JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.164.118

104.28.164.118 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 40%: ?

40%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇹🇷 Turkey
City	Bahcelievler, Istanbul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.164.118

Whois 104.28.164.118

IP Abuse Reports for 104.28.164.118:

This IP address has been reported a total of 48 times from 36 distinct sources. 104.28.164.118 was first reported on July 20th 2025, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 lostswordfish.com	2026-06-03 17:56:03 (19 hours ago)	Wordfence waf block on flintlocal432	Web App Attack
🇯🇵 SentinalX by uzumaru	2026-05-26 01:02:12 (1 week ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: httpbin.org:443 show less	Open Proxy Port Scan
🇯🇵 SentinalX by uzumaru	2026-05-17 18:20:55 (2 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.steampowered.com:443 show less	Open Proxy Port Scan
🇵🇱 mkey	2026-05-13 21:25:03 (3 weeks ago)	Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS ... show more Verified scan activity detected by local IDS/firewall correlation. SCAN: HIGHRISK_SINGLEPORT \| PORTS=23 \| HITS=2 \| IPSET=ADD \| FIRST=2026-05-13 23:22:12 \| LAST=2026-05-13 23:22:13. Last seen 2026-05-13 23:22:13. show less	Port Scan
🇬🇧 PeravixGroup	2026-05-13 21:05:43 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 ALSCO®️	2026-05-05 22:00:22 (4 weeks ago)	Report By ALSCO Security Team: Unauthorized Connection Attempt	Hacking
🇺🇸 Secure Gateway®️	2026-05-05 22:00:21 (4 weeks ago)	Report By Secure Gateway Security Team: XSS Injection Attempt Detected	Web App Attack
🇬🇧 djboddington	2026-05-05 16:58:46 (4 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/ssh-bf	SSH Brute-Force
🇺🇸 Secure Gateway®️	2026-04-30 21:59:58 (1 month ago)	Report By Secure Gateway Security Team: Unauthorized Connection Attempt	Web App Attack
🇺🇸 ALSCO®️	2026-04-30 21:59:58 (1 month ago)	Report By ALSCO Security Team: Unauthorized Connection Attempt	Web App Attack
🇯🇵 demonsword	2026-04-30 08:19:32 (1 month ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.inovapin.com:443 show less	Open Proxy Port Scan
🇹🇷 LiterallyEthical	2026-04-29 17:53:00 (1 month ago)	Web admin panel fuzzing	Web App Attack
Anonymous	2026-04-17 16:31:30 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
Anonymous	2026-04-17 13:26:17 (1 month ago)	(smtpauth) Failed SMTP AUTH login from 104.28.164.118 (TR/Türkiye/-)	Brute-Force
🇮🇹 Progetto1	2026-04-17 13:16:02 (1 month ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 192.99.169.210

🇺🇸 172.67.170.187

🇵🇰 160.191.208.64

🇬🇧 151.241.190.72

🇵🇰 119.156.31.177

🇻🇳 116.110.158.220

🇲🇦 102.53.15.18

🇧🇬 79.124.62.122

🇵🇭 61.28.144.154

🇨🇳 58.220.10.131

🇲🇽 46.250.169.106

🇨🇿 46.28.105.114

🇳🇱 45.148.10.151

🇺🇸 71.6.232.24

🇺🇸 65.49.1.49

🇸🇬 47.84.133.68

🇭🇰 47.83.124.31

🇩🇪 43.165.7.74

🇫🇷 38.242.232.20

🇺🇸 35.222.63.71