AbuseIPDB » 27.43.204.96

27.43.204.96 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 26%: ?

26%

ISP	China Unicom Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS17816
Domain Name	chinaunicom.cn
Country	China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 27.43.204.96

Whois 27.43.204.96

IP Abuse Reports for 27.43.204.96:

This IP address has been reported a total of 67 times from 26 distinct sources. 27.43.204.96 was first reported on December 1st 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Anonymous	2025-06-14 03:33:15 (1 week ago)	2025-06-14T04:33:14.123890+01:00 vps kernel: [11612476.731014] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more2025-06-14T04:33:14.123890+01:00 vps kernel: [11612476.731014] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=27.43.204.96 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=2041 DF PROTO=TCP SPT=19063 DPT=7574 WINDOW=14520 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
IgorS.zg.hr	2025-06-13 09:03:19 (1 week ago)	Web application attack detected by fail2ban	Hacking Web App Attack
Anonymous	2025-06-12 19:56:41 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
rtbh.com.tr	2025-06-12 00:07:04 (1 week ago)	list.rtbh.com.tr report: tcp/23	Brute-Force
rtbh.com.tr	2025-06-10 00:07:02 (2 weeks ago)	list.rtbh.com.tr report: tcp/23	Brute-Force
Anonymous	2025-06-09 07:27:02 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
sashan	2025-02-16 03:34:21 (4 months ago)	2025-02-16T06:34:21.095795+03:00 gate kernel: [102719.876995] nftables: JAIL-TELNET IN=wan OUT= MAC= ... show more2025-02-16T06:34:21.095795+03:00 gate kernel: [102719.876995] nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=27.43.204.96 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=45538 DF PROTO=TCP SPT=4304 DPT=23 WINDOW=14520 RES=0x00 SYN URGP=0 ... show less	Port Scan
MPL	2025-02-14 14:51:14 (4 months ago)	tcp/2323 (4 or more attempts)	Port Scan
MPL	2025-02-14 14:51:14 (4 months ago)	tcp/2323 (4 or more attempts)	Port Scan
Anonymous	2025-02-12 16:30:05 (4 months ago)	Triggered: repeated knocking on closed ports.	Port Scan
Anonymous	2025-02-11 21:19:38 (4 months ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
Study Bitcoin 🤗	2024-11-29 03:50:29 (6 months ago)	Port probe to tcp/8080 (http) [srv130]	Port Scan Bad Web Bot Web App Attack
ps-center	2024-11-24 06:06:07 (7 months ago)	DIS-W: TCP-Scanner. Port: 23	Port Scan
oh.mg	2024-11-22 13:17:56 (7 months ago)	(mod_security) mod_security (id:949110) triggered by 27.43.204.96 (CN/China/-): 1 in the last 3600 s ... show more(mod_security) mod_security (id:949110) triggered by 27.43.204.96 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Nov 22 13:17:48.073551 2024] [:error] [pid 2861304:tid 140622572799744] [client 27.43.204.96:25356] [client 27.43.204.96] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "184"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 23)"] [ver "OWASP_CRS/4.0.0-rc1"] [tag "anomaly-evaluation"] [hostname "127.0.1.1"] [uri "/setup.cgi"] [unique_id "Z0CEfDiYuMYKcpT46eeSqwAAAA8"] show less	Port Scan
gu-alvareza	2024-10-30 07:05:32 (7 months ago)	NETGEAR.DGN1000.CGI.Unauthenticated.Remote.Code.Execution	Hacking Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩