JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 105.27.237.138

105.27.237.138 was found in our database!

This IP was reported 180 times. Confidence of Abuse is 61%: ?

61%

ISP	SEACOM Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37100
Domain Name	seacom.mu
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 105.27.237.138

Whois 105.27.237.138

IP Abuse Reports for 105.27.237.138:

This IP address has been reported a total of 180 times from 18 distinct sources. 105.27.237.138 was first reported on April 11th 2021, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 excill	2026-06-21 03:07:00 (3 hours ago)	Honeypot mesh observed 3690 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇫🇷 ✨	2026-06-20 23:31:21 (7 hours ago)	Rule : MSSQLSERVER UserAccount : sa sa Reason: Password did not match that for the login provided. ... show more Rule : MSSQLSERVER UserAccount : sa sa Reason: Password did not match that for the login provided. [CLIENT: 105.27.237.138] show less	Port Scan Brute-Force
🇹🇷 ferique	2026-06-20 19:07:08 (11 hours ago)	Real-time Intercept: SQL attack. Reference: 2026-06-20 22:07:01.10 Logon Login failed for user 's ... show more Real-time Intercept: SQL attack. Reference: 2026-06-20 22:07:01.10 Logon Login failed for user 'sa'. [105.27.237.138] show less	Brute-Force
🇹🇷 ferique	2026-06-20 16:05:04 (14 hours ago)	Real-time Intercept: SQL attack. Reference: 2026-06-20 19:05:03.75 Logon Login failed for user 's ... show more Real-time Intercept: SQL attack. Reference: 2026-06-20 19:05:03.75 Logon Login failed for user 'sa'. [105.27.237.138] show less	Brute-Force
🇳🇱 Kolo	2026-06-20 05:36:56 (1 day ago)	WhoTouchedMySSH honeypot SSH bruteforce from 105.27.237.138 (Nairobi, KE)	Brute-Force SSH
🇺🇸 COMPLEX	2026-06-20 05:30:31 (1 day ago)	Banned by Multi Agent · node …kwnl · attempts=5 · SSH brute-force / scan	Brute-Force SSH
🇫🇷 sprmario	2026-06-19 16:59:18 (1 day ago)	Rule : RDP Rule: RDP Event: RDP 105.27.237.138	SSH Brute-Force
🇮🇱 spd.co.il	2026-06-16 14:02:26 (4 days ago)	Unauthorized access attempts on ports: 1433	Brute-Force
🇹🇷 Detmach	2026-06-15 13:04:34 (5 days ago)	Security attack detected. Multiple failed attempts from 105.27.237.138. IP banned for 1440 minutes a ... show more Security attack detected. Multiple failed attempts from 105.27.237.138. IP banned for 1440 minutes at 15.06.2026 16:04:19. Failed attempts: 3 show less	Brute-Force
Anonymous	2026-06-14 14:03:39 (6 days ago)	RdpGuard detected brute-force attempt on MS-SQL	Brute-Force
Anonymous	2026-06-14 13:11:43 (6 days ago)	RdpGuard detected brute-force attempt on MS-SQL	Brute-Force
🇨🇿 Petr Dub	2026-06-14 13:11:15 (6 days ago)	Brute-force attack on MS SQL server, port 1433.	Brute-Force
🇹🇷 Detmach	2026-03-31 15:04:17 (2 months ago)	Security attack detected. Multiple failed attempts from 105.27.237.138. IP banned for 1440 minutes a ... show more Security attack detected. Multiple failed attempts from 105.27.237.138. IP banned for 1440 minutes at 31.03.2026 18:03:40. Failed attempts: 3 show less	Brute-Force
🇹🇷 Detmach	2026-03-30 13:28:18 (2 months ago)	Security attack detected. Multiple failed attempts from 105.27.237.138. IP banned for 1440 minutes a ... show more Security attack detected. Multiple failed attempts from 105.27.237.138. IP banned for 1440 minutes at 30.03.2026 16:27:42. Failed attempts: 3 show less	Brute-Force
🇨🇭 TOCE	2026-03-30 11:49:29 (2 months ago)	58 hits seen on 2026-03-30, ports 1433 (MSSQL) on a honeypot from www.toce.ch	Port Scan

Showing 1 to 15 of 180 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.199.68.155

🇺🇸 192.155.90.220

🇧🇷 189.73.51.142

🇳🇱 159.223.213.49

🇨🇦 85.217.149.12

🇷🇺 82.116.45.201

🇻🇳 222.252.169.143

🇳🇱 152.42.148.252

🇮🇹 151.95.211.132

🇨🇳 121.15.140.235

🇨🇳 120.48.14.72

🇳🇱 91.92.40.6

🇨🇦 85.217.149.7

🇮🇱 46.210.194.224

🇨🇳 27.24.141.169

🇺🇸 205.210.31.109

🇦🇺 203.221.144.203

🇷🇺 178.208.228.61

🇬🇧 150.228.9.147

🇨🇳 140.143.192.102