  7 15:12:17 mail.srvfarm.net postfix/smtpd[2781946]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  7 15:12:17 mail.srvfarm.net postfix/smtpd[2793242]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  7 15:13:25 mail.srvfarm.net postfix/smtpd[2793240]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8
2020-03-07 23:53:53
5.133.66.26 attack 
Mar  6 15:11:19 mail.srvfarm.net postfix/smtpd[2136420]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  6 15:13:17 mail.srvfarm.net postfix/smtpd[2133617]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  6 15:13:17 mail.srvfarm.net postfix/smtpd[2149507]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  6 15:15:23 mail.srvfarm.net postfix/smtpd[2149517]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8
2020-03-07 02:16:11
5.133.66.45 attackspam 
Mar  4 22:23:24 mail.srvfarm.net postfix/smtpd[173814]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  4 22:23:24 mail.srvfarm.net postfix/smtpd[160422]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  4 22:23:24 mail.srvfarm.net postfix/smtpd[173825]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  4 22:23:30 mail.srvfarm.net postfix/smtpd[160387]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8
2020-03-05 09:20:09
5.133.66.239 attack 
postfix
 2020-01-28 02:01:16
5.133.66.19 attackspambots 
Postfix RBL failed
 2020-01-21 00:38:31
5.133.66.100 attackbotsspam 
Postfix RBL failed
 2020-01-03 08:03:13
5.133.66.10 attack 
Lines containing failures of 5.133.66.10
Jan  1 14:20:49 shared04 postfix/smtpd[20916]: connect from tank.tamnhapho.com[5.133.66.10]
Jan  1 14:20:49 shared04 policyd-spf[21178]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.10; helo=tank.herahostnameech.com; envelope-from=x@x
Jan x@x
Jan  1 14:20:49 shared04 postfix/smtpd[20916]: disconnect from tank.tamnhapho.com[5.133.66.10] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Jan  1 14:21:18 shared04 postfix/smtpd[21527]: connect from tank.tamnhapho.com[5.133.66.10]
Jan  1 14:21:19 shared04 policyd-spf[21640]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.10; helo=tank.herahostnameech.com; envelope-from=x@x
Jan x@x
Jan  1 14:21:19 shared04 postfix/smtpd[21527]: disconnect from tank.tamnhapho.com[5.133.66.10] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Jan  1 14:21:47 shared04 postfix/smtpd[20916]: connect from tank.tamnhapho.com........
------------------------------
 2020-01-02 03:17:18
5.133.66.41 attackspam 
Postfix DNSBL listed. Trying to send SPAM.
 2019-12-25 02:05:19
5.133.66.80 attackspam 
Lines containing failures of 5.133.66.80
Dec 23 06:02:52 shared04 postfix/smtpd[9630]: connect from fruhostname.tamnhapho.com[5.133.66.80]
Dec 23 06:02:53 shared04 policyd-spf[10880]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.80; helo=fruhostname.offshomal.com; envelope-from=x@x
Dec x@x
Dec 23 06:02:53 shared04 postfix/smtpd[9630]: disconnect from fruhostname.tamnhapho.com[5.133.66.80] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Dec 23 06:02:57 shared04 postfix/smtpd[9630]: connect from fruhostname.tamnhapho.com[5.133.66.80]
Dec 23 06:02:57 shared04 policyd-spf[10880]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.80; helo=fruhostname.offshomal.com; envelope-from=x@x
Dec x@x
Dec 23 06:02:57 shared04 postfix/smtpd[9630]: disconnect from fruhostname.tamnhapho.com[5.133.66.80] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Dec 23 06:03:40 shared04 postfix/smtpd[9630]: connec........
------------------------------
 2019-12-23 17:57:47
5.133.66.18 attack 
email spam
 2019-12-19 21:46:42
5.133.66.48 attackspam 
email spam
 2019-12-19 18:44:18
5.133.66.53 attack 
email spam
 2019-12-19 18:16:00
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.133.66.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45908
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.133.66.20.			IN	A

;; AUTHORITY SECTION:
.			334	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121201 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 04:58:22 CST 2019
;; MSG SIZE  rcvd: 115
Host info
20.66.133.5.in-addr.arpa domain name pointer reduce.tamnhapho.com.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.66.133.5.in-addr.arpa	name = reduce.tamnhapho.com.

Authoritative answers can be found from:
Related IP info:
5.133.66.222
5.133.66.243
5.133.66.95
5.133.66.46
5.133.66.9
5.133.66.166
5.133.66.184
5.133.66.234
5.133.66.87
5.133.66.138
5.133.66.218
5.133.66.59
5.133.66.130
5.133.66.49
5.133.66.41
5.133.66.159
5.133.66.64
5.133.66.128
5.133.66.112
5.133.66.168
5.133.66.216
5.133.66.163
5.133.66.139
5.133.66.162
5.133.66.81
5.133.66.44
5.133.66.237
5.133.66.70
5.133.66.209
5.133.66.8
5.133.66.134
5.133.66.48
5.133.66.76
5.133.66.137
5.133.66.12
5.133.66.215
5.133.66.194
5.133.66.174
5.133.66.189
5.133.66.154
5.133.66.78
5.133.66.13
5.133.66.136
5.133.66.18
5.133.66.51
5.133.66.236
5.133.66.171
5.133.66.220
5.133.66.68
5.133.66.47
5.133.66.254
5.133.66.156
5.133.66.23
5.133.66.33
5.133.66.29
5.133.66.110
5.133.66.4
5.133.66.227
5.133.66.93
5.133.66.116
5.133.66.195
5.133.66.151
5.133.66.146
5.133.66.244
5.133.66.169
5.133.66.27
5.133.66.92
5.133.66.240
5.133.66.98
5.133.66.253
5.133.66.123
5.133.66.126
5.133.66.239
5.133.66.104
5.133.66.231
5.133.66.106
5.133.66.58
5.133.66.132
5.133.66.82
5.133.66.62
5.133.66.122
5.133.66.203
5.133.66.121
5.133.66.186
5.133.66.72
5.133.66.71
5.133.66.249
5.133.66.242
5.133.66.22
5.133.66.181
5.133.66.235
5.133.66.89
5.133.66.206
5.133.66.208
5.133.66.91
5.133.66.83
5.133.66.214
5.133.66.252
5.133.66.173
5.133.66.107
5.133.66.127
5.133.66.241
5.133.66.199
5.133.66.10
5.133.66.158
5.133.66.211
5.133.66.170
5.133.66.53
5.133.66.207
5.133.66.145
5.133.66.115
5.133.66.161
5.133.66.84
5.133.66.210
5.133.66.219
5.133.66.180
5.133.66.213
5.133.66.55
5.133.66.131
5.133.66.133
5.133.66.2
5.133.66.114
5.133.66.16
5.133.66.149
5.133.66.99
5.133.66.97
5.133.66.187
5.133.66.193
5.133.66.14
5.133.66.90
5.133.66.178
5.133.66.109
5.133.66.88
5.133.66.73
5.133.66.63
5.133.66.200
5.133.66.28
5.133.66.113
5.133.66.205
5.133.66.21
5.133.66.192
5.133.66.238
5.133.66.50
5.133.66.7
5.133.66.141
5.133.66.100
5.133.66.229
5.133.66.177
5.133.66.204
5.133.66.179
5.133.66.176
5.133.66.185
5.133.66.157
5.133.66.152
5.133.66.223
5.133.66.79
5.133.66.196
5.133.66.226
5.133.66.233
5.133.66.245
5.133.66.201
5.133.66.1
5.133.66.24
5.133.66.142
5.133.66.36
5.133.66.164
5.133.66.85
5.133.66.15
5.133.66.57
5.133.66.124
5.133.66.3
5.133.66.140
5.133.66.247
5.133.66.147
5.133.66.111
5.133.66.225
5.133.66.25
5.133.66.221
5.133.66.125
5.133.66.246
5.133.66.56
5.133.66.37
5.133.66.232
5.133.66.32
5.133.66.117
5.133.66.60
5.133.66.188
5.133.66.65
5.133.66.77
5.133.66.251
5.133.66.248
5.133.66.148
5.133.66.198
5.133.66.129
5.133.66.52
5.133.66.96
5.133.66.11
5.133.66.19
5.133.66.230
5.133.66.172
5.133.66.26
5.133.66.197
5.133.66.150
5.133.66.165
5.133.66.102
5.133.66.250
5.133.66.144
5.133.66.118
5.133.66.167
5.133.66.67
5.133.66.94
5.133.66.191
5.133.66.86
5.133.66.175
5.133.66.143
5.133.66.61
5.133.66.224
5.133.66.202
5.133.66.135
5.133.66.80
5.133.66.38
5.133.66.17
5.133.66.5
5.133.66.120
5.133.66.183
5.133.66.54
5.133.66.30
5.133.66.35
5.133.66.75
5.133.66.20
5.133.66.66
5.133.66.217
5.133.66.39
5.133.66.103
5.133.66.105
5.133.66.155
5.133.66.153
5.133.66.74
5.133.66.228
5.133.66.108
5.133.66.45
5.133.66.6
5.133.66.212
5.133.66.119
5.133.66.190
5.133.66.31
5.133.66.69
5.133.66.40
5.133.66.182
5.133.66.34
5.133.66.42
5.133.66.160
5.133.66.43
5.133.66.101
Related comments:
IP Type Details Datetime
140.143.33.202 attack 
Feb 22 01:05:06 ny01 sshd[3371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.33.202
Feb 22 01:05:08 ny01 sshd[3371]: Failed password for invalid user admin from 140.143.33.202 port 45370 ssh2
Feb 22 01:07:01 ny01 sshd[4127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.33.202
 2020-02-22 14:16:39
95.92.150.105 attack 
Feb 22 05:18:52 server sshd[3368532]: Failed password for invalid user sdtd from 95.92.150.105 port 38796 ssh2
Feb 22 05:36:16 server sshd[3379198]: Failed password for invalid user f2 from 95.92.150.105 port 48466 ssh2
Feb 22 05:53:50 server sshd[3389751]: Failed password for invalid user a1 from 95.92.150.105 port 58620 ssh2
 2020-02-22 13:52:37
171.244.43.52 attack 
Invalid user golflife from 171.244.43.52 port 53524
 2020-02-22 14:10:10
106.246.250.202 attackbots 
Feb 22 05:54:13 vps647732 sshd[9198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.250.202
Feb 22 05:54:15 vps647732 sshd[9198]: Failed password for invalid user bruno from 106.246.250.202 port 60031 ssh2
...
 2020-02-22 13:43:42
182.254.198.16 attackbotsspam 
Port scan detected on ports: 1433[TCP], 1433[TCP], 65529[TCP]
 2020-02-22 13:48:14
128.1.39.48 attackspambots 
Feb 22 05:46:04 web8 sshd\[2758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.1.39.48  user=list
Feb 22 05:46:05 web8 sshd\[2758\]: Failed password for list from 128.1.39.48 port 43054 ssh2
Feb 22 05:48:00 web8 sshd\[3739\]: Invalid user bpadmin from 128.1.39.48
Feb 22 05:48:00 web8 sshd\[3739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.1.39.48
Feb 22 05:48:02 web8 sshd\[3739\]: Failed password for invalid user bpadmin from 128.1.39.48 port 58594 ssh2
 2020-02-22 13:48:30
106.12.157.243 attackspambots 
Feb 22 06:41:23 plex sshd[28149]: Invalid user administrator from 106.12.157.243 port 53994
 2020-02-22 13:49:41
112.215.113.10 attackspambots 
Feb 22 07:06:52 lnxmysql61 sshd[17218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10
 2020-02-22 14:08:06
202.175.46.170 attackspam 
Feb 21 19:29:03 kapalua sshd\[3271\]: Invalid user wangxm from 202.175.46.170
Feb 21 19:29:03 kapalua sshd\[3271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=z46l170.static.ctm.net
Feb 21 19:29:05 kapalua sshd\[3271\]: Failed password for invalid user wangxm from 202.175.46.170 port 39738 ssh2
Feb 21 19:32:58 kapalua sshd\[3592\]: Invalid user teamsystem from 202.175.46.170
Feb 21 19:32:58 kapalua sshd\[3592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=z46l170.static.ctm.net
 2020-02-22 13:37:23
222.186.173.183 attackbots 
Feb 22 06:44:19 ns381471 sshd[30765]: Failed password for root from 222.186.173.183 port 55862 ssh2
Feb 22 06:44:22 ns381471 sshd[30765]: Failed password for root from 222.186.173.183 port 55862 ssh2
 2020-02-22 13:46:02
103.91.85.149 attackspam 
Unauthorised access (Feb 22) SRC=103.91.85.149 LEN=52 TTL=116 ID=4724 DF TCP DPT=445 WINDOW=8192 CWR ECE SYN
 2020-02-22 13:57:53
102.42.51.56 attack 
Unauthorised access (Feb 22) SRC=102.42.51.56 LEN=40 TTL=51 ID=20049 TCP DPT=23 WINDOW=19629 SYN
 2020-02-22 14:12:01
185.36.81.57 attackspambots 
Feb 22 05:46:12 mail postfix/smtpd\[501\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Feb 22 06:22:01 mail postfix/smtpd\[1068\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Feb 22 06:39:49 mail postfix/smtpd\[1312\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
Feb 22 06:57:37 mail postfix/smtpd\[1554\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\
 2020-02-22 14:15:53
80.90.80.54 attack 
Automatic report - XMLRPC Attack
 2020-02-22 13:35:17
51.83.78.109 attack 
Feb 22 06:25:47 [host] sshd[7640]: Invalid user om
Feb 22 06:25:47 [host] sshd[7640]: pam_unix(sshd:a
Feb 22 06:25:50 [host] sshd[7640]: Failed password
 2020-02-22 13:47:32

Recently Reported IPs

12.21.186.39 45.4.58.198 14.191.210.244 223.208.229.203
5.133.66.196 3.139.110.50 76.100.39.99 5.133.66.2
104.149.99.133 223.98.241.183 97.159.169.191 5.133.66.183
75.161.209.130 5.133.66.19 190.150.152.183 128.4.220.51
208.125.56.97 69.208.82.128 71.156.25.108 68.61.137.95