112.104.27.194

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: Digital United Inc.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	112.104.27.194 - - [01/Sep/2019:09:08:34 +0200] "GET /wp-login.php HTTP/1.1" 302 573 ...	2019-09-01 21:12:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.104.27.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3392
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.104.27.194.			IN	A

;; AUTHORITY SECTION:
.			83	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090100 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 21:12:46 CST 2019
;; MSG SIZE  rcvd: 118

Host info

194.27.104.112.in-addr.arpa domain name pointer 112-104-27-194.adsl.dynamic.seed.net.tw.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
194.27.104.112.in-addr.arpa	name = 112-104-27-194.adsl.dynamic.seed.net.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.238.109	attackspam	1585130749 - 03/25/2020 11:05:49 Host: zg-0312b-118.stretchoid.com/192.241.238.109 Port: 1434 UDP Blocked	2020-03-25 18:35:35
185.98.87.143	attackbots	firewall-block, port(s): 3398/tcp	2020-03-25 18:41:43
61.244.196.102	attackbots	Automatically reported by fail2ban report script (mx1)	2020-03-25 18:25:53
158.69.195.175	attackspambots	2020-03-25T09:14:33.680067vps773228.ovh.net sshd[1638]: Failed password for invalid user libuuid from 158.69.195.175 port 44758 ssh2 2020-03-25T09:19:22.473615vps773228.ovh.net sshd[3495]: Invalid user asterisk from 158.69.195.175 port 59344 2020-03-25T09:19:22.485544vps773228.ovh.net sshd[3495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.ip-158-69-195.net 2020-03-25T09:19:22.473615vps773228.ovh.net sshd[3495]: Invalid user asterisk from 158.69.195.175 port 59344 2020-03-25T09:19:24.478012vps773228.ovh.net sshd[3495]: Failed password for invalid user asterisk from 158.69.195.175 port 59344 ssh2 ...	2020-03-25 18:15:24
185.143.223.52	attackbots	Mar 25 08:53:12 src: 185.143.223.52 signature match: "POLICY vncviewer Java applet communication attempt" (sid: 1846) tcp port: 5800	2020-03-25 18:38:57
176.113.115.209	attackspambots	Mar 25 10:49:04 debian-2gb-nbg1-2 kernel: \[7388825.117812\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=176.113.115.209 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=8311 PROTO=TCP SPT=59486 DPT=3380 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-25 18:43:34
188.254.0.124	attackspam	2020-03-24 UTC: (29x) - administrator,baiat,cactiuser,chloris,couchdb,cups-pk-helper,db2fenc1,dv,dx,gambaa,georgel,hs,husty,info,keelia,kibana,krzysiek,ldapsun,lhb,ln,nh,ntp,riverdal,techuser,uno85,vw,wangwi,xl,zhangkun	2020-03-25 18:16:41
45.184.24.5	attackbotsspam	Mar 25 06:58:55 SilenceServices sshd[24192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.24.5 Mar 25 06:58:57 SilenceServices sshd[24192]: Failed password for invalid user router from 45.184.24.5 port 49938 ssh2 Mar 25 07:03:21 SilenceServices sshd[6361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.24.5	2020-03-25 18:23:19
185.220.103.9	attackspambots	Mar 25 08:58:08 vpn01 sshd[22957]: Failed password for root from 185.220.103.9 port 42706 ssh2 Mar 25 08:58:11 vpn01 sshd[22957]: Failed password for root from 185.220.103.9 port 42706 ssh2 ...	2020-03-25 18:22:52
162.243.133.86	attack	[portscan] tcp/22 [SSH] *(RWIN=65535)(03251034)	2020-03-25 18:45:47
195.231.0.193	attack	" "	2020-03-25 18:31:20
43.226.146.192	attack	2020-03-25T02:50:19.847983linuxbox-skyline sshd[17584]: Invalid user lolex from 43.226.146.192 port 57482 ...	2020-03-25 18:06:11
80.211.98.67	attack	Mar 25 00:10:15 web9 sshd\[6262\]: Invalid user jarod from 80.211.98.67 Mar 25 00:10:15 web9 sshd\[6262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.98.67 Mar 25 00:10:17 web9 sshd\[6262\]: Failed password for invalid user jarod from 80.211.98.67 port 52936 ssh2 Mar 25 00:13:52 web9 sshd\[6794\]: Invalid user ho from 80.211.98.67 Mar 25 00:13:52 web9 sshd\[6794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.98.67	2020-03-25 18:20:13
192.241.237.155	attack	Port 5351 scan denied	2020-03-25 18:36:18
190.210.164.165	attackbots	Invalid user cpanelconnecttrack from 190.210.164.165 port 50854	2020-03-25 18:11:25

Recently Reported IPs

134.209.87.150	82.64.45.6	113.192.36.73	13.88.41.105
44.127.9.18	5.62.5.177	190.39.239.136	60.19.183.95
121.137.77.82	5.57.33.71	64.63.252.170	126.88.175.196
202.131.37.79	180.127.93.234	40.68.59.231	115.61.194.162
14.162.167.6	101.115.68.94	108.78.65.0	206.36.99.208