JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 1.13.158.23

1.13.158.23 was found in our database!

This IP was reported 176 times. Confidence of Abuse is 100%: ?

100%

ISP	Tencent cloud computing (Beijing) Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 1.13.158.23

Whois 1.13.158.23

IP Abuse Reports for 1.13.158.23:

This IP address has been reported a total of 176 times from 66 distinct sources. 1.13.158.23 was first reported on May 19th 2026, and the most recent report was 53 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2026-06-19 00:22:27 (53 minutes ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 zulzeen	2026-06-18 18:27:05 (6 hours ago)	[incypit-web] Blocked by SysWarden Firewall [GEO] (Web Attack)	Hacking Web App Attack
🇫🇷 masterguru	2026-06-18 16:32:21 (8 hours ago)	Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(? ... show more Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(?:keep-alive\|close)\\\\b" at REQUEST_HEADERS:Connection. (920210-197) show less	Hacking
🇨🇦 dispensight	2026-06-18 13:15:28 (12 hours ago)	Probe via dispensight.* redirect honeypot — attacker hit https://www.dispensight.art/, 301-redirecte ... show more Probe via dispensight.* redirect honeypot — attacker hit https://www.dispensight.art/, 301-redirected to canonical dispensight.com, Referer header exposed origin (1 req(s) on dispensight.com, UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_). show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-18 01:34:31 (23 hours ago)	Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(? ... show more Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(?:keep-alive\|close)\\\\b" at REQUEST_HEADERS:Connection. (920210-196) show less	Hacking
🇨🇦 dispensight	2026-06-17 19:12:34 (1 day ago)	Probe via dispensight.* redirect honeypot — attacker hit https://www.dispensight.forum/, 301-redirec ... show more Probe via dispensight.* redirect honeypot — attacker hit https://www.dispensight.forum/, 301-redirected to canonical dispensight.com, Referer header exposed origin (1 req(s) on dispensight.com, UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_). show less	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-17 14:15:15 (1 day ago)	(mod_security) mod_security (id:100011) triggered by 1.13.158.23 (CN/China/Jiangsu/Nanjing/-/[AS4509 ... show more (mod_security) mod_security (id:100011) triggered by 1.13.158.23 (CN/China/Jiangsu/Nanjing/-/[AS45090 TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 17:15:11.851437 2026] [security2:error] [pid 2777555:tid 2777605] [client 1.13.158.23:33386] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/"] [unique_id "ajKr7yujf2PT-9Py5KOnrgAAAJc"] show less	Port Scan
🇺🇸 apislytics	2026-06-17 13:21:26 (1 day ago)	Automatic hard ban after repeated rate-limit abuse	Brute-Force
🇩🇪 sdos.es	2026-06-17 13:06:06 (1 day ago)	"Multiple/Conflicting Connection Header Data Found - keep-alive, close"	Web App Attack
Anonymous	2026-06-17 09:23:07 (1 day ago)	FortiWeb WAF: 68 attacks detected. Threat Score: 20000. Types: Client Management(34), GEO IP(34). Or ... show more FortiWeb WAF: 68 attacks detected. Threat Score: 20000. Types: Client Management(34), GEO IP(34). Origin: China. show less	Web App Attack
🇭🇳 unph	2026-06-17 09:09:08 (1 day ago)	Intento de acceso sospechoso bloqueado por AbuseIPDB Blocker Plugin	Brute-Force
🇱🇮 wmek	2026-06-17 03:21:29 (1 day ago)	Attack (3x confirmed): cpfence-block(4x),cpfence-block(8x). Port: 443/tcp. URI: web-service. WAF rul ... show more Attack (3x confirmed): cpfence-block(4x),cpfence-block(8x). Port: 443/tcp. URI: web-service. WAF rule: 0. Protocol: HTTPS. Detected by: WAF/IDS (OWASP CRS ModSecurity). show less	Web App Attack Port Scan
🇺🇸 Epimetheus	2026-06-17 02:29:00 (1 day ago)	Unauthorized access attempts: [GET] / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) ... show more Unauthorized access attempts: [GET] / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 show less	Web App Attack
🇬🇧 AvonleaConsulting	2026-06-16 22:49:59 (2 days ago)	Brute force attack stopped by firewall	Web Spam Brute-Force Web App Attack
🇨🇦 lakered	2026-06-16 22:04:40 (2 days ago)	Detectors: [SURICATA, NGINX] \| Reasons: Invalid HTTP protocol or SSTP scan attempt detected on sinkh ... show more Detectors: [SURICATA, NGINX] \| Reasons: Invalid HTTP protocol or SSTP scan attempt detected on sinkhole \| Automated scan targeting an unauthorized host or default server sinkhole \| UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| ASN: 45090 (Shenzhen Tencent Computer Systems Company Limited) show less	Port Scan Bad Web Bot

Showing 1 to 15 of 176 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 67.213.119.29

🇺🇸 216.218.206.109

🇬🇧 213.166.84.46

🇺🇸 208.84.102.181

🇵🇱 194.180.49.56

🇷🇺 188.243.182.199

🇺🇸 184.105.139.96

🇺🇸 173.252.127.141

🇯🇵 161.33.10.83

🇫🇮 104.245.242.165

🇯🇵 102.204.223.186

🇫🇮 95.214.9.217

🇺🇸 86.104.195.76

🇨🇦 85.217.149.8

🇦🇹 85.124.207.102

🇨🇱 68.211.177.55

🇰🇷 59.8.48.41

🇬🇧 45.198.224.46

🇳🇱 45.142.193.18

🇺🇸 45.132.227.75