JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.164.173.123

104.164.173.123 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 29%: ?

29%

ISP	EGIHosting
Usage Type	Data Center/Web Hosting/Transit
ASN	AS18779
Domain Name	egihosting.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.164.173.123

Whois 104.164.173.123

IP Abuse Reports for 104.164.173.123:

This IP address has been reported a total of 94 times from 46 distinct sources. 104.164.173.123 was first reported on June 24th 2023, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Anymous	2026-06-19 17:55:45 (4 days ago)	GET /site.webmanifest HTTP/1.1 404 443 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWeb ... show more GET /site.webmanifest HTTP/1.1 404 443 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML show less	Port Scan Web App Attack
🇺🇸 Charlesiv	2026-06-02 20:01:15 (3 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 18779 (EGIHo ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 18779 (EGIHosting) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-06-02T19:02:17Z Ray ID: a058b626bdd8133c UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 show less	Bad Web Bot
🇩🇪 DocNetzwerk	2026-05-30 12:52:27 (3 weeks ago)	(php-url-fopen) Failed php-url-fopen trigger from 104.164.173.123 (US/United States/-)	Web App Attack
🇮🇹 VHosting	2026-05-26 14:10:03 (4 weeks ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 philipplindner	2026-05-25 11:54:16 (4 weeks ago)	Vulnerability scan on www.philipp-lindner.de	Hacking
🇩🇪 big-cloud.nl	2026-05-14 03:16:01 (1 month ago)	Try to access /https%3A/www.elf-ieken.nl/xmlrpc.php	Web App Attack
🇫🇷 Octopuce	2026-05-02 05:32:52 (1 month ago)	Aggressive web search of vulnerable pages: /https%3A/directory.opquast.com/fr/certificat/G63XNI/ /ht ... show more Aggressive web search of vulnerable pages: /https%3A/directory.opquast.com/fr/certificat/G63XNI/ /https%3A/dev.sanpan.com/portfolio/aswo/ /http ... show less	Web App Attack
🇩🇪 big-cloud.nl	2026-05-02 01:26:23 (1 month ago)	Try to access /haardhout-meppel/https%3A/www.haardhoutvandenakker.nl/xmlrpc.php	Web App Attack
🇺🇸 9LEVEL.com.br	2026-04-17 23:41:49 (2 months ago)	Blocked by Fail2ban for traefik-404 abuse	Web App Attack
🇷🇺 6o6ep	2026-03-18 04:07:37 (3 months ago)	client denied by server configuration	Port Scan Hacking Bad Web Bot
🇩🇪 big-cloud.nl	2026-03-04 03:28:44 (3 months ago)	Try to access /https%3A/vdv-montage.nl/xmlrpc.php	Web App Attack
🇬🇧 seniorlinuxadmin	2026-02-23 23:37:17 (4 months ago)	104.164.173.123 - - [23/Feb/2026:23:37:15 +0000] "GET /https%3A/fonts.googleapis.com/css%3Ffamily%3D ... show more 104.164.173.123 - - [23/Feb/2026:23:37:15 +0000] "GET /https%3A/fonts.googleapis.com/css%3Ffamily%3DSource%2BSans%2BPro%3A200%2C400%2C200bold%2C400old HTTP/1.1" 404 158 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36" show less	Port Scan Web App Attack
🇫🇮 gnom4ik	2026-02-22 00:59:30 (4 months ago)	ban-reviewer auto report; ip=104.164.173.123; scenario=http:scan; verdict=valid_ban; confidence=0.85 ... show more ban-reviewer auto report; ip=104.164.173.123; scenario=http:scan; verdict=valid_ban; confidence=0.85; categories=14,15,18; active_decisions=1; lookback_decisions=1; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=IP flagged for HTTP scanning activity (scenario: http:scan); Decision is part of a sustained abuse pattern (ip_active_decisions_total: 1); No evidence of legitimate use or user activity in the summary data show less	Port Scan Hacking Brute-Force
🇨🇦 SSH-Admin	2026-02-08 04:00:04 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇳🇱 i-turnradio.nl	2026-02-07 21:12:28 (4 months ago)	2026-02-07 22:12:27 (CET) ~ Blocked by abusescan risk assessment	Web App Attack

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.109

🇷🇺 185.10.63.235

🇺🇸 174.35.25.177

🇺🇸 162.216.150.98

🇺🇸 147.185.132.30

🇺🇸 100.50.17.159

🇺🇸 74.82.47.22

🇺🇸 64.62.156.38

🇺🇸 40.77.167.26

🇰🇷 211.253.9.49

🇦🇷 190.196.253.61

🇩🇪 185.168.29.104

🇺🇸 162.216.150.83

🇺🇸 162.216.150.66

🇺🇸 162.216.149.60

🇨🇳 118.81.198.75

🇳🇬 102.88.137.213

🇩🇪 91.107.198.115

🇳🇱 91.92.42.34

🇬🇧 83.136.251.36