JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.235.39.27

64.235.39.27 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 100%: ?

100%

ISP	ServerPoint.com
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26277
Hostname(s)	lasvegas-nv-datacenter.serverpoint.com
Domain Name	serverpoint.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.235.39.27

Whois 64.235.39.27

IP Abuse Reports for 64.235.39.27:

This IP address has been reported a total of 137 times from 89 distinct sources. 64.235.39.27 was first reported on May 26th 2026, and the most recent report was 41 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-26 14:06:02 (41 minutes ago)	2.270 requests from abuseipdb.com blacklisted IP (9mos1w3d)	Brute-Force Bad Web Bot
🇵🇱 Roper123	2026-06-25 07:58:08 (1 day ago)	Web app exploits	Web App Attack
🇺🇸 helios.live	2026-06-24 23:12:15 (1 day ago)	2026/06/24 23:12:05 [error] 1785165#1785165: 1900219 FastCGI sent in stderr: "Primary script unknow ... show more 2026/06/24 23:12:05 [error] 1785165#1785165: 1900219 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 64.235.39.27, server: huginn.kocerroxy.com, request: "HEAD / HTTP/2.0", upstream: "fastcgi://unix:/var/run/php/php8.3-fpm.sock:", host: "huginn.kocerroxy.com" 2026/06/24 23:12:07 [error] 1785165#1785165: 1900219 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 64.235.39.27, server: huginn.kocerroxy.com, request: "HEAD / HTTP/2.0", upstream: "fastcgi://unix:/var/run/php/php8.3-fpm.sock:", host: "huginn.kocerroxy.com", referrer: "http://huginn.kocerroxy.com" 2026/06/24 23:12:09 [error] 1785165#1785165: 1900219 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 64.235.39.27, server: huginn.kocerroxy.com, request: "GET / HTTP/2.0", upstream: "fastcgi://unix:/var/run/php/php8.3-fpm.sock:", host: "huginn.kocerroxy.com" 2026/06/24 23:1 ... show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-06-24 22:10:22 (1 day ago)	[Thu Jun 25 08:10:21.987495 2026] [security2:error] [pid 420198] [client 64.235.39.27:50148] [client ... show more [Thu Jun 25 08:10:21.987495 2026] [security2:error] [pid 420198] [client 64.235.39.27:50148] [client 64.235.39.27] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "iaki.com.au"] [uri "/.git/HEAD"] [unique_id "ajxVzbO5P8crfBG65uL0gwAAAAo"] ... show less	Web App Attack
🇳🇱 e.fierstra	2026-06-24 18:47:26 (1 day ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇩🇪 Blexyel	2026-06-23 16:18:24 (2 days ago)	64.235.39.27 - - [23/Jun/2026:18:18:24 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 ( ... show more 64.235.39.27 - - [23/Jun/2026:18:18:24 +0200] "GET /.git/config HTTP/1.1" 200 265 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0" "pingusmc.org" ... show less	Brute-Force Web App Attack
🇩🇪 YF	2026-06-23 16:10:20 (2 days ago)	Environment file probe	Web App Attack
🇫🇮 payincog	2026-06-23 14:06:34 (3 days ago)	Date: Jun 23 16:54:36 2026 EAT \| Reported IP: 64.235.39.27 mod_security \| id: 930130 949110 \| US/pay ... show more Date: Jun 23 16:54:36 2026 EAT \| Reported IP: 64.235.39.27 mod_security \| id: 930130 949110 \| US/pay.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound Anomaly Score Exceeded (Total Score: 5); Inbound A show less	SQL Injection Brute-Force Bad Web Bot
🇺🇸 infra-monitor	2026-06-23 14:00:04 (3 days ago)	Automated ban via infra-monitor: suspicious-probe, mgmt-path-probe, crowdsecurity/http-probing, +1 m ... show more Automated ban via infra-monitor: suspicious-probe, mgmt-path-probe, crowdsecurity/http-probing, +1 more show less	Port Scan Web App Attack
🇺🇸 dtorrer	2026-06-23 12:46:11 (3 days ago)	General vulnerability scan.	Port Scan
🇫🇷 MatStef132	2026-06-23 03:43:37 (3 days ago)	MatShield L7: blocked on mathost.eu (secret-path-probe)	DDoS Attack
🇫🇷 SpaceHost-Server	2026-06-22 22:33:51 (3 days ago)		Brute-Force Web App Attack
🇩🇪 webanyone	2026-06-22 08:15:34 (4 days ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇸🇬 securejdprop	2026-06-22 07:50:17 (4 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/vpatch-git-config. WAF block: crowdsecurit ... show more This IP was detected by CrowdSec triggering crowdsecurity/vpatch-git-config. WAF block: crowdsecurity/vpatch-git-config from 64.235.39.27 (172.22.0.5) show less	Hacking
🇩🇪 paissangroup	2026-06-22 07:44:34 (4 days ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.250.5.164

🇳🇱 195.178.110.217

🇮🇹 195.32.116.228

🇧🇷 177.200.34.8

🇸🇬 172.217.97.29

🇩🇪 167.94.146.57

🇭🇰 118.193.47.155

🇨🇴 108.174.156.122

🇵🇱 74.248.17.67

🇺🇸 193.37.33.5

🇷🇺 178.178.222.45

🇺🇸 172.104.11.51

🇨🇭 172.71.141.101

🇸🇬 165.245.188.225

🇿🇦 152.110.235.85

🇨🇳 124.95.146.204

🇸🇬 47.236.59.68

🇳🇱 45.148.10.157

🇳🇱 20.23.229.100

🇻🇳 14.247.162.45