IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
Important Note: 104.23.217.148 is an IP address from within
our whitelist belonging to the subnet
104.16.0.0/13,
which we identify as: "Cloudflare Reverse Proxy".
Whitelisted netblocks are typically owned by trusted entities, such as Google
or Microsoft who may use them for search engine spiders. However, these same entities
sometimes also provide cloud servers and mail services which are easily abused. Pay special
attention when trusting or distrusting these IPs.
This IP address has been reported a total of
49
times from
18 distinct
sources.
104.23.217.148 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/104.23.217.148
2 ...
show moreThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/104.23.217.148
2026-05-15 01:30:21 /wp-admin/install.php?step=1
show less
Web App Attack
Anonymous
(caddyscan) Scanner path probe from 104.23.217.148 (SE/Sweden/-): 5 in the last 3600 secs; Ports: *; ...
show more(caddyscan) Scanner path probe from 104.23.217.148 (SE/Sweden/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 104.23.217.148 - - [12/May/2026:19:33:22 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 104.23.217.148 - - [12/May/2026:19:33:33 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 104.23.217.148 - - [12/May/2026:19:34:59 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 104.23.217.148 - - [12/May/2026:19:35:09 +0000] "GET /.git/config HTTP/1.1"
[REDACTED] 200 2627 104.23.217.148 - - [12/May/2026:19:35:15 +0000] "GET /.git/config HTTP/1.1"
show less
Port Scan
Showing 1 to
15
of 49 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ