AbuseIPDB » 23.230.223.58
23.230.223.58
This IP was reported 5 times. Confidence of
Abuse
is 0% : ?
ISP
EGIHosting
Usage Type
Data Center/Web Hosting/Transit
ASN
AS203380
Domain Name
egihosting.com
Country
๐ง๐ฌ
Bulgaria
City
Sofia, Sofia-Capital
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 23.230.223.58 :
This IP address has been reported a total of
5
times from
4 distinct
sources.
23.230.223.58 was first reported on
October 20th 2024 , and the most recent report was
5 months ago
Old Reports:
The most recent abuse report for this IP address is from
5 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-01-09 01:02:26
(5 months ago)
(mod_security) mod_security (id:210350) triggered by 23.230.223.58 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 23.230.223.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 08 20:02:19.278236 2026] [security2:error] [pid 3402648:tid 3402648] [client 23.230.223.58:52265] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.nancyscafeandcatering.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.nancyscafeandcatering.com"] [uri "/contact-us/"] [unique_id "aWBTm2EFCEnEAEdw2ljhxQAAAA0"], referer: http://www.nancyscafeandcatering.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-11-06 03:27:36
(7 months ago)
(mod_security) mod_security (id:225170) triggered by 23.230.223.58 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:225170) triggered by 23.230.223.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 22:27:30.995424 2025] [security2:error] [pid 17242:tid 17242] [client 23.230.223.58:55793] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||staben.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "staben.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQwVoj52-zpHljxpaR1L5gAAABg"], referer: https://staben.com/wp-json/wp/v2/users/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nowyouknow
2025-04-04 20:24:50
(1 year ago)
(From [email protected] )(From [email protected] ) I noticed your 4.9-star rating on Google - so ...
show more
(From [email protected] )(From [email protected] ) I noticed your 4.9-star rating on Google - sounds like you do great work.
What if someone could have a conversation with your website like itโs a real personโand get real answers?
Thatโs what our voice artificial intelligence does. Itโs not a chatbot. It speaks like a human and works 24/7.
We created a sample experience using your siteโs public info.
Itโs not fully trained yet, but itโs enough to show you what someone would hear when interacting with your business.
Click here to hear & unlock it: https://fromfuture.io/demo?c=3&company=https://www.nhchiropractors.com
show less
Phishing
Web Spam
2024-12-20 14:32:42
(1 year ago)
Attempted brute force login to web vpn
Hacking
Brute-Force
๐จ๐ฆ
wil.com
2024-10-20 08:15:51
(1 year ago)
GlobalProtect login attempts with user sharepoint.
VPN IP
Brute-Force
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: