JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.166.113

104.28.166.113 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 100%: ?

100%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.166.113

Whois 104.28.166.113

IP Abuse Reports for 104.28.166.113:

This IP address has been reported a total of 93 times from 54 distinct sources. 104.28.166.113 was first reported on March 9th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 grassau.com	2026-05-26 08:54:58 (1 week ago)	(wordpress) Failed wordpress login from 104.28.166.113 (SG/Singapore/-/Singapore/-)	Brute-Force
Anonymous	2026-05-24 18:00:51 (1 week ago)	Failed Wordpress Logins	Web App Attack
🇺🇸 ipblock.com	2026-05-20 11:52:00 (2 weeks ago)	IPBlock protected site ID [3390-wh]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇫🇷 /dev/null	2026-05-20 11:06:39 (2 weeks ago)	WordPress login brute-force detected	Brute-Force Exploited Host
🇮🇩 David Koswari	2026-05-20 06:20:00 (2 weeks ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇫🇷 SpaceHost-Server	2026-05-18 22:26:35 (2 weeks ago)		Brute-Force Web App Attack
🇩🇪 todix	2026-05-18 15:59:52 (2 weeks ago)	Wordpress brute force or spam attempt from 104.28.166.113	Brute-Force
🇺🇸 Jason Howell	2026-05-18 15:15:21 (2 weeks ago)	104.28.166.113 - - [18/May/2026:10:15:14 -0500] "POST /xmlrpc.php HTTP/1.1" 200 442 "-" "Mozilla/5.0 ... show more 104.28.166.113 - - [18/May/2026:10:15:14 -0500] "POST /xmlrpc.php HTTP/1.1" 200 442 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 104.28.166.113 - - [18/May/2026:10:15:16 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3030 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 104.28.166.113 - - [18/May/2026:10:15:17 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3032 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" 104.28.166.113 - - [18/May/2026:10:15:18 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3031 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 104.28.166.113 - - [18/May/2026:10:15:19 -0500] "POST /xmlrpc.php HTTP/1.1" 200 3031 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" ... show less	Web App Attack
🇫🇷 Kenshin869	2026-05-18 14:00:31 (2 weeks ago)	Wordpress unauthorized access attempt	Brute-Force
Anonymous	2026-05-17 20:49:33 (2 weeks ago)	Failed Wordpress Logins	Web App Attack
🇺🇸 xmission.com	2026-05-16 23:09:50 (2 weeks ago)	Blocked by UFW (TCP on 123) Source port: 57756 TTL: 52 Packet length: 60 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 123) Source port: 57756 TTL: 52 Packet length: 60 TOS: 0x08 This report (for 104.28.166.113) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 dynamix	2026-05-15 22:27:37 (2 weeks ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-15 13:10:47 (2 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.28.166.113 (CA/Canada/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.28.166.113 (CA/Canada/-): 1 in the last 3600 secs (0-195) show less	Hacking
Anonymous	2026-05-13 13:46:08 (3 weeks ago)	Failed Wordpress Logins	Web App Attack
🇳🇱 Site.eu	2026-05-13 10:42:03 (3 weeks ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH

Showing 16 to 30 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.18.113

🇮🇱 89.138.210.126

🇰🇿 89.107.99.224

🇧🇷 15.228.12.172

🇹🇼 198.235.24.106

🇺🇸 172.184.254.67

🇦🇺 123.209.108.106

🇰🇷 114.30.253.95

🇳🇱 45.148.10.147

🇺🇸 35.235.140.189

🇺🇸 173.255.221.6

🇺🇸 172.190.89.127

🇺🇸 162.216.149.238

🇳🇱 142.93.135.160

🇦🇪 94.59.11.52

🇻🇳 58.186.20.143

🇺🇸 35.235.130.118

🇮🇪 34.242.241.32

🇸🇬 34.87.80.221

🇺🇸 20.64.106.77