JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.162.132

104.28.162.132 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 60%: ?

60%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇧🇷 Brazil
City	Angra dos Reis, Rio de Janeiro

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.162.132

Whois 104.28.162.132

IP Abuse Reports for 104.28.162.132:

This IP address has been reported a total of 38 times from 27 distinct sources. 104.28.162.132 was first reported on February 21st 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 grassau.com	2026-06-15 11:29:42 (4 days ago)	(wordpress) Failed wordpress login from 104.28.162.132 (BR/Brazil/Rio de Janeiro/Iguaçu/-)	Brute-Force
🇲🇿 delsio	2026-06-12 14:30:29 (1 week ago)	AS37697 ntopng observed inbound attack; alert=Live Flow High Score; source=104.28.162.132; destinati ... show more AS37697 ntopng observed inbound attack; alert=Live Flow High Score; source=104.28.162.132; destination=160.119.114.159; destination_port=15343; score=160; action=bgp_blackhole_and_flowspec_discard; block_duration=18000s; reason=high-confidence ntopng_blacklisted alert=Live Flow High Score dst=160.119.114.159 port=15343 show less	Port Scan
🇺🇸 gui-ying233	2026-06-11 00:00:43 (1 week ago)	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Sa ... show more Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 Edg/144.0.0.0 show less	Bad Web Bot
🇫🇷 SpaceHost-Server	2026-06-10 22:25:53 (1 week ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 16:38:27 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 104.28.162.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.28.162.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 12:38:19.983408 2026] [security2:error] [pid 17851:tid 17851] [client 104.28.162.132:14222] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 104.28.162.132 (+1 hits since last alert)\|pastorjohndunning.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "pastorjohndunning.com"] [uri "/xmlrpc.php"] [unique_id "aimS-48eAuF6TsqZ2Lat_gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Tripwire	2026-06-10 04:20:18 (1 week ago)	Probing for Wordpress - /xmlrpc.php	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-08 13:04:31 (1 week ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇩🇪 grassau.com	2026-06-08 00:25:27 (1 week ago)	(wordpress) Failed wordpress login from 104.28.162.132 (BR/Brazil/Rio de Janeiro/Iguaçu/-)	Brute-Force
Anonymous	2026-06-07 22:10:51 (1 week ago)	[redacted] 104.28.162.132 - - [08/Jun/2026:00:10:09 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" " ... show more [redacted] 104.28.162.132 - - [08/Jun/2026:00:10:09 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack/12.1; WordPress/6.4; http://site70776338.com" [redacted] 104.28.162.132 - - [08/Jun/2026:00:10:18 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" [redacted] 104.28.162.132 - - [08/Jun/2026:00:10:29 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "WordPress.com; https://wordpress.com" [redacted] 104.28.162.132 - - [08/Jun/2026:00:10:39 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" [redacted] 104.28.162.132 - - [08/Jun/2026:00:10:50 +0200] "POST /xmlrpc.php HTTP/1.1" 405 415 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
Anonymous	2026-06-07 19:45:45 (1 week ago)	Blocked by ModSec and CSF	Port Scan
🇫🇷 dynamix	2026-06-07 10:22:21 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-07 05:35:01 (1 week ago)	[redacted] 104.28.162.132 - - [07/Jun/2026:07:34:19 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ... show more [redacted] 104.28.162.132 - - [07/Jun/2026:07:34:19 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)" [redacted] 104.28.162.132 - - [07/Jun/2026:07:34:31 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.3)" [redacted] 104.28.162.132 - - [07/Jun/2026:07:34:39 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 104.28.162.132 - - [07/Jun/2026:07:34:49 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.3; http://site40314403.com" [redacted] 104.28.162.132 - - [07/Jun/2026:07:35:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.3)" ... show less	Hacking Web App Attack
🇷🇺 punctualsuspension968	2026-06-02 20:25:53 (2 weeks ago)	blocked by ufw on TCP 48177	Port Scan
Anonymous	2026-05-25 16:27:07 (3 weeks ago)	(xmlrpc) Failed wordpress XMLRPC 104.28.162.132 (BR/Brazil/-)	Brute-Force
🇺🇸 WeekendWeb	2026-05-11 23:49:57 (1 month ago)	Wordpress Vunerability attack	Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 77.83.39.4

🇺🇸 13.90.206.6

🇺🇸 2400:cb00:1046:1000:80b5:e972:4a5f:2783

🇸🇬 190.92.206.5

🇻🇳 171.224.254.252

🇮🇳 161.123.215.206

🇨🇳 60.174.35.18

🇲🇾 49.125.201.63

🇳🇱 45.148.10.34

🇬🇧 31.14.254.14

🇻🇳 171.224.178.45

🇩🇪 161.35.65.86

🇫🇮 147.185.133.199

🇺🇸 135.119.112.84

🇺🇸 66.132.172.32

🇰🇷 61.37.150.6

🇳🇱 45.148.10.141

🇺🇸 34.16.173.94

🇿🇦 20.87.219.67

🇳🇱 176.65.139.232