AbuseIPDB » 27.254.253.172

27.254.253.172 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 100%: ?

100%

ISP	Fujitsu1
Usage Type	Data Center/Web Hosting/Transit
Domain Name	csloxinfo.com
Country	Thailand
City	Bangkok, Krung Thep Maha Nakhon

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 27.254.253.172

Whois 27.254.253.172

IP Abuse Reports for 27.254.253.172:

This IP address has been reported a total of 69 times from 26 distinct sources. 27.254.253.172 was first reported on December 22nd 2020, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
IrisFlower	20 hours ago	Unauthorized connection attempt detected from IP address 27.254.253.172 to port 80 [T]	Port Scan
Anonymous	21 hours ago	SSH Scan	Port Scan
IrisFlower	21 hours ago	Unauthorized connection attempt detected from IP address 27.254.253.172 to port 80 [T]	Port Scan
IrisFlower	18 Jan 2021	Unauthorized connection attempt detected from IP address 27.254.253.172 to port 80 [T]	Port Scan
Sawasdee	17 Jan 2021	Unwanted checking 80 or 443 port ...	Bad Web Bot
Anonymous	17 Jan 2021	SSH Scan	Port Scan
ChillScanner	17 Jan 2021	<WWW> TCP (SYN) 27.254.253.172:41905 -> port 80, len 40	Port Scan
Unwasted	17 Jan 2021	Abusive content scan (abuse_score:>80)	Hacking Brute-Force Web App Attack
hermawan	17 Jan 2021	[Sun Jan 17 18:12:37.335974 2021] [:error] [pid 1015:tid 139940607055616] [client 27.254.253.172:628 ... show more[Sun Jan 17 18:12:37.335974 2021] [:error] [pid 1015:tid 139940607055616] [client 27.254.253.172:62871] [client 27.254.253.172] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/coreruleset-3.3.1-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1041"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/manager/html/"] [unique_id "YAQbpSsIIVvvYBAKBKam2wAAAPA"] ... show less	Hacking Web App Attack
IrisFlower	17 Jan 2021	Unauthorized connection attempt detected from IP address 27.254.253.172 to port 80 [T]	Port Scan
Anonymous	16 Jan 2021	SSH Scan	Port Scan
SE-botlist	16 Jan 2021	Port scan denied	Port Scan
IrisFlower	16 Jan 2021	Unauthorized connection attempt detected from IP address 27.254.253.172 to port 80 [T]	Port Scan
NXTwoThou	15 Jan 2021	/manager/html/	Web App Attack
Anonymous	15 Jan 2021	SSH Scan	Port Scan

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩