45.139.221.27 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Turkey

Internet Service Provider: Aygun Bugday

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	From return01@namedida.live Thu Jul 30 00:53:25 2020 Received: from namemx3.namedida.live ([45.139.221.27]:36167)	2020-07-30 14:47:16

Comments on same subnet:

IP	Type	Details	Datetime
45.139.221.25	spam	massive email spam > 30 messages/day to single address	2020-11-23 21:00:54
45.139.221.129	attackbotsspam	From softreturn@experienciazul10.live Thu Aug 20 00:49:06 2020 Received: from expermx7.experienciazul10.live ([45.139.221.129]:46099)	2020-08-20 17:44:25
45.139.221.191	attackbots	From back@carenciazero.live Thu Aug 13 17:43:19 2020 Received: from caremx10.carenciazero.live ([45.139.221.191]:56628)	2020-08-14 07:55:26
45.139.221.77	attackbots	From devolucao@oficinadolead.live Wed Aug 12 17:59:36 2020 Received: from cinamx2.oficinadolead.live ([45.139.221.77]:44233)	2020-08-13 09:58:19
45.139.221.128	attackbots	From retornos@experienciazul10.live Thu Aug 06 02:17:25 2020 Received: from expermx6.experienciazul10.live ([45.139.221.128]:35525)	2020-08-06 20:41:35
45.139.221.89	attack	From devolvido@melhordomercado.live Sat Aug 01 17:46:07 2020 Received: from mercmx3.melhordomercado.live ([45.139.221.89]:33523)	2020-08-02 07:51:50
45.139.221.67	attackbots	From adminreturn@pedironline.live Thu Jun 18 17:46:29 2020 Received: from pedimx10.pedironline.live ([45.139.221.67]:40770)	2020-06-19 04:59:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.139.221.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45776
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.139.221.27.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020073000 1800 900 604800 86400

;; Query time: 245 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 30 14:47:09 CST 2020
;; MSG SIZE  rcvd: 117

Host info

27.221.139.45.in-addr.arpa domain name pointer namemx3.namedida.live.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
27.221.139.45.in-addr.arpa	name = namemx3.namedida.live.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.144.47.29	attackspam	scans 58 times in preceeding hours on the ports (in chronological order) 17120 17121 17122 17123 17124 17125 17126 17127 17128 17129 17130 17131 17132 17133 17134 17135 17136 17137 17138 17139 17140 17141 17142 17143 17144 17145 17146 17147 17148 17149 17150 17151 17152 17153 17154 17155 17156 17157 17158 17159 17160 17161 17162 17163 17164 17165 17166 17167 17168 17169 17170 17171 17172 17173 17174 17175 17176 17177	2020-06-09 04:16:18
1.39.208.7	attack	The IP holder hacked my id.	2020-06-09 04:40:17
109.194.174.78	attack	Repeating Hacking Attempt	2020-06-09 04:22:18
117.176.104.102	attackbots	Jun 8 16:26:34 mail sshd\[55005\]: Invalid user r from 117.176.104.102 Jun 8 16:26:34 mail sshd\[55005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.176.104.102 ...	2020-06-09 04:31:09
118.193.32.219	attackbotsspam	Failed password for invalid user amf from 118.193.32.219 port 59482 ssh2	2020-06-09 04:35:37
163.172.29.120	attack	Jun 8 17:51:26 *** sshd[3100]: Invalid user gp from 163.172.29.120	2020-06-09 04:11:05
112.85.42.232	attackspam	Jun 8 22:09:53 home sshd[13674]: Failed password for root from 112.85.42.232 port 21774 ssh2 Jun 8 22:09:55 home sshd[13674]: Failed password for root from 112.85.42.232 port 21774 ssh2 Jun 8 22:09:56 home sshd[13674]: Failed password for root from 112.85.42.232 port 21774 ssh2 ...	2020-06-09 04:12:10
1.39.208.7	attack	The IP holder tried to get into my g-mail account.	2020-06-09 04:42:10
212.0.143.190	attackbotsspam	RDP Bruteforce	2020-06-09 04:38:53
122.201.206.187	attack	Unauthorized connection attempt from IP address 122.201.206.187 on Port 445(SMB)	2020-06-09 04:07:57
222.186.15.158	attack	Jun 8 22:29:04 Ubuntu-1404-trusty-64-minimal sshd\[26889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root Jun 8 22:29:05 Ubuntu-1404-trusty-64-minimal sshd\[26889\]: Failed password for root from 222.186.15.158 port 40113 ssh2 Jun 8 22:29:11 Ubuntu-1404-trusty-64-minimal sshd\[27118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root Jun 8 22:29:13 Ubuntu-1404-trusty-64-minimal sshd\[27118\]: Failed password for root from 222.186.15.158 port 10751 ssh2 Jun 8 22:29:18 Ubuntu-1404-trusty-64-minimal sshd\[27139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root	2020-06-09 04:30:29
103.253.42.59	attackspam	[2020-06-08 16:25:11] NOTICE[1288][C-00001cd5] chan_sip.c: Call from '' (103.253.42.59:60244) to extension '801146423112910' rejected because extension not found in context 'public'. [2020-06-08 16:25:11] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-08T16:25:11.739-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="801146423112910",SessionID="0x7f4d743d7af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.253.42.59/60244",ACLName="no_extension_match" [2020-06-08 16:26:18] NOTICE[1288][C-00001cd9] chan_sip.c: Call from '' (103.253.42.59:52362) to extension '46423112910' rejected because extension not found in context 'public'. [2020-06-08 16:26:18] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-08T16:26:18.580-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="46423112910",SessionID="0x7f4d743d7af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.253. ...	2020-06-09 04:43:18
76.66.166.35	attack	Honeypot attack, port: 5555, PTR: toroon2634w-lp140-01-76-66-166-35.dsl.bell.ca.	2020-06-09 04:04:43
46.38.145.252	attackbots	Jun 8 22:26:10 relay postfix/smtpd\[23301\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 22:27:32 relay postfix/smtpd\[29912\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 22:27:44 relay postfix/smtpd\[27786\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 22:29:10 relay postfix/smtpd\[29912\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 22:29:21 relay postfix/smtpd\[27786\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-09 04:35:50
54.37.149.233	attackspam	Jun 8 13:23:33 mockhub sshd[17705]: Failed password for root from 54.37.149.233 port 55812 ssh2 ...	2020-06-09 04:30:02

Recently Reported IPs

185.187.224.137	145.128.30.19	31.37.54.233	185.165.39.8
144.236.166.171	161.205.181.112	78.186.177.59	179.199.253.19
59.69.114.20	170.157.250.7	188.74.98.205	78.38.17.5
72.79.205.242	192.145.227.252	50.189.137.63	213.103.165.7
14.233.134.95	116.72.130.232	168.227.56.191	252.237.34.26