JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.161.39

104.28.161.39 was found in our database!

This IP was reported 277 times. Confidence of Abuse is 70%: ?

70%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇷🇺 Russian Federation
City	Domodedovo, Moscow Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.161.39

Whois 104.28.161.39

IP Abuse Reports for 104.28.161.39:

This IP address has been reported a total of 277 times from 54 distinct sources. 104.28.161.39 was first reported on June 5th 2024, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 punctualsuspension968	2026-06-04 11:01:53 (21 hours ago)	blocked by ufw on TCP 48177	Port Scan
🇨🇳 pengpeng	2026-06-02 12:23:12 (2 days ago)	monitor: on VM-0-7-ubuntu \| port: 1073 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇨🇳 pengpeng	2026-06-01 19:03:17 (3 days ago)	monitor: on VM-0-7-ubuntu \| port: 22407 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 22407 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-01 17:04:15 (3 days ago)	[redacted] 104.28.161.39 - - [01/Jun/2026:19:03:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 104.28.161.39 - - [01/Jun/2026:19:03:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.4)" [redacted] 104.28.161.39 - - [01/Jun/2026:19:03:43 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" [redacted] 104.28.161.39 - - [01/Jun/2026:19:03:52 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 104.28.161.39 - - [01/Jun/2026:19:04:03 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 104.28.161.39 - - [01/Jun/2026:19:04:13 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)" ... show less	Hacking Web App Attack
Anonymous	2026-06-01 11:55:25 (3 days ago)	[ns31.kdns.gr] httpd-xmlrpc-post: sites=savouras.gr; logs=/var/log/httpd/domains/savouras.gr.log; sa ... show more [ns31.kdns.gr] httpd-xmlrpc-post: sites=savouras.gr; logs=/var/log/httpd/domains/savouras.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
Anonymous	2026-05-31 15:03:56 (4 days ago)	104.28.161.39 - - [31/May/2026:17:03:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.co ... show more 104.28.161.39 - - [31/May/2026:17:03:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 104.28.161.39 - - [31/May/2026:17:03:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 104.28.161.39 - - [31/May/2026:17:03:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0; WordPress/6.4; http://site79245394.com" 104.28.161.39 - - [31/May/2026:17:03:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack/13.0; WordPress/6.4; http://site79245394.com" 104.28.161.39 - - [31/May/2026:17:03:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/12.1; WordPress/6.3; http://site52374113.com" ... show less	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-31 14:34:50 (4 days ago)	(xmlrpc) Apache: Failed xmlrpc access from 104.28.161.39 (GB/United Kingdom/-): 10 in the last 3600 ... show more (xmlrpc) Apache: Failed xmlrpc access from 104.28.161.39 (GB/United Kingdom/-): 10 in the last 3600 secs (0-201) show less	Hacking
🇦🇺 screwlooseit.com.au	2026-05-31 12:42:50 (4 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC US/United States/-	Web App Attack
🇱🇻 garmtech.com	2026-05-31 12:38:50 (4 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)	Web App Attack
🇫🇷 dynamix	2026-05-31 11:41:01 (4 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇷🇺 punctualsuspension968	2026-05-30 21:54:10 (5 days ago)	blocked by ufw on TCP 6881	Port Scan
🇨🇳 pengpeng	2026-05-30 15:41:43 (5 days ago)	monitor: on VM-0-7-ubuntu \| port: 14793 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 14793 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 pengpeng	2026-05-30 09:30:18 (5 days ago)	monitor: on VM-0-7-ubuntu \| port: 11463 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 11463 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-29 15:19:35 (6 days ago)	104.28.161.39 - - [29/May/2026:17:19:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 749 "-" "Jetpack/12.1 ... show more 104.28.161.39 - - [29/May/2026:17:19:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 749 "-" "Jetpack/12.1; WordPress/6.1; http://site29138361.com" 104.28.161.39 - - [29/May/2026:17:19:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 447 "-" "Jetpack/12.1; WordPress/6.1; http://site29138361.com" 104.28.161.39 - - [29/May/2026:17:19:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 749 "-" "Jetpack by WordPress.com" 104.28.161.39 - - [29/May/2026:17:19:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 447 "-" "Jetpack by WordPress.com" 104.28.161.39 - - [29/May/2026:17:19:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 749 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-05-29 12:45:59 (6 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS	Web App Attack

Showing 1 to 15 of 277 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇽🇰 46.99.23.180

🇩🇪 178.105.237.253

🇰🇷 59.24.133.197

🇺🇸 23.94.92.98

🇮🇱 2.55.122.202

🇨🇳 1.92.213.246

🇳🇱 45.148.10.141

🇺🇸 18.227.79.154

🇭🇺 5.187.238.140

🇿🇦 196.192.181.202

🇨🇱 186.10.86.130

🇸🇬 162.158.163.85

🇺🇸 154.21.80.14

🇺🇸 136.56.64.111

🇯🇵 128.28.21.58

🇮🇩 110.138.130.233

🇨🇳 49.7.204.85

🇳🇱 45.148.10.157

🇬🇧 35.203.211.95

🇷🇴 2.57.121.25