JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.193.117

104.28.193.117 was found in our database!

This IP was reported 85 times. Confidence of Abuse is 90%: ?

90%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇩🇪 Germany
City	Nuremberg, Bavaria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.193.117

Whois 104.28.193.117

IP Abuse Reports for 104.28.193.117:

This IP address has been reported a total of 85 times from 26 distinct sources. 104.28.193.117 was first reported on December 10th 2024, and the most recent report was 27 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 i-turnradio.nl	2026-06-26 16:15:46 (27 minutes ago)	2026-06-26 @ 18:15:45 (CET) ~ Blocked for trying to access: /erker/wp/wp-login.php	Web App Attack
🇫🇷 Duggy_Tuxy🧱	2026-06-26 15:38:27 (1 hour ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (SSH Attack)	Brute-Force SSH Port Scan
🇬🇷 Staging	2026-06-24 17:59:00 (1 day ago)	Cloudflare "customers". Polluted ASN afterall	Bad Web Bot Hacking
🇺🇸 lostswordfish.com	2026-06-24 11:30:07 (2 days ago)	Wordfence waf block on fairregistry	Web App Attack
🇫🇷 Duggy_Tuxy🧱	2026-06-23 19:24:22 (2 days ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (SSH Attack)	Brute-Force SSH Port Scan
🇫🇷 solution.it	2026-06-23 18:35:05 (2 days ago)	[Tue Jun 23 20:35:05.094508 2026] [php7:error] [pid 2251070:tid 2251070] [client 104.28.193.117:3805 ... show more [Tue Jun 23 20:35:05.094508 2026] [php7:error] [pid 2251070:tid 2251070] [client 104.28.193.117:38052] script '/var/www/html/wp-login.php' not found or unable to stat, referer: http://solution.it/wp-admin/ show less	Web App Attack
🇫🇷 Duggy_Tuxy🧱	2026-06-23 13:42:12 (3 days ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-22 07:29:07 (4 days ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-21 10:58:36 (5 days ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (SSH Attack)	Brute-Force SSH Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-20 04:15:07 (6 days ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (SSH Attack)	Brute-Force SSH Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-19 14:56:40 (1 week ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇸🇪 vaia.cloud	2026-06-18 20:28:03 (1 week ago)	trying wp-login.php/xmlrpc.php 397 times in 1 minutes	Brute-Force Web App Attack
🇧🇷 vfAcceloReporter	2026-06-18 20:01:36 (1 week ago)	104.28.193.117 - - [18/Jun/2026:17:01:35 -0300] "GET /old/xmlrpc.php HTTP/1.1" 404 153 "-" "Mozilla/ ... show more 104.28.193.117 - - [18/Jun/2026:17:01:35 -0300] "GET /old/xmlrpc.php HTTP/1.1" 404 153 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 104.28.193.117 - - [18/Jun/2026:17:01:35 -0300] "GET /wp-admin/xmlrpc.php HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" 104.28.193.117 - - [18/Jun/2026:17:01:35 -0300] "GET /main/xmlrpc.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 104.28.193.117 - - [18/Jun/2026:17:01:35 -0300] "GET /testing/xmlrpc.php HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 104.28.193.117 - - [18/Jun/2026:17:01:35 -0300] "GET /blog/xmlrpc.php HTTP/1.1" 404 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120. ... show less	Brute-Force Web App Attack Exploited Host
🇧🇪 taivas.nl	2026-06-18 19:32:12 (1 week ago)	Bad_requests	Bad Web Bot
Anonymous	2026-06-18 18:31:29 (1 week ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH

Showing 1 to 15 of 85 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.148.251.98

🇳🇱 195.178.110.228

🇺🇸 159.65.216.50

🇧🇷 191.183.43.130

🇦🇷 190.105.222.215

🇱🇻 188.112.150.160

🇺🇸 172.253.9.219

🇳🇱 172.94.9.203

🇺🇸 162.216.150.252

🇮🇳 103.168.57.31

🇳🇱 85.11.167.185

🇺🇸 65.49.1.145

🇳🇱 45.148.10.240

🇳🇱 45.148.10.157

🇳🇱 45.148.10.147

🇺🇸 44.230.6.86

🇺🇸 44.113.80.21

🇺🇸 40.160.63.222

🇬🇧 35.203.211.37

🇲🇽 189.216.171.196