JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.231.231

104.28.231.231 was found in our database!

This IP was reported 177 times. Confidence of Abuse is 0%: ?

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇸🇦 Saudi Arabia
City	Jeddah, Mecca Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.231.231

Whois 104.28.231.231

IP Abuse Reports for 104.28.231.231:

This IP address has been reported a total of 177 times from 63 distinct sources. 104.28.231.231 was first reported on May 18th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 KIDOS	2026-03-26 07:14:54 (2 months ago)	IIS malicious activity: high_400_error_rate (100% of requests are 400 errors)	Web App Attack
Anonymous	2026-02-25 14:20:23 (3 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇺🇦 URAN Publishing Service	2026-01-20 07:24:51 (4 months ago)	104.28.231.231 - - [20/Jan/2026:09:24:50 +0200] "GET /cgi-bin/protected/main.cgi HTTP/1.1" 404 3026 ... show more 104.28.231.231 - - [20/Jan/2026:09:24:50 +0200] "GET /cgi-bin/protected/main.cgi HTTP/1.1" 404 3026 "-" "Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 104.28.231.231 - - [20/Jan/2026:09:24:50 +0200] "GET /wp-content/plugins/visualizer/readme.txt HTTP/1.1" 404 2863 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15" ... show less	Web App Attack
🇺🇸 Hmorrin	2026-01-20 07:15:37 (4 months ago)		Port Scan
🇯🇵 KuhA	2026-01-04 23:39:39 (5 months ago)	GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A)	Web App Attack
🇺🇸 LTU	2026-01-04 19:19:00 (5 months ago)	WordPress File Manager Plugin Remote Code Execution Vulnerability	Hacking
🇧🇷 Sipo Chutão	2025-12-31 03:00:01 (5 months ago)	ModSecurity: Access denied with code 403 (phase 2). detected SQLi using libinjection with fingerprin ... show more ModSecurity: Access denied with code 403 (phase 2). detected SQLi using libinjection with fingerprint '1&(E1' show less	Hacking
🇺🇦 URAN Publishing Service	2025-12-30 18:14:09 (5 months ago)	104.28.231.231 - - [30/Dec/2025:20:14:08 +0200] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 2844 "- ... show more 104.28.231.231 - - [30/Dec/2025:20:14:08 +0200] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 2844 "-" "Mozilla/5.0 (Knoppix; Linux x86_64; rv:123.0) Gecko/20100101 Firefox/123.0" ... show less	Web App Attack
🇫🇮 tjs	2025-12-30 13:35:00 (5 months ago)	web attack, SQL injection attempt	Hacking SQL Injection Web App Attack
🇺🇦 URAN Publishing Service	2025-12-30 02:11:42 (5 months ago)	104.28.231.231 - - [30/Dec/2025:04:11:39 +0200] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 2832 "- ... show more 104.28.231.231 - - [30/Dec/2025:04:11:39 +0200] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 2832 "-" "Mozilla/5.0 (Kubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Web App Attack
🇳🇱 JCB	2025-12-29 18:03:00 (5 months ago)	104.28.231.231 - - [29/Dec/2025:05:14:22 +0200] "GET /wp-content/plugins/visualizer/readme.txt HTTP/ ... show more 104.28.231.231 - - [29/Dec/2025:05:14:22 +0200] "GET /wp-content/plugins/visualizer/readme.txt HTTP/1.1" 404 236 104.28.231.231 - - [29/Dec/2025:05:14:23 +0200] "GET /wp-content/plugins/seo-by-rank-math/readme.txt HTTP/1.1" 404 236 ... show less	Hacking Web App Attack
🇺🇦 URAN Publishing Service	2025-12-29 09:31:03 (5 months ago)	104.28.231.231 - - [29/Dec/2025:11:30:59 +0200] "GET /wp-content/plugins/showbizpro/temp/update_extr ... show more 104.28.231.231 - - [29/Dec/2025:11:30:59 +0200] "GET /wp-content/plugins/showbizpro/temp/update_extract/SsirU.php HTTP/1.1" 404 2779 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0" ... show less	Web App Attack
🇯🇵 VXG-NET	2025-12-29 01:35:11 (5 months ago)	port=80, indicator_type=code-execution	Hacking
🇺🇦 URAN Publishing Service	2025-12-28 23:20:23 (5 months ago)	104.28.231.231 - - [29/Dec/2025:01:20:20 +0200] "POST /wp-content/plugins/wpdiscuz/utils/ajax/wpdisc ... show more 104.28.231.231 - - [29/Dec/2025:01:20:20 +0200] "POST /wp-content/plugins/wpdiscuz/utils/ajax/wpdiscuz-ajax.php HTTP/1.1" 404 2763 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/537.75.14" ... show less	Web App Attack
🇨🇿 ddw	2025-12-28 23:19:26 (5 months ago)	ModSecurity detection - Rules: 949110(Inbound Anomaly Score Exceeded (Total Score: 10))	Web App Attack

Showing 1 to 15 of 177 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c62::12b

🇳🇱 172.94.9.55

🇩🇪 158.94.208.30

🇺🇸 104.210.140.138

🇸🇬 101.47.158.137

🇨🇳 47.115.52.72

🇷🇼 41.186.203.117

🇺🇸 20.84.144.113

🇺🇸 91.230.168.226

🇳🇱 82.39.86.153

🇺🇸 70.116.193.75

🇧🇷 45.184.68.86

🇺🇸 40.126.62.131

🇳🇴 20.100.201.184

🇭🇰 199.45.155.95

🇪🇨 186.3.240.236

🇵🇰 175.107.0.197

🇮🇷 158.58.12.52

🇬🇧 144.126.199.181

🇺🇸 91.230.168.97