27.104.221.244

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: M1 Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	27.104.221.244 was recorded 16 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 16, 50, 50	2019-11-26 02:10:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.104.221.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;27.104.221.244.			IN	A

;; AUTHORITY SECTION:
.			210	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112501 1800 900 604800 86400

;; Query time: 499 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 26 02:13:16 CST 2019
;; MSG SIZE  rcvd: 118

Host info

244.221.104.27.in-addr.arpa domain name pointer 244.221.104.27.unknown.m1.com.sg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
244.221.104.27.in-addr.arpa	name = 244.221.104.27.unknown.m1.com.sg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.239.238.129	attackspam	2020-01-10T10:48:43.801990shield sshd\[8332\]: Invalid user a from 185.239.238.129 port 49756 2020-01-10T10:48:43.807099shield sshd\[8332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.239.238.129 2020-01-10T10:48:45.504149shield sshd\[8332\]: Failed password for invalid user a from 185.239.238.129 port 49756 ssh2 2020-01-10T10:49:21.428782shield sshd\[8390\]: Invalid user finger from 185.239.238.129 port 60546 2020-01-10T10:49:21.433624shield sshd\[8390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.239.238.129	2020-01-10 18:57:14
221.235.184.78	attackbots	Jan 10 11:28:26 debian-2gb-nbg1-2 kernel: \[911416.485988\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=221.235.184.78 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=52368 PROTO=TCP SPT=48771 DPT=2281 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-10 18:47:28
58.218.56.79	attack	SIP/5060 Probe, BF, Hack -	2020-01-10 18:22:14
142.93.97.100	attack	10443/tcp 119/tcp 5901/tcp... [2019-11-10/2020-01-09]37pkt,37pt.(tcp)	2020-01-10 18:49:37
46.38.144.32	attackbots	Jan 10 11:34:16 relay postfix/smtpd\[2514\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 11:34:35 relay postfix/smtpd\[1002\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 11:34:49 relay postfix/smtpd\[2513\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 11:35:11 relay postfix/smtpd\[1002\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 11:35:27 relay postfix/smtpd\[379\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-10 18:38:07
139.59.88.26	attack	Jan 10 08:15:15 SilenceServices sshd[18579]: Failed password for root from 139.59.88.26 port 48726 ssh2 Jan 10 08:18:39 SilenceServices sshd[21400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.88.26 Jan 10 08:18:41 SilenceServices sshd[21400]: Failed password for invalid user idr from 139.59.88.26 port 50448 ssh2	2020-01-10 18:48:01
184.105.139.102	attackspam	2323/tcp 11211/tcp 7547/tcp... [2019-11-18/2020-01-09]35pkt,13pt.(tcp),2pt.(udp)	2020-01-10 18:39:24
121.17.43.63	attackbots	1433/tcp 1433/tcp 1433/tcp [2019-11-15/2020-01-10]3pkt	2020-01-10 18:58:37
1.0.150.241	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 10-01-2020 04:50:08.	2020-01-10 18:22:48
95.49.130.158	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.49.130.158/ PL - 1H : (58) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN5617 IP : 95.49.130.158 CIDR : 95.48.0.0/14 PREFIX COUNT : 183 UNIQUE IP COUNT : 5363456 ATTACKS DETECTED ASN5617 : 1H - 3 3H - 4 6H - 12 12H - 17 24H - 28 DateTime : 2020-01-10 05:50:05 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2020-01-10 18:26:11
62.234.105.16	attackspambots	Jan 10 00:17:52 hanapaa sshd\[24822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.105.16 user=root Jan 10 00:17:54 hanapaa sshd\[24822\]: Failed password for root from 62.234.105.16 port 43642 ssh2 Jan 10 00:20:58 hanapaa sshd\[25134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.105.16 user=root Jan 10 00:21:00 hanapaa sshd\[25134\]: Failed password for root from 62.234.105.16 port 35482 ssh2 Jan 10 00:24:16 hanapaa sshd\[25510\]: Invalid user carlos from 62.234.105.16	2020-01-10 18:26:41
190.12.74.162	attackbotsspam	Automatic report - XMLRPC Attack	2020-01-10 18:53:07
87.106.202.9	attackspam	firewall-block, port(s): 64190/tcp	2020-01-10 18:29:32
159.203.201.227	attack	firewall-block, port(s): 17758/tcp	2020-01-10 18:51:09
51.15.147.80	attackbotsspam	SIPVicious Scanner Detection	2020-01-10 18:25:09

Recently Reported IPs

213.149.51.44	180.76.120.152	178.128.219.221	62.210.167.67
200.52.19.138	111.6.79.189	83.143.133.77	125.115.176.86
67.205.151.91	14.140.131.43	85.221.150.12	185.175.93.34
96.90.64.201	2.120.96.145	170.150.1.177	94.44.236.10
45.38.167.73	117.190.50.179	106.60.30.183	41.139.235.93