27.105.14.85 - IPInfo

Basic Info

City: Tainan

Region: Tainan

Country: Taiwan, China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
27.105.148.31	attackspambots	Telnet Server BruteForce Attack	2020-08-18 19:16:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.105.14.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63262
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;27.105.14.85.			IN	A

;; AUTHORITY SECTION:
.			169	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023100601 1800 900 604800 86400

;; Query time: 473 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 07 00:47:13 CST 2023
;; MSG SIZE  rcvd: 105

Host info

85.14.105.27.in-addr.arpa domain name pointer 27-105-14-85-adsl-TPE.dynamic.so-net.net.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.14.105.27.in-addr.arpa	name = 27-105-14-85-adsl-TPE.dynamic.so-net.net.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
108.75.217.101	attack	Sep 7 16:14:19 kapalua sshd\[4128\]: Invalid user 204 from 108.75.217.101 Sep 7 16:14:19 kapalua sshd\[4128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108-75-217-101.lightspeed.irvnca.sbcglobal.net Sep 7 16:14:21 kapalua sshd\[4128\]: Failed password for invalid user 204 from 108.75.217.101 port 36554 ssh2 Sep 7 16:22:00 kapalua sshd\[4763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108-75-217-101.lightspeed.irvnca.sbcglobal.net user=root Sep 7 16:22:02 kapalua sshd\[4763\]: Failed password for root from 108.75.217.101 port 52840 ssh2	2019-09-08 10:48:23
5.135.152.97	attackbotsspam	Automatic report - Banned IP Access	2019-09-08 10:50:00
177.64.148.162	attackbotsspam	Sep 7 16:46:20 web9 sshd\[21984\]: Invalid user wordpress from 177.64.148.162 Sep 7 16:46:20 web9 sshd\[21984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.64.148.162 Sep 7 16:46:22 web9 sshd\[21984\]: Failed password for invalid user wordpress from 177.64.148.162 port 40162 ssh2 Sep 7 16:52:20 web9 sshd\[23212\]: Invalid user 1234 from 177.64.148.162 Sep 7 16:52:20 web9 sshd\[23212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.64.148.162	2019-09-08 11:08:38
128.199.80.77	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-09-08 11:32:24
130.61.95.73	attackspam	Motherfugging criminal pieces of shlt. A bullet in the head for them!	2019-09-08 11:20:47
222.186.42.15	attackspam	Sep 8 08:23:53 areeb-Workstation sshd[24294]: Failed password for root from 222.186.42.15 port 15092 ssh2 ...	2019-09-08 10:59:37
193.31.117.56	attack	MagicSpam Rule: from_blacklist; Spammer IP: 193.31.117.56	2019-09-08 11:29:43
167.71.203.150	attackspam	2019-09-08T02:43:06.142602abusebot-5.cloudsearch.cf sshd\[15331\]: Invalid user admin from 167.71.203.150 port 37864	2019-09-08 11:05:35
222.41.151.90	attackspambots	Sep 7 23:46:34 [munged] sshd[17539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.41.151.90	2019-09-08 11:11:16
112.84.60.131	attackspambots	[Aegis] @ 2019-09-07 22:46:16 0100 -> Sendmail rejected message.	2019-09-08 11:23:17
112.195.165.23	attackbots	2019-09-08T02:39:48.992914abusebot-5.cloudsearch.cf sshd\[15313\]: Invalid user 123456 from 112.195.165.23 port 34362	2019-09-08 10:50:58
51.75.29.61	attack	Sep 7 23:31:33 vps200512 sshd\[8232\]: Invalid user 123123 from 51.75.29.61 Sep 7 23:31:33 vps200512 sshd\[8232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.29.61 Sep 7 23:31:34 vps200512 sshd\[8232\]: Failed password for invalid user 123123 from 51.75.29.61 port 41248 ssh2 Sep 7 23:35:47 vps200512 sshd\[8293\]: Invalid user 12345 from 51.75.29.61 Sep 7 23:35:47 vps200512 sshd\[8293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.29.61	2019-09-08 11:38:02
191.36.199.73	attackbots	Automatic report - Port Scan Attack	2019-09-08 11:10:12
78.128.113.77	attackbotsspam	Sep 8 04:10:33 relay postfix/smtpd\[3748\]: warning: unknown\[78.128.113.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 04:10:40 relay postfix/smtpd\[3745\]: warning: unknown\[78.128.113.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 04:29:18 relay postfix/smtpd\[26270\]: warning: unknown\[78.128.113.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 04:29:25 relay postfix/smtpd\[3747\]: warning: unknown\[78.128.113.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 04:29:48 relay postfix/smtpd\[3745\]: warning: unknown\[78.128.113.77\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-08 10:46:00
2604:a880:2:d0::1edc:2001	attackspam	[munged]::443 2604:a880:2:d0::1edc:2001 - - [07/Sep/2019:23:44:44 +0200] "POST /[munged]: HTTP/1.1" 200 6981 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:2:d0::1edc:2001 - - [07/Sep/2019:23:44:57 +0200] "POST /[munged]: HTTP/1.1" 200 6852 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:2:d0::1edc:2001 - - [07/Sep/2019:23:45:05 +0200] "POST /[munged]: HTTP/1.1" 200 6849 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:2:d0::1edc:2001 - - [07/Sep/2019:23:45:18 +0200] "POST /[munged]: HTTP/1.1" 200 6848 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:2:d0::1edc:2001 - - [07/Sep/2019:23:45:21 +0200] "POST /[munged]: HTTP/1.1" 200 6846 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:2:d0::1edc:2001 - - [07/Sep/2019:23:45:2	2019-09-08 11:37:04

Recently Reported IPs

195.238.189.8	134.229.214.158	88.189.31.103	178.156.0.97
251.168.135.25	22.190.62.1	48.138.12.173	16.115.83.203
181.13.140.39	242.0.235.217	203.247.103.192	21.50.49.197
52.56.206.42	201.75.250.102	26.83.161.44	21.57.88.156
96.110.111.111	176.37.11.48	140.99.233.36	158.101.123.63