JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.23.166.120

104.23.166.120 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 0%: ?

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 104.23.166.120 is an IP address from within our whitelist belonging to the subnet 104.16.0.0/13, which we identify as: "Cloudflare Reverse Proxy".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 104.23.166.120

Whois 104.23.166.120

IP Abuse Reports for 104.23.166.120:

This IP address has been reported a total of 114 times from 33 distinct sources. 104.23.166.120 was first reported on February 28th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 cimee	2026-06-02 20:07:05 (2 days ago)	This IP accessed the path /.env, which is banned.	Bad Web Bot Web App Attack
🇸🇬 cimee	2026-05-22 06:12:53 (2 weeks ago)	This IP accessed the path /.env, which is banned.	Bad Web Bot Web App Attack
🇸🇬 cimee	2026-05-19 22:48:03 (2 weeks ago)	This IP accessed the path /.env.local.copy, which is banned.	Bad Web Bot Web App Attack
Anonymous	2026-05-19 07:04:29 (2 weeks ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
Anonymous	2026-05-12 19:32:24 (3 weeks ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
🇩🇪 Zydzy	2026-05-12 15:26:57 (3 weeks ago)	Automated attack detected. Server: 95.140.154.181. Jail: nginx-exploit.	Web App Attack
🇦🇱 router.al	2026-05-09 05:50:55 (3 weeks ago)	05/09/2026-05:50:55.369788 104.23.166.120 Protocol: 6 ET SCAN LeakIX Inbound User-Agent	Hacking
🇦🇺 trentwiles.com	2026-05-08 13:03:38 (3 weeks ago)	Unauthorized connection attempt detected from IP address 104.23.166.120 to port 80 [SYD]	Port Scan
Anonymous	2026-05-02 02:09:06 (1 month ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
Anonymous	2026-04-29 03:51:15 (1 month ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
Anonymous	2026-04-28 00:48:32 (1 month ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
Anonymous	2026-04-26 17:34:35 (1 month ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
🇸🇬 cimee	2026-04-26 04:03:20 (1 month ago)	This IP accessed the path /laravel/.env, which is banned.	Bad Web Bot Web App Attack
🇬🇧 pinguin	2026-04-18 02:47:26 (1 month ago)	Triggered Cloudflare WAF (firewallManaged) from NL. Action taken: LOG Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallManaged) from NL. Action taken: LOG Protocol: HTTP/2 (GET method) Endpoint: /.env.development UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/146.0.3856.109 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 chrisj	2026-04-13 00:45:20 (1 month ago)	[Mon Apr 13 00:44:18.355592 2026] [proxy_fcgi:error] [pid 134862:tid 134862] [client 104.23.166.120: ... show more [Mon Apr 13 00:44:18.355592 2026] [proxy_fcgi:error] [pid 134862:tid 134862] [client 104.23.166.120:10131] AH01071: Got error 'Primary script unknown', referer: https://www.vandogh.com/ [Mon Apr 13 00:44:37.193281 2026] [proxy_fcgi:error] [pid 134863:tid 134863] [client 104.23.166.120:10124] AH01071: Got error 'Primary script unknown', referer: https://www.vandogh.com/ [Mon Apr 13 00:45:19.942452 2026] [proxy_fcgi:error] [pid 134858:tid 134858] [client 104.23.166.120:13979] AH01071: Got error 'Primary script unknown', referer: https://www.vandogh.com/ ... show less	Brute-Force

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 202.53.94.246

🇧🇷 189.124.13.190

🇬🇧 185.122.130.179

🇺🇸 172.93.102.236

🇱🇹 81.30.98.44

🇫🇷 62.84.187.219

🇺🇸 2604:a940:301:225:0:13::

🇰🇷 222.120.176.6

🇰🇬 212.241.31.243

🇺🇸 195.184.76.115

🇯🇵 160.251.182.78

🇷🇺 94.41.168.233

🇺🇸 62.146.227.178

🇺🇸 18.206.189.73

🇻🇳 14.225.7.70

🇨🇳 14.103.115.212

🇺🇸 207.241.173.236

🇨🇳 183.6.72.120

🇳🇱 176.65.148.244

🇮🇳 157.20.215.123