JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.157.146

104.28.157.146 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 47%: ?

47%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.157.146

Whois 104.28.157.146

IP Abuse Reports for 104.28.157.146:

This IP address has been reported a total of 55 times from 45 distinct sources. 104.28.157.146 was first reported on March 15th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-09 17:47:13 (1 day ago)	IP banned by Fail2Ban due to multiple malicious requests on Nginx	Brute-Force SSH Web App Attack
🇺🇸 donarev419	2026-06-07 00:47:58 (4 days ago)	Connection to port 13908 with data transfer. Data preview: YgS� =��E��3��w��J�4R��2m<U�� ... show more Connection to port 13908 with data transfer. Data preview: YgS� =��E��3��w��J�4R��2m<U�� Q�U��zF��J]�D�n�Ԛ�̴)��&�Lv��F+��yX0 ��M¯_� show less	Port Scan Hacking
🇷🇴 iulianh	2026-05-23 22:04:28 (2 weeks ago)	25,465,587	Brute-Force SSH
Anonymous	2026-05-20 22:15:57 (3 weeks ago)	104.28.157.146 - - [21/May/2026:00:07:59 +0200] "POST /wp-login.php HTTP/1.0" 200 10063 "-" "Mozilla ... show more 104.28.157.146 - - [21/May/2026:00:07:59 +0200] "POST /wp-login.php HTTP/1.0" 200 10063 "-" "Mozilla/5.0" 104.28.157.146 - - [21/May/2026:00:08:01 +0200] "POST /wp-login.php HTTP/1.1" 200 9591 "-" "Mozilla/5.0" 104.28.157.146 - - [21/May/2026:00:09:48 +0200] "POST /wp-login.php HTTP/1.0" 200 12055 "-" "Mozilla/5.0" 104.28.157.146 - - [21/May/2026:00:09:49 +0200] "POST /wp-login.php HTTP/1.1" 200 11793 "-" "Mozilla/5.0" 104.28.157.146 - - [21/May/2026:00:15:55 +0200] "POST /wp-login.php HTTP/1.0" 200 8585 "-" "Mozilla/5.0" ... show less	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-05-18 11:46:41 (3 weeks ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 FeG Deutschland	2026-05-12 13:54:47 (4 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇬🇧 poundawebsiteltd	2026-05-10 21:35:27 (1 month ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.28.157.146 - - [10/May/2026:22:35:18 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.28.157.146 - - [10/May/2026:22:35:18 +0100] POST /wp-login.php HTTP/1.1 200 7027 - Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 Version/17.0 Safari/605.1.15 show less	Web App Attack
🇩🇪 FeG Deutschland	2026-05-08 15:49:06 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 paissangroup	2026-05-07 17:17:27 (1 month ago)	Multiple WAF Violations	Web App Attack
🇯🇵 demonsword	2026-05-04 06:12:34 (1 month ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: t.me:443 show less	Open Proxy Port Scan
🇩🇪 paissangroup	2026-05-03 20:08:35 (1 month ago)	Multiple WAF Violations	Web App Attack
🇩🇪 paissangroup	2026-05-02 07:11:48 (1 month ago)	Multiple WAF Violations	Web App Attack
🇨🇳 pengpeng	2026-05-01 16:05:14 (1 month ago)	monitor: on VM-0-7-ubuntu \| port: 23438 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 23438 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 lns.bz	2026-04-30 08:20:00 (1 month ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack
🇩🇪 grassau.com	2026-04-28 18:23:46 (1 month ago)	(wordpress) Failed wordpress login from 104.28.157.146 (IN/India/Maharashtra/Santa Cruz/-)	Brute-Force

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 202.47.62.83

🇮🇳 182.78.131.206

🇮🇳 182.18.180.44

🇦🇺 149.28.167.253

🇺🇸 91.230.168.137

🇮🇳 64.227.177.1

🇳🇱 45.148.10.141

🇺🇸 35.239.3.17

🇮🇷 2.180.251.136

🇨🇳 1.193.63.81

🇺🇸 2605:a141:2314:5135::1

🇳🇱 205.147.16.146

🇨🇳 180.213.44.242

🇫🇮 147.185.133.10

🇨🇳 124.223.3.35

🇮🇩 103.167.11.244

🇷🇺 77.37.162.117

🇺🇸 71.91.141.100

🇫🇷 51.159.104.219

🇸🇬 47.79.200.145