JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 23.27.244.95

23.27.244.95 was found in our database!

This IP was reported 193 times. Confidence of Abuse is 100%: ?

100%

ISP	Evoxt
Usage Type	Data Center/Web Hosting/Transit
ASN	AS149440
Domain Name	evoxt.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 23.27.244.95

Whois 23.27.244.95

IP Abuse Reports for 23.27.244.95:

This IP address has been reported a total of 193 times from 145 distinct sources. 23.27.244.95 was first reported on May 14th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 serverutama	2026-05-31 06:46:01 (4 days ago)	Nginx scanner: 23.27.244.95 - - [31/May/2026:13:43:55 +0700] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla ... show more Nginx scanner: 23.27.244.95 - - [31/May/2026:13:43:55 +0700] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-" 23.27.244.95 - - [31/May/2026:13:43:56 +0700] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-" show less	Web App Attack Bad Web Bot
🇺🇸 aks4226	2026-05-31 06:39:21 (4 days ago)	Bot search, attacking common web applications.	Web App Attack
🇮🇪 AutosOnShow	2026-05-31 06:37:05 (4 days ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-05-31 06:36:24.312 \|	Web App Attack
🇺🇸 chronos	2026-05-31 05:58:48 (4 days ago)	[AUTORAVALT][[31/05/2026 - 02:58:47 -03:00 UTC] Attack from [Ace Data Centers II, L.L.C.] [23.27.244 ... show more [AUTORAVALT][[31/05/2026 - 02:58:47 -03:00 UTC] Attack from [Ace Data Centers II, L.L.C.] [23.27.244.95] Action: BLocKed Hacking... Unauthorized attempts to access the server. Web App Attack -> Attempts to probe for or exploit installed web applications such as a CMS like WordPress/Drupal, e-commerce solutions, forum software, phpMyAdmin and various other soft] ... show less	Hacking Web App Attack
🇬🇧 Andrew	2026-05-31 05:44:29 (4 days ago)	Blocked by UFW (TCP on port 80). Source port: 46229 TTL: 240 Packet length: 44 TOS: 0x00 This repor ... show more Blocked by UFW (TCP on port 80). Source port: 46229 TTL: 240 Packet length: 44 TOS: 0x00 This report (for 23.27.244.95) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2026-05-31 05:44:27 (4 days ago)	Unauthorized access (tcp/80/http)	Port Scan Web App Attack
🇺🇸 billybobby	2026-05-31 05:37:18 (4 days ago)	Blocked by UFW [80/tcp] \| SPT: 45596 \| TTL: 239 \| LEN: 44 \| TOS: 0x08 • Reported by: github.com/sefi ... show more Blocked by UFW [80/tcp] \| SPT: 45596 \| TTL: 239 \| LEN: 44 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Duggy_Tuxy🧱	2026-05-31 05:35:46 (4 days ago)	[SW01-SRV01-DE] Blocked by SysWarden Firewall (Web Attack)	Web App Attack Hacking Port Scan
Anonymous	2026-05-31 05:33:49 (4 days ago)	Honeypot wireguard: source IP triggered 3+ blocked attempts in 24h (ports: 80/tcp (HTTP))	Port Scan
🇩🇪 maxpower	2026-05-31 03:50:21 (4 days ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 23.27.244.95 (US/United States/-): 2 in ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 23.27.244.95 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 23.27.244.95 - - [31/May/2026:05:50:16 +0200] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-" host=145.239.233.176 23.27.244.95 - - [31/May/2026:05:50:16 +0200] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-" host=145.239.233.177 show less	Port Scan
🇩🇪 piticu iuli	2026-05-31 03:42:49 (4 days ago)	(mod_security) mod_security triggered on hostname [redacted] 23.27.244.95 (US/United States/-)	SQL Injection
Anonymous	2026-05-31 03:39:39 (4 days ago)	23.27.244.95 - - [31/May/2026:03:39:38 +0000] "GET /.env HTTP/1.1" 404 2991 "-" "Mozilla/5.0 (Window ... show more 23.27.244.95 - - [31/May/2026:03:39:38 +0000] "GET /.env HTTP/1.1" 404 2991 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇩🇪 sdos.es	2026-05-31 03:36:21 (4 days ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack
🇬🇧 martenmark	2026-05-31 03:34:13 (4 days ago)	23.27.244.95 - - [31/May/2026:03:34:12 +0000] "GET /.env HTTP/1.1" 403 3974 "-" "Mozilla/5.0 (Window ... show more 23.27.244.95 - - [31/May/2026:03:34:12 +0000] "GET /.env HTTP/1.1" 403 3974 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 Power Ca	2026-05-31 03:27:37 (4 days ago)	23.27.244.95 - - [31/May/2026:03:27:36 +0000] "GET /.env HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows ... show more 23.27.244.95 - - [31/May/2026:03:27:36 +0000] "GET /.env HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" ... show less	Web App Attack Hacking

Showing 136 to 150 of 193 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 172.217.33.155

🇺🇸 66.132.195.46

🇿🇦 41.56.132.74

🇧🇪 34.140.177.248

🇻🇳 14.191.107.17

🇹🇼 198.235.24.22

🇬🇧 195.206.182.201

🇧🇷 181.214.221.57

🇺🇸 134.122.122.188

🇨🇳 120.48.108.170

🇨🇳 117.156.78.8

🇲🇲 103.105.172.7

🇫🇮 95.216.75.224

🇺🇸 74.7.229.118

🇩🇪 47.245.136.243

🇨🇦 20.116.34.103

🇮🇪 20.105.65.67

🇺🇸 203.161.38.233

🇮🇩 168.110.195.99

🇺🇸 150.107.38.143