JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.156.105

104.28.156.105 was found in our database!

This IP was reported 392 times. Confidence of Abuse is 81%: ?

81%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.156.105

Whois 104.28.156.105

IP Abuse Reports for 104.28.156.105:

This IP address has been reported a total of 392 times from 225 distinct sources. 104.28.156.105 was first reported on December 4th 2022, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-23 19:28:29 (3 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇭🇳 unph	2026-06-20 18:23:17 (6 days ago)	Intento de acceso sospechoso bloqueado por AbuseIPDB Blocker Plugin	Brute-Force
🇧🇷 Gertec	2026-06-20 11:01:26 (1 week ago)	This IP address 104.28.156.105 has been carrying out attacks on our website. Reason: Blocked IP addr ... show more This IP address 104.28.156.105 has been carrying out attacks on our website. Reason: Blocked IP address \| Method: GET \| Path: /wp-login.php. show less	Hacking DDoS Attack
🇺🇸 xmission.com	2026-06-16 06:59:56 (1 week ago)	104.28.156.105 - - [16/Jun/2026:00:59:55 -0600] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 ... show more 104.28.156.105 - - [16/Jun/2026:00:59:55 -0600] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (compatible; PRTG Network Monitor; Windows)" ... show less	Web App Attack
🇩🇪 big-cloud.nl	2026-06-16 06:57:56 (1 week ago)	Try to access /xmlrpc.php	Web App Attack
Anonymous	2026-06-16 06:57:52 (1 week ago)	104.28.156.105 - - [16/Jun/2026:08:57:49 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 104.28.156.105 - ... show more 104.28.156.105 - - [16/Jun/2026:08:57:49 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 104.28.156.105 - - [16/Jun/2026:08:57:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 ... show less	Brute-Force Bad Web Bot
🇮🇩 sockominfo	2026-06-10 03:00:57 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 4.1/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 4.1/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 57%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-10 01:00:09 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-07 05:00:48 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 3.4/10 (LOW). Confidence: ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 3.4/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-07 04:00:39 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 3.5/10 (LOW). Confidence: ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 3.5/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-07 03:00:46 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 3.6/10 (LOW). Confidence: ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 3.6/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-07 02:00:38 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 3.7/10 (LOW). Confidence: ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-07 00:00:11 (2 weeks ago)	User login to application from malicious IP 104.28.156.105.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 104.28.156.105.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
Anonymous	2026-06-02 21:42:39 (3 weeks ago)	Try to connect to Port_Scan_15000_stealth	Port Scan
Anonymous	2026-06-02 21:10:13 (3 weeks ago)	Automated report from Fail2Ban firewall ban	Brute-Force SSH IoT Targeted

Showing 1 to 15 of 392 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 2a0c:5a84:d209:3700:c6e:d9ea:7afb:f4f5

🇭🇰 199.45.154.153

🇳🇱 195.160.220.149

🇧🇴 190.129.122.185

🇦🇷 181.169.77.27

🇺🇸 65.111.8.21

🇵🇷 24.55.162.224

🇧🇪 212.68.238.162

🇨🇦 209.50.188.152

🇨🇦 207.148.176.234

🇺🇸 192.64.118.208

🇺🇸 184.105.139.84

🇦🇷 181.85.240.111

🇺🇸 172.217.107.19

🇿🇦 165.16.186.67

🇩🇪 151.243.150.222

🇰🇷 121.128.84.224

🇧🇭 109.161.190.204

🇺🇸 104.232.79.58

🇺🇸 66.132.172.159