JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 23.27.208.194

23.27.208.194 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40676
Hostname(s)	23-27-208-194.ips.acedatacenter.com
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	Centreville, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 23.27.208.194

Whois 23.27.208.194

IP Abuse Reports for 23.27.208.194:

This IP address has been reported a total of 4 times from 4 distinct sources. 23.27.208.194 was first reported on March 2nd 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-04-13 20:06:55 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-04-11 03:53:16 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 23.27.208.194 (23-27-208-194.ips.acedatacenter. ... show more (mod_security) mod_security (id:210492) triggered by 23.27.208.194 (23-27-208-194.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 23:53:07.834816 2026] [security2:error] [pid 1425118:tid 1425118] [client 23.27.208.194:37853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.knuf1.fritsknuf.com"] [uri "/.env.staging"] [unique_id "adnFo1LMpSuN3oCLgfN6ZgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-04-10 14:51:48 (2 months ago)	[FriApr1016:51:42.4110042026][security2:error][pid1017771:tid1017897][client23.27.208.194:0]ModSecur ... show more [FriApr1016:51:42.4110042026][security2:error][pid1017771:tid1017897][client23.27.208.194:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"98\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"wildpferde.ch.136-243-54-122.cpanel.site\"][uri\"/wp-config.php.save\"][unique_id\"adkOfmW2yYl7ugVgILumiQAAAI4\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-03-02 09:41:51 (3 months ago)	2026-03-02T11:41:50.442873+02:00 zanati wp(www.sahpa.co.za)[3344113]: Blocked authentication attempt ... show more 2026-03-02T11:41:50.442873+02:00 zanati wp(www.sahpa.co.za)[3344113]: Blocked authentication attempt for Ncube from 23.27.208.194 ... show less	Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 146.190.90.87

🇸🇬 118.194.234.8

🇺🇸 74.125.75.150

🇺🇸 205.185.120.21

🇧🇷 170.238.160.191

🇩🇪 134.122.93.100

🇮🇩 41.216.177.55

🇺🇸 3.219.41.127

🇬🇧 2a06:4880:2000::40

🇩🇪 217.245.216.39

🇹🇿 197.186.18.62

🇺🇸 162.243.147.237

🇺🇸 159.148.54.75

🇳🇵 113.199.228.35

🇨🇩 102.216.240.61

🇺🇸 72.253.251.7

🇳🇱 45.148.10.141

🇹🇼 34.80.21.205

🇯🇵 20.243.208.191

🇺🇸 20.55.99.64