IP Address Inspector

ATTENTION
  • This IP has not seen any suspicious activity within the last 3 months. This IP is most likely clean and trustworthy now. (This record will remain public for historical purposes, however.)

66.96.216.133

The Project Honey Pot system has detected behavior from the IP address consistent with that of a spam harvester and mail server. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Lookup IP In: Domain Tools | SpamHaus | Spamcop | SenderBase | Google Groups | Google

Geographic Location United States (Wichita, Kansas)

Harvester First Seen approximately 8 years, 4 months, 5 weeks ago
Harvester Last Seen within 8 years, 4 months, 1 week
Harvester Sightings 99 visit(s) to 79 honey pot(s)
Harvester Results 24767.152 messages per visit
2,451,948 message(s) resulting from harvests
- First: approximately 8 years, 4 months, 4 weeks ago
- Last: approximately 1 week ago
99 email address(es) harvested
- First: approximately 8 years, 4 months, 5 weeks ago
- Last: Sun, 26 Mar 2006 15:16:06 -0800
Time From Harvest
To First Spam
Fastest: 3 days, 15 hours, 38 mins, 48 secs
Slowest: 1 month, 4 weeks, 4 hours, 9 mins, 27 secs
Average: 2 weeks, 1 day, 18 hours, 18 mins, 38 secs
Std Dev: 2 weeks, 1 day, 7 hours, 53 mins, 2 secs

First Received From approximately 5 years, 3 weeks ago
Last Received From within 5 years, 3 weeks
Number Received 4 email(s) sent from this IP

Associated Mail Servers
1.9.5.226 | SD
1.9.6.2 | SD
1.9.8.226 | SD
1.9.9.98 | SD
1.9.134.35 | SD
1.11.13.205 | SD
1.11.35.85 | S
1.11.48.141 | SD
1.11.101.80 | S
1.11.128.87 | SD
1.11.145.30 | SD
1.22.44.106 | S
1.22.84.96 | S
1.22.154.77 | SD
1.22.163.117 | SD
1.22.174.10 | SD
1.22.200.32 | SD
1.22.215.18 | SD
1.22.240.127 | S
1.23.38.251 | S
1.23.51.51 | SD
1.23.57.0 | S
1.23.63.26 | SD
1.23.84.74 | S
1.23.112.228 | S
1.23.122.130 | SD
1.23.134.228 
1.23.137.26 | SD
1.23.171.45 | S
1.24.117.1 | SD
1.24.118.135 | SD
1.24.123.25 | S
1.24.127.136 | S
1.25.26.145 | SD
1.25.33.181 | SD
1.25.92.86 | SD
1.25.180.92 | SD
1.25.228.210 | SD
1.25.235.107 | S
1.25.241.253 | S
1.26.138.50 | S
1.26.176.109 | S
1.26.190.197 | SD
1.26.208.100 | SD
1.26.236.212 | SD
1.27.7.152 | S
1.27.12.3 | S
1.27.15.52 | SDC
1.27.37.35 | SD
1.27.92.169 | SD
1.27.174.39 | SD
1.27.180.173 | S
1.34.80.215 | SD
1.34.134.158 | SD
1.34.147.72 | SD
1.34.161.81 | SD
1.38.16.53 | SD
1.38.16.68 | S
1.38.16.79 | SD
1.38.16.111 | SD
1.38.17.13 | SD
1.38.17.23 | SD
1.38.17.192 | S
1.38.17.212 | SD
1.38.18.94 | SD
1.38.21.236 | S
1.38.22.133 
1.38.24.234 | S
1.38.25.123 | S
1.38.25.224 | SD
1.38.28.103 | SD
1.38.29.140 
1.38.104.122 | S
1.38.173.55 
1.38.199.96 | SD
Associated Harvesters
86.124.191.82 | H
IPs In The Neighborhood
66.96.215.186
66.96.215.201
66.96.215.214
66.96.215.215
66.96.215.229
66.96.216.2 | S
66.96.216.5 | S
66.96.216.9 | SD
66.96.216.10 | SD
66.96.216.11 | SD
66.96.216.12 | S
66.96.216.18 | SD
66.96.216.19 | SD
66.96.216.20 | S
66.96.216.21 | SD
66.96.216.22
66.96.216.23 | SD
66.96.216.25 | SD
66.96.216.26 | SD
66.96.216.28 | SD
66.96.216.29
66.96.216.34 | SD
66.96.216.35 | S
66.96.216.36 | SD
66.96.216.37 | SD
66.96.216.38 | S
66.96.216.39 | SD
66.96.216.40 | S
66.96.216.41 | SD
66.96.216.42 | S
66.96.216.43 | S
66.96.216.44 | SD
66.96.216.45 | SD
66.96.216.46 | SD
66.96.216.50 | SD
66.96.216.51 | SD
66.96.216.52 | SD
66.96.216.53 | HS
66.96.216.54 | SD
66.96.216.55 | SD
66.96.216.56 | SD
66.96.216.57 | SD
66.96.216.58 | SD
66.96.216.59 | SD
66.96.216.60 | SD
66.96.216.61 | SD
66.96.216.62 | SD
66.96.216.67 | S
66.96.216.69 | SD
66.96.216.71
66.96.216.83 | SD
66.96.216.86 | SD
66.96.216.87 | SD
66.96.216.90 | S
66.96.216.103
66.96.216.114 | S
66.96.216.115 | SD
66.96.216.116 | SD
66.96.216.117 | SD
66.96.216.118 | S
66.96.216.119 | S
66.96.216.120 | SD
66.96.216.121 | SD
66.96.216.122 | S
66.96.216.123 | S
66.96.216.124 | SD
66.96.216.125 | S
66.96.216.126 | SD
66.96.216.134 | S
66.96.216.149
66.96.216.162 | SD
66.96.216.163 | S
66.96.216.164 | SD
66.96.216.165 | S
66.96.216.166 | S
66.96.216.167 | S
66.96.216.168 | S
66.96.216.169 | SD
66.96.216.170 | S
66.96.216.171 | SD
66.96.216.172 | SD
66.96.216.173
66.96.216.174 | S
66.96.216.229 | SC
66.96.216.242 | S
66.96.216.243 | SD
66.96.216.244 | SD
66.96.216.245 | SD
66.96.216.246 | SD
66.96.216.247 | S
66.96.216.248 | SD
66.96.216.249 | SD
66.96.216.250 | S
66.96.216.251 | SD
66.96.216.252 | S
66.96.216.253 | SD
66.96.216.254 | SD
66.96.217.4
66.96.217.21
66.96.217.22
66.96.217.23
66.96.217.24
66.96.217.25
66.96.217.37 | S
66.96.217.53 | S
66.96.217.85
66.96.217.101 | SDW
66.96.217.102 | SDW
66.96.216.133's User Agent Strings
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
Example Messages Sent From 66.96.216.133
From:
Subject: Important-Message
P.Hauser commented...
Also check here mail server IP 210.57.251.137 for this harvester IP 66.96.216.133!
August 04 2007 05:44 AM

P.Hauser commented...
One harvester was her in March 2006(!) with two different UAs at the same time:

66.96.216.133 - - [26/Mar/2006:23:38:19 +0200] "GET /robots.txt HTTP/1.0" 200 468 "-" "Python-urllib/1.16"
66.96.216.133 - - [26/Mar/2006:23:38:21 +0200] "GET / HTTP/1.0" 200 66047 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"

Received Viagra-SPAM from IP 76.1.58.3 (check this IP):

Return-Path: pbwdollship@alphaangelfish.com
Received: from xxxxxxxx.xxx.xxxxxxxx.xx (xxxxxxxx.xxx.xxxxxxxx.xx [xxx.xx.xx.xx])
by xxxxxxx with LMTP; Fri, 03 Aug 2007 04:12:50 +0200
X-Sieve: CMU Sieve 2.2
Received: from oh-76-1-58-3.dhcp.embarqhsd.net ([76.1.58.3]) by xxxxxxxx.xxx.xxxxxxxx.xx
with smtp id 1IGmeZ-1IfNWi0; Fri, 3 Aug 2007 04:12:35 +0200
Message-ID: 001701c7d552$305a0930$06c936a4@UTT
From: Ramona Mcnally pbwdollship@alphaangelfish.com
To: xxxxxxx@xxxxxxxx.xx
Subject: 50mg x 10 pills buy now
Date: Thu, 2 Aug 2007 22:12:17 -0400
August 02 2007 10:52 PM

P.Hauser commented...
See also associated mailserver IP 195.162.41.248 for havester IP 66.96.216.133. I received SPAM from this associated mailserver now. Read the SPAM there at IP 195.162.41.248 ...
July 30 2007 08:57 PM

P.Hauser commented...
IP 66.96.216.133 came here one time with two different UAs within a second:

66.96.216.133 - - [26/Mar/2006:23:38:19 +0200] "GET /robots.txt HTTP/1.0" [.] "-" "Python-urllib/1.16"
66.96.216.133 - - [26/Mar/2006:23:38:21 +0200] "GET / HTTP/1.0" [.] "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
July 26 2007 01:12 PM

Page generated on: July 28 2014 01:29:12 AM
do not follow this link

Privacy Policy | Terms of Use | About Project Honey Pot | FAQ | CloudFlare Site Protection | Contact Us

Copyright © 2004–14, Unspam Technologies, Inc. All rights reserved.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot

contact | wiki | email