27.1.2.8 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
27.1.253.142	attack	Invalid user suporte from 27.1.253.142 port 39162	2020-09-27 07:16:35
27.1.253.142	attackspam	Invalid user acct from 27.1.253.142 port 46286	2020-09-26 23:45:23
27.1.253.142	attack	Invalid user acct from 27.1.253.142 port 46286	2020-09-26 15:36:15
27.1.253.142	attack	Aug 25 13:00:29 pixelmemory sshd[387984]: Invalid user team from 27.1.253.142 port 56116 Aug 25 13:00:29 pixelmemory sshd[387984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Aug 25 13:00:29 pixelmemory sshd[387984]: Invalid user team from 27.1.253.142 port 56116 Aug 25 13:00:31 pixelmemory sshd[387984]: Failed password for invalid user team from 27.1.253.142 port 56116 ssh2 Aug 25 13:01:14 pixelmemory sshd[388117]: Invalid user hug from 27.1.253.142 port 35186 ...	2020-08-26 05:13:15
27.1.253.142	attack	Aug 21 17:29:33 journals sshd\[96101\]: Invalid user xufang from 27.1.253.142 Aug 21 17:29:33 journals sshd\[96101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Aug 21 17:29:34 journals sshd\[96101\]: Failed password for invalid user xufang from 27.1.253.142 port 39414 ssh2 Aug 21 17:32:04 journals sshd\[96374\]: Invalid user infoweb from 27.1.253.142 Aug 21 17:32:04 journals sshd\[96374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 ...	2020-08-21 23:09:15
27.1.253.142	attackspambots	Aug 7 01:06:00 vpn01 sshd[17529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Aug 7 01:06:02 vpn01 sshd[17529]: Failed password for invalid user enkjidc from 27.1.253.142 port 49670 ssh2 ...	2020-08-07 07:45:07
27.1.253.142	attackbotsspam	2020-08-01T13:52[Censored Hostname] sshd[25675]: Failed password for root from 27.1.253.142 port 59608 ssh2 2020-08-01T13:56[Censored Hostname] sshd[28172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 user=root 2020-08-01T13:56[Censored Hostname] sshd[28172]: Failed password for root from 27.1.253.142 port 48872 ssh2[...]	2020-08-01 20:02:49
27.1.253.142	attackbots	Jul 30 06:02:47 PorscheCustomer sshd[13668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Jul 30 06:02:48 PorscheCustomer sshd[13668]: Failed password for invalid user tbjeong from 27.1.253.142 port 56866 ssh2 Jul 30 06:06:36 PorscheCustomer sshd[13757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 ...	2020-07-30 16:19:58
27.1.253.142	attackbots	Jul 27 17:08:07 server sshd[26855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Jul 27 17:08:09 server sshd[26855]: Failed password for invalid user liuzc from 27.1.253.142 port 51966 ssh2 Jul 27 17:19:57 server sshd[27593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Jul 27 17:20:00 server sshd[27593]: Failed password for invalid user hyoseung from 27.1.253.142 port 34308 ssh2	2020-07-27 23:53:24
27.1.253.142	attackspambots	Jul 17 15:50:30 server sshd[22739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Jul 17 15:50:33 server sshd[22739]: Failed password for invalid user rapa from 27.1.253.142 port 37608 ssh2 Jul 17 15:54:55 server sshd[22988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 ...	2020-07-17 23:36:52
27.1.253.142	attackspam	Jun 1 06:09:42 haigwepa sshd[10463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.1.253.142 Jun 1 06:09:44 haigwepa sshd[10463]: Failed password for invalid user 123sa\r from 27.1.253.142 port 33660 ssh2 ...	2020-06-01 13:18:11
27.1.253.142	attackspam	May 4 17:26:16 firewall sshd[22041]: Invalid user 6yhn^YHN from 27.1.253.142 May 4 17:26:18 firewall sshd[22041]: Failed password for invalid user 6yhn^YHN from 27.1.253.142 port 46072 ssh2 May 4 17:27:19 firewall sshd[22068]: Invalid user bill from 27.1.253.142 ...	2020-05-05 04:43:04
27.1.253.142	attackbotsspam	$f2bV_matches	2020-04-18 15:31:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.1.2.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34010
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;27.1.2.8.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025061100 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 11 18:11:03 CST 2025
;; MSG SIZE  rcvd: 101

Host info

Host 8.2.1.27.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.2.1.27.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.250.22.69	attack	" "	2019-11-19 19:47:42
121.155.239.190	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=30773)(11190859)	2019-11-19 20:11:50
14.227.211.124	attack	[portscan] tcp/23 [TELNET] *(RWIN=31283)(11190859)	2019-11-19 20:15:57
190.131.214.2	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=5242)(11190859)	2019-11-19 19:59:12
37.6.122.64	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=52020)(11190859)	2019-11-19 19:49:25
60.215.217.221	attack	[portscan] tcp/23 [TELNET] *(RWIN=40590)(11190859)	2019-11-19 19:56:24
104.168.168.20	attackbotsspam	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(11190859)	2019-11-19 20:12:19
107.191.1.136	attack	[portscan] tcp/23 [TELNET] *(RWIN=14600)(11190859)	2019-11-19 19:45:27
222.134.78.50	attackbots	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(11190859)	2019-11-19 20:08:55
80.82.78.33	attack	80.82.78.33 was recorded 5 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 99, 223	2019-11-19 20:06:04
41.38.56.34	attackbots	[portscan] tcp/1433 [MsSQL] *(RWIN=8192)(11190859)	2019-11-19 19:57:12
115.206.145.174	attackbotsspam	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(11190859)	2019-11-19 20:20:53
94.253.108.71	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=60357)(11190859)	2019-11-19 20:23:21
110.245.135.101	attackbots	[portscan] tcp/21 [FTP] [scan/connect: 9 time(s)] in blocklist.de:'listed [ftp]' *(RWIN=65535)(11190859)	2019-11-19 20:03:03
113.53.41.162	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=59189)(11190859)	2019-11-19 20:22:03

Recently Reported IPs

87.121.84.208	52.180.146.145	144.172.96.140	144.172.117.46
204.141.100.150	38.46.207.121	147.182.248.135	81.42.213.178
193.105.134.143	144.172.114.36	135.237.125.177	194.180.49.153
134.209.199.232	8.155.37.27	34.219.163.169	27.73.1.216
210.22.178.133	91.231.89.211	123.203.13.213	62.60.232.104