JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.202.33.213

5.202.33.213 was found in our database!

This IP was reported 422 times. Confidence of Abuse is 100%: ?

100%

ISP	Pishgaman Toseeh Ertebatat Company (Private Joint Stock)
Usage Type	Fixed Line ISP
ASN	AS49100
Domain Name	pishgaman.net
Country	🇮🇷 Iran (Islamic Republic of)
City	Tehran, Tehran

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.202.33.213

Whois 5.202.33.213

IP Abuse Reports for 5.202.33.213:

This IP address has been reported a total of 422 times from 67 distinct sources. 5.202.33.213 was first reported on June 21st 2021, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇰 mutebot.net	2026-06-16 05:52:08 (1 hour ago)	SRC=5.202.33.213, PROTO=TCP, SPT=55160, DPT=445	Port Scan
Anonymous	2026-06-16 04:51:49 (2 hours ago)	Unauthorized access (tcp/445/smb)	Port Scan
🇦🇹 urnilxfgbez	2026-06-15 22:45:00 (8 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 RAP	2026-06-15 16:39:02 (14 hours ago)	2026-06-15 16:39:02 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇩🇪 IP Analyzer	2026-06-14 21:00:06 (1 day ago)	Unauthorized connection attempt from IP address 5.202.33.213 on Port 445(SMB)	Port Scan
🇩🇪 centurion	2026-06-14 11:23:31 (1 day ago)	Blocked by UFW on ns02 [1433/tcp] Source port: 64992 TTL: 111 Packet length: 52 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [1433/tcp] Source port: 64992 TTL: 111 Packet length: 52 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-14 04:26:26 (2 days ago)	2026-06-14T05:26:25.764901+01:00 vps kernel: [43151342.820533] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-14T05:26:25.764901+01:00 vps kernel: [43151342.820533] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=5.202.33.213 DST=54.37.14.118 LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=19855 DF PROTO=TCP SPT=53895 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇫🇷 Little Iguana	2026-06-14 00:48:30 (2 days ago)	trying to access non-authorized port	Port Scan
🇬🇧 Birdo	2026-06-14 00:37:26 (2 days ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇦🇹 urnilxfgbez	2026-06-13 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇷 TheHoneyPotter	2026-06-13 13:36:58 (2 days ago)	Honeypot [fc-honeypot]: SMB traffic on port 445 Reported by: https://github.com/sefinek/T-Pot-To-Abu ... show more Honeypot [fc-honeypot]: SMB traffic on port 445 Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking
🇺🇸 drewf.ink	2026-06-13 08:59:17 (2 days ago)	[08:59] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): PC NETWORK PROGRAM 1.0 ... show more [08:59] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): PC NETWORK PROGRAM 1.0, LANMAN1.0, Windows for Workgroups 3.1a, LM1.2X002, LANMAN2.1, NT LM 0.12 show less	Hacking Exploited Host
🇫🇷 vtchost.com	2026-06-13 06:09:44 (3 days ago)	Jun 13 08:09:43 vtchost kernel: [82277.088212] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11 ... show more Jun 13 08:09:43 vtchost kernel: [82277.088212] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=5.202.33.213 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=22819 DF PROTO=TCP SPT=51608 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇱🇹 NotACaptcha	2026-06-12 16:50:12 (3 days ago)	Unauthorised access (Jun 12 19:50) SRC=5.202.33.213 LEN=52 TTL=109 ID=3317 DF TCP DPT=445 WINDOW=819 ... show more Unauthorised access (Jun 12 19:50) SRC=5.202.33.213 LEN=52 TTL=109 ID=3317 DF TCP DPT=445 WINDOW=8192 SYN show less	Port Scan
🇹🇼 safulou	2026-06-12 01:03:29 (4 days ago)	Detected attacking YCIS campus network (IDS/IPS): 60 events in 2026-06. Source: Synology IDS/IPS aut ... show more Detected attacking YCIS campus network (IDS/IPS): 60 events in 2026-06. Source: Synology IDS/IPS automatic report. show less	Port Scan Hacking

Showing 1 to 15 of 422 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.253.31.143

🇺🇸 209.97.144.79

🇺🇸 195.184.76.87

🇦🇪 152.32.180.86

🇨🇳 120.48.75.127

🇨🇳 111.170.202.90

🇷🇺 95.26.118.253

🇨🇦 69.159.18.173

🇸🇬 47.84.110.38

🇺🇸 34.75.20.193

🇺🇸 34.55.12.135

🇵🇷 24.41.230.165

🇰🇷 14.206.12.13

🇺🇸 216.73.216.74

🇬🇧 209.97.184.249

🇬🇧 193.176.29.18

🇨🇳 182.204.180.158

🇰🇷 175.207.205.249

🇺🇸 165.154.134.80

🇺🇸 152.42.28.41