JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.253.27.121

103.253.27.121 was found in our database!

This IP was reported 65 times. Confidence of Abuse is 37%: ?

37%

ISP	AXGN
Usage Type	Data Center/Web Hosting/Transit
ASN	AS133210
Hostname(s)	laccess.piousdiet.com
Domain Name	axgn.com.sg
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.253.27.121

Whois 103.253.27.121

IP Abuse Reports for 103.253.27.121:

This IP address has been reported a total of 65 times from 27 distinct sources. 103.253.27.121 was first reported on August 23rd 2021, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 soc-yk	2026-06-15 17:42:11 (6 days ago)	Type: suspicious_network_activity Risk: 50 Events: 391479 Evidence: - Persistent suspicious network ... show more Type: suspicious_network_activity Risk: 50 Events: 391479 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇮🇩 soc-yk	2026-06-14 14:55:11 (1 week ago)	Type: suspicious_network_activity Risk: 100 Events: 175914 Evidence: - Persistent suspicious networ ... show more Type: suspicious_network_activity Risk: 100 Events: 175914 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇮🇩 fazar	2026-05-28 19:00:30 (3 weeks ago)	bad-behavior: 15 attempts from 103.253.27.121 on node: bdj02	Exploited Host Web App Attack
🇮🇩 soc-yk	2026-05-28 10:10:10 (3 weeks ago)	Type: credential_attack Threat: credential_spraying_actor Risk: 100 Events: 105654 Evidence: - Repe ... show more Type: credential_attack Threat: credential_spraying_actor Risk: 100 Events: 105654 Evidence: - Repeated authentication attack activity detected - Credential abuse behavior observed - Multi-event operational persistence identified show less	Brute-Force SSH
🇮🇩 soc-yk	2026-05-27 23:22:12 (3 weeks ago)	Type: web_scanning Threat: public_web_exploitation_scanner Risk: 100 Events: 15002868 Evidence: - A ... show more Type: web_scanning Threat: public_web_exploitation_scanner Risk: 100 Events: 15002868 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified show less	Web App Attack
🇮🇩 soc-yk	2026-05-27 21:46:10 (3 weeks ago)	Type: credential_attack Threat: credential_spraying_actor Risk: 100 Events: 70436 Evidence: - Repea ... show more Type: credential_attack Threat: credential_spraying_actor Risk: 100 Events: 70436 Evidence: - Repeated authentication attack activity detected - Credential abuse behavior observed - Multi-event operational persistence identified show less	Brute-Force SSH
🇮🇩 soc-yk	2026-05-27 21:22:13 (3 weeks ago)	Type: suspicious_network_activity Threat: suspicious_public_web_client Risk: 100 Events: 334571 Evi ... show more Type: suspicious_network_activity Threat: suspicious_public_web_client Risk: 100 Events: 334571 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇮🇩 Burayot	2026-05-24 22:08:48 (4 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 103.253.27.121 (SG/Singapore/lacces ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 103.253.27.121 (SG/Singapore/laccess.piousdiet.com): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 ROCKETLAB	2026-05-18 16:35:00 (1 month ago)		Brute-Force
🇧🇷 ICS Labs	2026-05-14 13:12:28 (1 month ago)	ICS Labs identified 103.253.27.121 as a malicious indicator from threat intelligence.	Hacking
🇪🇸 robotstxt	2026-05-05 17:18:51 (1 month ago)	103.253.27.121 - - [05/May/2026:17:01:24 +0000] "GET /wp-admin.php HTTP/1.1" 404 28134 "www.google.c ... show more 103.253.27.121 - - [05/May/2026:17:01:24 +0000] "GET /wp-admin.php HTTP/1.1" 404 28134 "www.google.com" rt="0.469" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "-" h="www.noudiari.es" sn="www.noudiari.es" ru="/wp-admin.php" u="/index.php" ucs="-" ua="unix:/var/run/php/noudiari82.sock" us="404" uct="0.000" urt="0.469" 103.253.27.121 - - [05/May/2026:17:01:25 +0000] "GET /wp-admin.php HTTP/1.1" 404 28135 "www.google.com" rt="0.469" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "-" h="www.noudiari.es" sn="www.noudiari.es" ru="/wp-admin.php" u="/index.php" ucs="-" ua="unix:/var/run/php/noudiari82.sock" us="404" uct="0.000" urt="0.469" 103.253.27.121 - - [05/May/2026:17:01:24 +0000] "GET /wp-admin.php HTTP/1.1" 404 28134 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G ... show less	Bad Web Bot
🇪🇸 seoxan.es	2026-05-05 01:53:14 (1 month ago)	Scraping with bruteforce directories	Bad Web Bot
🇨🇭 backslash	2026-05-04 17:33:00 (1 month ago)	block ruleset WAF detection and high score on abuseIPDB 149EB1B42C242111FADBBC2EF8F90219570691E1	Bad Web Bot
🇲🇾 Rizzy	2026-05-04 12:23:50 (1 month ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-05-04 00:12:44 (1 month ago)	103.253.27.121 - - [04/May/2026:03:12:43 +0300] "GET /xmlrpc.php HTTP/1.1" 404 683 "www.google.com" ... show more 103.253.27.121 - - [04/May/2026:03:12:43 +0300] "GET /xmlrpc.php HTTP/1.1" 404 683 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" ... show less	Web App Attack

Showing 1 to 15 of 65 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.42

🇱🇹 141.98.11.41

🇨🇳 112.235.40.36

🇷🇺 90.188.59.70

🇻🇳 27.79.43.110

🇻🇪 190.97.249.161

🇳🇱 91.92.42.64

🇱🇹 81.30.98.49

🇫🇷 51.68.126.146

🇺🇸 44.225.145.12

🇱🇺 44.161.119.55

🇸🇬 43.172.196.154

🇧🇷 170.0.62.165

🇫🇮 147.185.133.93

🇫🇮 147.185.133.35

🇵🇭 120.29.90.193

🇺🇸 107.150.98.237

🇺🇸 44.171.217.241

🇩🇪 8.211.39.215

🇷🇴 2.57.122.177