JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.155.131

104.28.155.131 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 58%: ?

58%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇫🇷 France
City	Aulnay-sous-Bois, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.155.131

Whois 104.28.155.131

IP Abuse Reports for 104.28.155.131:

This IP address has been reported a total of 92 times from 48 distinct sources. 104.28.155.131 was first reported on December 20th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-28 00:32:26 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 LRob.fr	2026-06-25 13:45:12 (3 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇦🇺 screwlooseit.com.au	2026-06-21 11:14:06 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC US/United States/-	Web App Attack
Anonymous	2026-06-17 07:02:24 (1 week ago)	2026-06-17 07:02:24 warning[2655305]: host unknown[104.28.155.131]: unauthorized access at ... show more 2026-06-17 07:02:24 warning[2655305]: host unknown[104.28.155.131]: unauthorized access attempted: tcp/9010 show less	Port Scan Brute-Force
🇧🇪 cmbplf	2026-06-09 11:49:54 (2 weeks ago)	249 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇩🇪 BlueWire Hosting	2026-06-08 18:31:01 (2 weeks ago)	Suspicious HTTP(s) activity without a user agent provided	Bad Web Bot
🇩🇪 big-cloud.nl	2026-06-08 17:16:51 (2 weeks ago)	Try to access /stellingia/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 19:22:07 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 15:22:01.794788 2026] [security2:error] [pid 31909:tid 31909] [client 104.28.155.131:30214] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stefchild.com"] [uri "/.git/config"] [unique_id "aiXE2To5TXvD9UQZ6nqr5AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 18:35:40 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 14:35:35.497677 2026] [security2:error] [pid 6888:tid 6888] [client 104.28.155.131:31791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qualtacon.com"] [uri "/.git/config"] [unique_id "aiW59zYHMC68949T1V5enQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 17:53:26 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:53:18.536152 2026] [security2:error] [pid 27059:tid 27059] [client 104.28.155.131:31175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "taskmasterstech.com"] [uri "/.git/config"] [unique_id "aiWwDhuWu8grOSvt1ssVKgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 17:11:38 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 13:11:31.273016 2026] [security2:error] [pid 7006:tid 7006] [client 104.28.155.131:31529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "be4ventures.com"] [uri "/.git/config"] [unique_id "aiWmQx1MhLlcTmpiC1WEWQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 16:41:43 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:41:35.175932 2026] [security2:error] [pid 27406:tid 27406] [client 104.28.155.131:31707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mobiletitleclerk.com"] [uri "/.git/config"] [unique_id "aiWfP99kjFbH6hHrAHH1SAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 16:24:50 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:24:43.974381 2026] [security2:error] [pid 1559:tid 1630] [client 104.28.155.131:31214] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "104ventures.com"] [uri "/.git/config"] [unique_id "aiWbSyLrGZOdOyk4S4KAigAAAcM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 16:06:11 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:06:05.254784 2026] [security2:error] [pid 16872:tid 16872] [client 104.28.155.131:31652] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aandbnaturalfoods.com"] [uri "/.git/config"] [unique_id "aiWW7dXek2CJiZbHOZ3DmgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 15:49:22 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.155.131 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 11:49:18.150068 2026] [security2:error] [pid 11868:tid 11868] [client 104.28.155.131:31768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "andysharp.com"] [uri "/.git/config"] [unique_id "aiWS_ueZm3o5y6sHgyP7YgAAACk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇿 197.204.206.58

🇬🇧 193.163.125.56

🇮🇳 182.66.213.59

🇺🇸 172.245.21.30

🇧🇷 168.138.232.38

🇬🇷 150.228.63.134

🇯🇵 111.238.174.6

🇩🇪 69.5.169.243

🇨🇳 58.34.152.146

🇺🇸 20.102.223.144

🇻🇳 14.241.239.186

🇺🇸 216.25.89.74

🇺🇸 205.210.31.100

🇮🇶 169.224.5.106

🇮🇳 143.110.247.221

🇰🇷 121.125.61.126

🇸🇬 97.74.87.194

🇷🇺 81.177.232.69

🇹🇭 58.10.16.22

🇺🇸 52.160.165.210