Frequently Asked Questions - AbuseIPDB
ALERT: AbuseIPDB Data Loss Incident
On Friday, August 28th we had an incident that caused downtime of the AbuseIPDB production server.
The good news: Our valiant developers worked overtime to bring AbuseIPDB back online, and migrated to a brand-new, improved server. No data or user accounts were compromised at any time.
The bad news: We had to restore the AbuseIPDB database from a system backup from the end of July. This means that user accounts created, IPs reported, and account changes made during the month of August have been lost.
If you registered with AbuseIPDB during the month of August, please re-register your account here. Any changes you made to your existing account in August should be re-done.
We sincerely apologize for the inconvenience - if you have any questions, or if we can help you get your account back up and running, please contact us!
1. What is AbuseIPDB.com?
AbuseIPDB is a project dedicated to helping systems administrators and webmasters check and report IP addresses that are involved in malicious activity such as spamming, hack attempts, DDoS attacks, etc.
We provide a free API for both reporting malicious IP addresses detected on your systems, and checking IP addresses for reported malicious activity.
2. What is malicious activity?
At AbuseIPDB, we consider any illegal, abusive or inappropriate activity detected from an IP address to be malicious, such as attempted DDoS, any type of spam, fraudulent orders, hacking attempts, phishing, spoofing, SQL injection, etc.
3. How much does it cost to use AbuseIPDB?
Our mission is to help make the Web a safer place, so we will always have free plans available for most of our users. We are hoping to develop more advanced, paid plans for corporate or advanced users in the future.
4. Can I integrate your API with my web site, blog, application, or server?
Absolutely! We provide a free API for checking and reporting IP addresses, that can be used to integrate with any website or application. We're proud to be used by thousands of websites and companies, big and small. To be able to use our API you have to register an account.
5. Are there any restrictions or limitations?
Due to limited resources, free accounts currently have 1,000 requests/day for both IP check and report actions through our free API. Verified webmasters are allowed 3,000 requests/day. The web version of our service does not have any usage limitations.
6. I didn't receive my confirmation / password reset email!
Please be sure to check your spam filter! We use Mailgun to send transactional emails, but every so often one may get flagged as spam. Please add firstname.lastname@example.org to your whitelist to make sure you get account updates.
7. Oops.. I included my email or IP address in the comment section. Can you remove it?
If you reported an IP anonymously we cannot change the comment for you. If you have an account, you can delete and re-submit your reports if needed. We strongly encourage you to limit your comments to only the key information about the abuse you are reporting.
8. How often should I report continuous abuse?
If an IP address is engaging in continuous abuse on your system (like attempting to brute-force SSH), we ask that you report the IP once per day. If an IP address is engages in separate types of abuse, you can report the same IP multiple times in one day. Our system prevents users from reporting the same IP for 15 minutes. This limit is primarily designed to prevent accidental duplicate reports.
9. Why Register as a Webmaster?
Regular users get 1,000 API requests per day. Verified webmasters get 3,000 API requests per day. You can upgrade to a webmaster account at any time. If you run a honey pot and can provide proof, we are happy to give you unlimited access to report and check IPs.
10. Why do you use Google Analytics and Adsense on AbuseIPDB?
AbuseIPDB uses Google Analytics to track anonymous statistics on how AbuseIPDB is used so we can continue to improve the project. We recognize that some of our users may use Ghostery or a similar script blocker to block certain scripts, and we respect your decision. However, the web report function uses AJAX and will not function if scripts are disabled completely.
We also place a single Google Adsense advertisement on certain pages to help us subsidize the costs of running AbuseIPDB. In the future, we hope to replace advertising for logged-in users with optional, paid API features. If you use Adblock on AbuseIPDB and would like to help support our free services, please consider making a donation :)
has generously sponsored the AbuseIPDB Project. If you sign up for DigitalOcean with this link, you'll get $10, and we'll get more credit towards our hosting costs :)
11. How can I support AbuseIPDB?
Thank you for your interest in supporting AbuseIPDB! There are many ways to show your support.
First, you can support us by making a donation. Second, we are currently working to build a repository of code used to report and check IPs automatically. If you have written your own custom scripts to integrate with AbuseIPDB and are willing to share your code, contact us. Finally, you can show your support by telling others about AbuseIPDB. If you are a webmaster, consider linking to AbuseIPDB.com. Linking to AbuseIPDB helps others find the site and the more people using and reporting IPs the safer we all are!
If you have supported AbuseIPDB by donating or linking to us, please contact us so we can give you "supporter" flare and remove all ads from your account. Thank you for supporting!
12. Who is responsible for AbuseIPDB?
As of March 2016, AbuseIPDB is now maintained and supported by Marathon Studios Inc. and Proud Development, based in Pennsylvania, USA. We have taken over management of AbuseIPDB from the previous developers, and are hoping to expand and improve on this project. If you're a developer interested in contributing, we'd love to hear from you!