JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.157.30

104.28.157.30 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 36%: ?

36%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇯🇵 Japan
City	Narita, Chiba

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.157.30

Whois 104.28.157.30

IP Abuse Reports for 104.28.157.30:

This IP address has been reported a total of 21 times from 16 distinct sources. 104.28.157.30 was first reported on June 27th 2023, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 DZBOT	2026-06-28 21:45:47 (5 hours ago)	DZBOT. Brute-force users SMTP	Brute-Force
🇸🇮 basing	2026-06-28 17:41:19 (9 hours ago)	2026-06-28 18:41:19 kb SASL PLAIN auth failed: rhost=104.28.157.30...	Brute-Force
🇷🇴 iulianh	2026-06-27 17:26:56 (1 day ago)	25,465,587	Brute-Force SSH
🇮🇹 VHosting	2026-06-23 07:39:25 (5 days ago)	Detected mail brute force attack from 4 different servers	Brute-Force
Anonymous	2026-06-01 16:09:28 (3 weeks ago)	Try to connect to Port_Scan_15000_stealth	Port Scan
🇨🇳 pengpeng	2026-04-30 11:30:52 (1 month ago)	monitor: on VM-0-7-ubuntu \| port: 15098 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 15098 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 EGP Abuse Dept	2026-04-22 20:38:35 (2 months ago)	Scanning for web/db/file exploits on www.brederaad-010.nl	SQL Injection Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-04-10 23:43:21 (2 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇧🇷 SOC PR	2026-04-08 13:06:02 (2 months ago)	IPS: Flowise Authentication Bypass (CVE-2024-8181).	Hacking
🇧🇷 hostseries	2026-03-03 05:50:35 (3 months ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2025-12-01 22:10:04 (6 months ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack
🇨🇭 backslash	2025-11-03 21:30:23 (7 months ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇨🇳 ThreatBook.io	2025-11-03 00:19:30 (7 months ago)	2025-11-02 18:51:59 /@fs/C:/Windows/System32/drivers/etc/hosts?import&raw??	Web App Attack
🇺🇸 withfallback.com	2024-10-29 10:33:11 (1 year ago)	Attempted RDP login to administrator account	Brute-Force
🇪🇸 10dencehispahard SL	2024-10-04 07:34:37 (1 year ago)	Scan to detect web files	Port Scan Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.151.198

🇸🇪 185.202.108.137

🇨🇳 171.114.228.193

🇮🇶 169.224.65.76

🇷🇴 80.94.92.234

🇺🇸 50.116.72.11

🇮🇳 45.123.110.70

🇨🇳 14.103.80.24

🇺🇸 216.180.246.177

🇳🇱 176.65.139.253

🇳🇱 176.65.139.248

🇺🇸 172.236.228.39

🇹🇼 106.1.107.185

🇧🇪 104.155.80.184

🇺🇸 47.251.82.43

🇲🇾 47.250.53.69

🇳🇱 45.198.224.127

🇳🇱 45.153.34.151

🇭🇰 45.120.216.232

🇺🇸 20.40.250.17