JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.215.158.157

104.215.158.157 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 0%: ?

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.215.158.157

Whois 104.215.158.157

IP Abuse Reports for 104.215.158.157:

This IP address has been reported a total of 44 times from 33 distinct sources. 104.215.158.157 was first reported on April 10th 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-04-19 05:15:54 (2 months ago)	1 attack on shell probes: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTT ... show more 1 attack on shell probes: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 show less	Hacking
🇦🇹 urnilxfgbez	2026-04-18 22:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇭🇺 KaroX	2026-04-18 16:48:33 (2 months ago)	2026-04-18T18:41:37.911048+02:00 karoxnet.hu sshd[1817947]: Invalid user admin from 104.215.158.157 ... show more 2026-04-18T18:41:37.911048+02:00 karoxnet.hu sshd[1817947]: Invalid user admin from 104.215.158.157 port 35840 2026-04-18T18:43:24.993823+02:00 karoxnet.hu sshd[1817966]: Invalid user orangepi from 104.215.158.157 port 53586 2026-04-18T18:44:58.059451+02:00 karoxnet.hu sshd[1817976]: User root from 104.215.158.157 not allowed because not listed in AllowUsers 2026-04-18T18:46:43.491139+02:00 karoxnet.hu sshd[1817984]: User root from 104.215.158.157 not allowed because not listed in AllowUsers 2026-04-18T18:48:32.272113+02:00 karoxnet.hu sshd[1817996]: User root from 104.215.158.157 not allowed because not listed in AllowUsers ... show less	SSH
🇺🇸 bigscoots.com	2026-04-18 16:44:33 (2 months ago)	104.215.158.157 (SG/Singapore/-), 5 distributed sshd attacks on account [root] in the last 3600 secs ... show more 104.215.158.157 (SG/Singapore/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Apr 18 11:44:25 14039 sshd[22416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.215.158.157 user=root Apr 18 11:13:39 14039 sshd[17071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.171.251 user=root Apr 18 11:13:41 14039 sshd[17071]: Failed password for root from 152.32.171.251 port 51788 ssh2 Apr 18 11:10:43 14039 sshd[16510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.171.251 user=root Apr 18 11:10:45 14039 sshd[16510]: Failed password for root from 152.32.171.251 port 37776 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇹🇷 Threat.live	2026-04-18 16:30:02 (2 months ago)	Threat.live: Brute Force	Brute-Force
🇩🇪 PauloPSLABS	2026-04-18 15:43:54 (2 months ago)	SSH brute-force detected by fail2ban 6 failures in 600 seconds.	Brute-Force SSH
🇺🇸 RAP	2026-04-18 15:20:25 (2 months ago)	2026-04-18 15:20:25 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 Teknikal_Domain	2026-04-18 15:10:18 (2 months ago)	Apr 18 11:09:11 gen sshd[1178002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more Apr 18 11:09:11 gen sshd[1178002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.215.158.157 Apr 18 11:09:12 gen sshd[1178002]: Failed password for invalid user admin from 104.215.158.157 port 56830 ssh2 Apr 18 11:10:18 gen sshd[1178121]: Invalid user orangepi from 104.215.158.157 port 48438 ... show less	Brute-Force SSH
🇹🇭 Sawasdee	2026-04-18 14:39:07 (2 months ago)	SSH break in attempt ...	SSH
Anonymous	2026-04-18 14:09:58 (2 months ago)	SSH Brute Force Attack	Brute-Force SSH
🇺🇸 bigscoots.com	2026-04-18 14:07:54 (2 months ago)	(sshd) Failed SSH login from 104.215.158.157 (SG/Singapore/-): 5 in the last 3600 secs; Ports: ; Di ... show more (sshd) Failed SSH login from 104.215.158.157 (SG/Singapore/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Apr 18 09:06:30 14238 sshd[7282]: Invalid user admin from 104.215.158.157 port 58260 Apr 18 09:06:33 14238 sshd[7282]: Failed password for invalid user admin from 104.215.158.157 port 58260 ssh2 Apr 18 09:07:10 14238 sshd[7397]: Invalid user orangepi from 104.215.158.157 port 47518 Apr 18 09:07:12 14238 sshd[7397]: Failed password for invalid user orangepi from 104.215.158.157 port 47518 ssh2 Apr 18 09:07:51 14238 sshd[7440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.215.158.157 user=root show less	Brute-Force SSH
🇺🇸 MPL	2026-04-18 14:03:47 (2 months ago)	tcp/23 (2 or more attempts)	Port Scan
🇭🇰 www.winos.me	2026-04-18 13:45:37 (2 months ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇳🇱 EGP Abuse Dept	2026-04-18 13:44:43 (2 months ago)	Unauthorized connection to SSH port 22	Port Scan Hacking SSH
🇺🇸 bigscoots.com	2026-04-18 13:43:31 (2 months ago)	(sshd) Failed SSH login from 104.215.158.157 (SG/Singapore/-): 5 in the last 3600 secs; Ports: ; Di ... show more (sshd) Failed SSH login from 104.215.158.157 (SG/Singapore/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Apr 18 08:42:09 21438 sshd[8036]: Invalid user admin from 104.215.158.157 port 53820 Apr 18 08:42:11 21438 sshd[8036]: Failed password for invalid user admin from 104.215.158.157 port 53820 ssh2 Apr 18 08:42:46 21438 sshd[8047]: Invalid user orangepi from 104.215.158.157 port 46974 Apr 18 08:42:48 21438 sshd[8047]: Failed password for invalid user orangepi from 104.215.158.157 port 46974 ssh2 Apr 18 08:43:24 21438 sshd[8122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.215.158.157 user=root show less	Brute-Force SSH

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.132.129

🇻🇳 165.99.16.135

🇷🇺 94.243.13.219

🇧🇷 187.50.194.182

🇺🇸 172.69.58.229

🇺🇸 161.0.2.100

🇷🇴 80.94.92.166

🇩🇪 43.165.62.10

🇺🇸 20.169.85.72

🇨🇳 222.89.169.98

🇺🇸 192.169.249.148

🇺🇸 162.216.149.241

🇮🇳 117.239.45.10

🇺🇸 104.194.9.81

🇳🇱 45.148.10.141

🇭🇰 42.200.73.114

🇺🇸 8.229.217.52

🇧🇷 200.216.172.182

🇨🇷 179.48.248.245

🇯🇵 160.251.169.213