5.133.66.93 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of Lithuania

Internet Service Provider: BK DC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Autoban 5.133.66.93 AUTH/CONNECT	2019-12-13 04:20:45

Comments on same subnet:

IP	Type	Details	Datetime
5.133.66.72	attackbotsspam	Mar 9 13:13:25 mail.srvfarm.net postfix/smtpd[4035559]: NOQUEUE: reject: RCPT from unknown[5.133.66.72]: 554 5.7.1 Service unavailable; Client host [5.133.66.72] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Mar 9 13:13:25 mail.srvfarm.net postfix/smtpd[4047795]: NOQUEUE: reject: RCPT from unknown[5.133.66.72]: 554 5.7.1 Service unavailable; Client host [5.133.66.72] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Mar 9 13:15:20 mail.srvfarm.net postfix/smtpd[4047463]: NOQUEUE: reject: RCPT from unknown[5.133.66.72]: 554 5.7.1 Service unavailable; Client host [5.133.66.72] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-03-10 00:26:13
5.133.66.188	attack	[ER hit] Tried to deliver spam. Already well known.	2020-03-09 15:48:30
5.133.66.17	attackbots	2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] sender verify fail for \: Unrouteable address 2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] F=\ rejected RCPT \: Sender verify failed 2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] sender verify fail for \: Unrouteable address 2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] F=\ rejected RCPT \: Sender verify failed 2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] sender verify fail for \: Unrouteable address 2020-03-08 14:42:31 H=caption.tamnhapho.com \(caption.obnalon.com\) \[5.133.66.17\] F=\ rejected RCPT \: Sender verify failed 2 ...	2020-03-09 02:14:28
5.133.66.86	attackspambots	Mar 7 15:11:34 mail.srvfarm.net postfix/smtpd[2793240]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 15:12:17 mail.srvfarm.net postfix/smtpd[2781946]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 15:12:17 mail.srvfarm.net postfix/smtpd[2793242]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 15:13:25 mail.srvfarm.net postfix/smtpd[2793240]: NOQUEUE: reject: RCPT from unknown[5.133.66.86]: 450 4.1.8	2020-03-07 23:53:53
5.133.66.26	attack	Mar 6 15:11:19 mail.srvfarm.net postfix/smtpd[2136420]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 15:13:17 mail.srvfarm.net postfix/smtpd[2133617]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 15:13:17 mail.srvfarm.net postfix/smtpd[2149507]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 15:15:23 mail.srvfarm.net postfix/smtpd[2149517]: NOQUEUE: reject: RCPT from unknown[5.133.66.26]: 450 4.1.8	2020-03-07 02:16:11
5.133.66.45	attackspam	Mar 4 22:23:24 mail.srvfarm.net postfix/smtpd[173814]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:23:24 mail.srvfarm.net postfix/smtpd[160422]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:23:24 mail.srvfarm.net postfix/smtpd[173825]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:23:30 mail.srvfarm.net postfix/smtpd[160387]: NOQUEUE: reject: RCPT from unknown[5.133.66.45]: 450 4.1.8	2020-03-05 09:20:09
5.133.66.239	attack	postfix	2020-01-28 02:01:16
5.133.66.19	attackspambots	Postfix RBL failed	2020-01-21 00:38:31
5.133.66.100	attackbotsspam	Postfix RBL failed	2020-01-03 08:03:13
5.133.66.10	attack	Lines containing failures of 5.133.66.10 Jan 1 14:20:49 shared04 postfix/smtpd[20916]: connect from tank.tamnhapho.com[5.133.66.10] Jan 1 14:20:49 shared04 policyd-spf[21178]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.10; helo=tank.herahostnameech.com; envelope-from=x@x Jan x@x Jan 1 14:20:49 shared04 postfix/smtpd[20916]: disconnect from tank.tamnhapho.com[5.133.66.10] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Jan 1 14:21:18 shared04 postfix/smtpd[21527]: connect from tank.tamnhapho.com[5.133.66.10] Jan 1 14:21:19 shared04 policyd-spf[21640]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.10; helo=tank.herahostnameech.com; envelope-from=x@x Jan x@x Jan 1 14:21:19 shared04 postfix/smtpd[21527]: disconnect from tank.tamnhapho.com[5.133.66.10] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Jan 1 14:21:47 shared04 postfix/smtpd[20916]: connect from tank.tamnhapho.com........ ------------------------------	2020-01-02 03:17:18
5.133.66.41	attackspam	Postfix DNSBL listed. Trying to send SPAM.	2019-12-25 02:05:19
5.133.66.80	attackspam	Lines containing failures of 5.133.66.80 Dec 23 06:02:52 shared04 postfix/smtpd[9630]: connect from fruhostname.tamnhapho.com[5.133.66.80] Dec 23 06:02:53 shared04 policyd-spf[10880]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.80; helo=fruhostname.offshomal.com; envelope-from=x@x Dec x@x Dec 23 06:02:53 shared04 postfix/smtpd[9630]: disconnect from fruhostname.tamnhapho.com[5.133.66.80] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 23 06:02:57 shared04 postfix/smtpd[9630]: connect from fruhostname.tamnhapho.com[5.133.66.80] Dec 23 06:02:57 shared04 policyd-spf[10880]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=5.133.66.80; helo=fruhostname.offshomal.com; envelope-from=x@x Dec x@x Dec 23 06:02:57 shared04 postfix/smtpd[9630]: disconnect from fruhostname.tamnhapho.com[5.133.66.80] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 23 06:03:40 shared04 postfix/smtpd[9630]: connec........ ------------------------------	2019-12-23 17:57:47
5.133.66.18	attack	email spam	2019-12-19 21:46:42
5.133.66.48	attackspam	email spam	2019-12-19 18:44:18
5.133.66.53	attack	email spam	2019-12-19 18:16:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.133.66.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24152
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.133.66.93.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121201 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 04:20:42 CST 2019
;; MSG SIZE  rcvd: 115

Host info

93.66.133.5.in-addr.arpa domain name pointer quickest.tamnhapho.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.66.133.5.in-addr.arpa	name = quickest.tamnhapho.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.190.137.33	attackspambots	2020-07-24T05:19:59.404967shield sshd\[5513\]: Invalid user pi from 178.190.137.33 port 35250 2020-07-24T05:19:59.450441shield sshd\[5512\]: Invalid user pi from 178.190.137.33 port 35248 2020-07-24T05:19:59.539562shield sshd\[5513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-190-137-33.adsl.highway.telekom.at 2020-07-24T05:19:59.571339shield sshd\[5512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-190-137-33.adsl.highway.telekom.at 2020-07-24T05:20:01.104888shield sshd\[5513\]: Failed password for invalid user pi from 178.190.137.33 port 35250 ssh2	2020-07-24 14:47:40
139.162.120.76	attackspambots	TCP (SYN) 139.162.120.76:55075 -> port 81, len 44	2020-07-24 14:31:27
74.124.24.114	attackspam	2020-07-24T05:16:20.180876abusebot-6.cloudsearch.cf sshd[9186]: Invalid user postgres from 74.124.24.114 port 56774 2020-07-24T05:16:20.186572abusebot-6.cloudsearch.cf sshd[9186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.124.24.114 2020-07-24T05:16:20.180876abusebot-6.cloudsearch.cf sshd[9186]: Invalid user postgres from 74.124.24.114 port 56774 2020-07-24T05:16:22.234823abusebot-6.cloudsearch.cf sshd[9186]: Failed password for invalid user postgres from 74.124.24.114 port 56774 ssh2 2020-07-24T05:20:28.010286abusebot-6.cloudsearch.cf sshd[9333]: Invalid user abc123 from 74.124.24.114 port 44026 2020-07-24T05:20:28.016122abusebot-6.cloudsearch.cf sshd[9333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.124.24.114 2020-07-24T05:20:28.010286abusebot-6.cloudsearch.cf sshd[9333]: Invalid user abc123 from 74.124.24.114 port 44026 2020-07-24T05:20:30.109593abusebot-6.cloudsearch.cf sshd[9333]: Fai ...	2020-07-24 14:09:58
185.234.217.39	attackbots	C1,WP GET /wp-login.php	2020-07-24 14:30:59
218.92.0.191	attack	07/24/2020-02:17:12.538536 218.92.0.191 Protocol: 6 ET SCAN Potential SSH Scan	2020-07-24 14:18:49
89.139.203.206	attackspam	Host Scan	2020-07-24 14:37:44
37.139.4.138	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-24 14:33:39
222.186.15.158	attackspam	Jul 23 23:13:41 dignus sshd[21908]: Failed password for root from 222.186.15.158 port 18670 ssh2 Jul 23 23:13:47 dignus sshd[21920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root Jul 23 23:13:49 dignus sshd[21920]: Failed password for root from 222.186.15.158 port 30205 ssh2 Jul 23 23:14:00 dignus sshd[21950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root Jul 23 23:14:01 dignus sshd[21950]: Failed password for root from 222.186.15.158 port 18303 ssh2 ...	2020-07-24 14:20:09
221.125.52.192	attackspambots	Jul 24 08:17:06 srv-ubuntu-dev3 sshd[77218]: Invalid user swt from 221.125.52.192 Jul 24 08:17:06 srv-ubuntu-dev3 sshd[77218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.52.192 Jul 24 08:17:06 srv-ubuntu-dev3 sshd[77218]: Invalid user swt from 221.125.52.192 Jul 24 08:17:08 srv-ubuntu-dev3 sshd[77218]: Failed password for invalid user swt from 221.125.52.192 port 59998 ssh2 Jul 24 08:21:38 srv-ubuntu-dev3 sshd[77736]: Invalid user santana from 221.125.52.192 Jul 24 08:21:38 srv-ubuntu-dev3 sshd[77736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.52.192 Jul 24 08:21:38 srv-ubuntu-dev3 sshd[77736]: Invalid user santana from 221.125.52.192 Jul 24 08:21:40 srv-ubuntu-dev3 sshd[77736]: Failed password for invalid user santana from 221.125.52.192 port 45566 ssh2 Jul 24 08:26:33 srv-ubuntu-dev3 sshd[78246]: Invalid user ts from 221.125.52.192 ...	2020-07-24 14:27:57
134.122.72.221	attackspambots	firewall-block, port(s): 2282/tcp	2020-07-24 14:33:08
111.161.74.118	attackbots	Jul 23 19:19:28 php1 sshd\[26538\]: Invalid user tester from 111.161.74.118 Jul 23 19:19:28 php1 sshd\[26538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.118 Jul 23 19:19:30 php1 sshd\[26538\]: Failed password for invalid user tester from 111.161.74.118 port 57526 ssh2 Jul 23 19:23:36 php1 sshd\[26921\]: Invalid user pdfbox from 111.161.74.118 Jul 23 19:23:36 php1 sshd\[26921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.118	2020-07-24 14:44:39
14.136.104.38	attackbots	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-07-24 14:45:15
152.32.167.107	attackbotsspam	2020-07-24T07:15:30.857480v22018076590370373 sshd[31119]: Invalid user willie from 152.32.167.107 port 46168 2020-07-24T07:15:30.863979v22018076590370373 sshd[31119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.167.107 2020-07-24T07:15:30.857480v22018076590370373 sshd[31119]: Invalid user willie from 152.32.167.107 port 46168 2020-07-24T07:15:32.381087v22018076590370373 sshd[31119]: Failed password for invalid user willie from 152.32.167.107 port 46168 ssh2 2020-07-24T07:20:17.338197v22018076590370373 sshd[11322]: Invalid user facturacion from 152.32.167.107 port 60454 ...	2020-07-24 14:24:12
157.230.10.212	attack	2020-07-24T12:16:11.970608billing sshd[8804]: Invalid user akila from 157.230.10.212 port 58074 2020-07-24T12:16:13.784945billing sshd[8804]: Failed password for invalid user akila from 157.230.10.212 port 58074 ssh2 2020-07-24T12:20:08.054444billing sshd[17684]: Invalid user karl from 157.230.10.212 port 45286 ...	2020-07-24 14:37:22
159.203.77.59	attackspambots	Jul 23 23:01:40 dignus sshd[20549]: Failed password for invalid user pin from 159.203.77.59 port 39400 ssh2 Jul 23 23:05:35 dignus sshd[20993]: Invalid user michele from 159.203.77.59 port 52372 Jul 23 23:05:35 dignus sshd[20993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.77.59 Jul 23 23:05:38 dignus sshd[20993]: Failed password for invalid user michele from 159.203.77.59 port 52372 ssh2 Jul 23 23:09:34 dignus sshd[21440]: Invalid user ftpadmin from 159.203.77.59 port 37114 ...	2020-07-24 14:23:09

Recently Reported IPs

160.170.56.9	103.161.96.246	236.215.130.121	221.243.232.51
226.78.196.236	75.44.187.238	97.35.67.143	233.44.128.81
204.253.67.227	5.133.66.92	152.98.175.237	94.203.40.224
5.133.66.89	191.170.223.169	5.133.66.9	74.227.138.128
39.230.144.149	202.47.115.48	157.103.141.73	126.178.6.115