JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.201.184

104.28.201.184 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 33%: ?

33%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇺🇸 United States of America
City	St. Petersburg, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.201.184

Whois 104.28.201.184

IP Abuse Reports for 104.28.201.184:

This IP address has been reported a total of 19 times from 5 distinct sources. 104.28.201.184 was first reported on June 1st 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Lino Project	2026-06-23 15:28:39 (1 hour ago)	104.28.201.184 - - [23/Jun/2026:17:28:38 +0200] "GET /.git/config HTTP/1.1" 403 3821 "-" "Mozilla/5. ... show more 104.28.201.184 - - [23/Jun/2026:17:28:38 +0200] "GET /.git/config HTTP/1.1" 403 3821 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-23 15:04:55 (1 hour ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇺🇸 TPI-Abuse	2026-06-23 08:31:29 (8 hours ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:31:21.858533 2026] [security2:error] [pid 17906:tid 17906] [client 104.28.201.184:64579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lusineweb.com"] [uri "/.git/HEAD"] [unique_id "ajpEWeDiZkKkI9g_s33qFwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 04:03:02 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 00:02:57.943567 2026] [security2:error] [pid 29087:tid 29087] [client 104.28.201.184:60609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ltrinc.com"] [uri "/.git/HEAD"] [unique_id "ajoFcWS8GfTTYFY-lbAy1QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 15:25:49 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 11:25:41.615879 2026] [security2:error] [pid 27608:tid 27608] [client 104.28.201.184:53859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.swindontkd.swindon-itf.com"] [uri "/.git/HEAD"] [unique_id "ajlT9eRUAGbYDwXY4-Q3nAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 10:32:07 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:32:02.087796 2026] [security2:error] [pid 32570:tid 32570] [client 104.28.201.184:42557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.surfing.infojeffreysbay.com"] [uri "/.git/config"] [unique_id "ajkPItILfZ7tvIbId59XDAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 10:13:44 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 06:13:37.254250 2026] [security2:error] [pid 5551:tid 5560] [client 104.28.201.184:60161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.surdick.com.faimreps.com"] [uri "/.git/HEAD"] [unique_id "ajkK0WwDdZzjvWezsIrL1gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 08:58:21 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 04:58:18.475954 2026] [security2:error] [pid 10305:tid 10305] [client 104.28.201.184:64549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.support.alitcogroup.com"] [uri "/.git/HEAD"] [unique_id "ajj5KrW1ZhDdoY8jxHZrZwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-22 03:05:05 (1 day ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-22 02:05:08 (1 day ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 21:23:40 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 17:23:33.197611 2026] [security2:error] [pid 23767:tid 23767] [client 104.28.201.184:55445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.stygianpassage.com.greighhouse.com"] [uri "/.git/HEAD"] [unique_id "ajhWVYpx5AI4Wiv3hRRdbwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 19:40:11 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:40:05.793680 2026] [security2:error] [pid 16217:tid 16217] [client 104.28.201.184:54945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.studio716.powerastronomy.com"] [uri "/.git/HEAD"] [unique_id "ajg-FRuAkZK-bCv3OObenwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 18:01:06 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 14:01:01.255391 2026] [security2:error] [pid 11601:tid 11601] [client 104.28.201.184:42590] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.stricklinphotography.com"] [uri "/.git/config"] [unique_id "ajgm3eD9TLyIZQZ8HAIA8gAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 17:31:05 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 13:31:00.108633 2026] [security2:error] [pid 5118:tid 5163] [client 104.28.201.184:54971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.streamriders.com.hdtv55.com"] [uri "/.git/config"] [unique_id "ajgf1B3uCCdofbgSB2uAvQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 16:36:32 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.28.201.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 12:36:28.188082 2026] [security2:error] [pid 25962:tid 25962] [client 104.28.201.184:55002] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.strangerdanger.andrsn.com"] [uri "/.git/HEAD"] [unique_id "ajgTDCnLNwUMBWqReRhQ3AAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.94

🇮🇳 152.52.224.26

🇨🇳 123.160.233.176

🇫🇷 91.231.89.225

🇧🇷 91.123.10.169

🇮🇪 82.21.248.187

🇺🇸 64.62.156.143

🇬🇧 44.131.7.228

🇯🇵 34.84.219.244

🇳🇱 185.224.128.16

🇱🇻 81.30.98.62

🇳🇱 77.91.71.11

🇮🇳 59.179.31.237

🇺🇸 54.240.9.41

🇿🇲 45.215.251.150

🇳🇱 45.148.10.147

🇧🇷 187.108.1.135

🇸🇬 152.42.164.200

🇺🇸 152.32.208.7

🇯🇵 152.32.201.247