JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 65.20.139.244

65.20.139.244 was found in our database!

This IP was reported 159 times. Confidence of Abuse is 67%: ?

67%

ISP	Earthlink Telecommunications Equipment Trading & Services DMCC
Usage Type	Fixed Line ISP
ASN	AS203214
Domain Name	earthlink.iq
Country	🇮🇶 Iraq
City	Baghdad, Baghdad

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 65.20.139.244

Whois 65.20.139.244

IP Abuse Reports for 65.20.139.244:

This IP address has been reported a total of 159 times from 67 distinct sources. 65.20.139.244 was first reported on September 5th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ksol-hostmaster	2026-06-08 19:43:15 (4 days ago)	Jun 8 21:43:14 ksol dovecot[74021]: auth-worker(84170): conn unix:auth-worker (uid=143): auth-worke ... show more Jun 8 21:43:14 ksol dovecot[74021]: auth-worker(84170): conn unix:auth-worker (uid=143): auth-worker<6>: sql(anonymized@email,65.20.139.244,<SDGqOMNT181BFIv0>): unknown user (given password: I-AM-A-SUCKER-USING-A-WRONG-PASSWORD) ... show less	Brute-Force
🇩🇪 jasperedv.de	2026-06-07 21:51:15 (4 days ago)	Failed IMAP Login - Brutforcing	Email Spam Brute-Force
🇩🇪 iNetWorker	2026-06-05 04:59:21 (1 week ago)	pop/imap	Brute-Force
🇫🇷 ingroscart.it	2026-06-05 00:27:57 (1 week ago)	(imapd) Failed IMAP login from 65.20.139.244 (IQ/Iraq/-)	Brute-Force
Anonymous	2026-06-05 00:10:46 (1 week ago)	65.20.139.244 detected on srv01	Brute-Force
🇷🇴 INTEQ	2026-06-04 18:11:39 (1 week ago)	Brute force attack from 65.20.139.244	Brute-Force
Anonymous	2026-06-02 21:43:00 (1 week ago)	(imapd) Failed IMAP login from 65.20.139.244 (IQ/Iraq/-)	Brute-Force
Anonymous	2026-05-31 08:00:51 (1 week ago)	2026-05-31 08:00:51 host dovecot: imap-login: Aborted login (1 authentication attempts): user=<xxx>, ... show more 2026-05-31 08:00:51 host dovecot: imap-login: Aborted login (1 authentication attempts): user=<xxx>, method=PLAIN, rip=65.20.139.244, lip=x.x.x.x, TLS show less	Hacking Brute-Force
🇧🇷 ICS Labs	2026-05-31 01:53:42 (1 week ago)	ICS Labs identified 65.20.139.244 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
Anonymous	2026-05-30 12:06:14 (1 week ago)	3 Login Attempts	Port Scan Brute-Force
🇯🇵 kawanchu	2026-05-25 08:26:34 (2 weeks ago)	Brute-force attack via SMTP AUTH. Repeated login failures on mail server.	Brute-Force
🇫🇷 iroco.co	2026-05-21 16:07:57 (3 weeks ago)	May 21 18:07:56 iroco cyrus/imap[1672822]: badlogin: [65.20.139.244] plaintext (winner_info10@iroco. ... show more May 21 18:07:56 iroco cyrus/imap[1672822]: badlogin: [65.20.139.244] plaintext ([email protected]) [SASL(-13): authentication failure: checkpass failed] ... show less	Email Spam
🇷🇴 INTEQ	2026-05-17 16:40:26 (3 weeks ago)	Brute force attack from 65.20.139.244	Brute-Force
🇷🇺 DZBOT	2026-05-17 07:09:24 (3 weeks ago)	DZBOT: [MTA] Brute-force users	Brute-Force
🇸🇮 basing	2026-05-05 07:53:52 (1 month ago)	2026-05-05 08:53:52 bs SASL PLAIN auth failed: rhost=65.20.139.244...	Brute-Force

Showing 1 to 15 of 159 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 193.24.211.107

🇲🇽 189.147.19.238

🇺🇸 147.185.132.214

🇭🇰 124.156.129.246

🇧🇷 20.226.64.72

🇺🇸 2a13:9500:16b:878::1

🇹🇭 202.29.235.12

🇺🇸 165.154.255.63

🇳🇱 52.232.19.79

🇻🇳 42.112.12.109

🇸🇬 34.143.255.1

🇨🇭 209.99.189.138

🇺🇸 168.91.173.57

🇮🇳 103.186.151.149

🇳🇱 64.225.74.135

🇸🇬 43.134.230.130

🇬🇧 35.203.210.45

🇨🇳 219.141.54.130

🇯🇵 212.32.76.9

🇫🇷 85.217.140.26