JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.214.117

104.28.214.117 was found in our database!

This IP was reported 867 times. Confidence of Abuse is 100%: ?

100%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇺🇸 United States of America
City	St. Louis, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.214.117

Whois 104.28.214.117

IP Abuse Reports for 104.28.214.117:

This IP address has been reported a total of 867 times from 303 distinct sources. 104.28.214.117 was first reported on December 5th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 zXero	2026-06-03 12:27:01 (1 day ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇬🇧 consul.to	2026-05-30 05:02:04 (5 days ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-05-30 04:17:17 (5 days ago)	104.28.214.117 - - [30/May/2026:06:17:10 +0200] "GET /ms-themes.php HTTP/2.0" 404 196 "http://www.xn ... show more 104.28.214.117 - - [30/May/2026:06:17:10 +0200] "GET /ms-themes.php HTTP/2.0" 404 196 "http://www.xn--elferbrse-57a.de/ms-themes.php" "Go-http-client/2.0" 104.28.214.117 - - [30/May/2026:06:17:11 +0200] "GET /chosen.php?p= HTTP/2.0" 404 196 "http://www.xn--elferbrse-57a.de/chosen.php?p=" "Go-http-client/2.0" 104.28.214.117 - - [30/May/2026:06:17:11 +0200] "GET /file.php HTTP/2.0" 404 196 "http://www.xn--elferbrse-57a.de/file.php" "Go-http-client/2.0" 104.28.214.117 - - [30/May/2026:06:17:11 +0200] "GET /flower.php HTTP/2.0" 404 196 "http://www.xn--elferbrse-57a.de/flower.php" "Go-http-client/2.0" 104.28.214.117 - - [30/May/2026:06:17:12 +0200] "GET /gifclass.php HTTP/2.0" 404 196 "http://www.xn--elferbrse-57a.de/gifclass.php#888xyz999" "Go-http-client/2.0" 104.28.214.117 - - [30/May/2026:06:17:12 +0200] "GET /bless.php HTTP/2.0" 404 196 "http://www.xn--elferbrse-57a.de/bless.php#888xyz999" "Go-http-client/2.0" 104.28.214.117 - - [30/May/2026:06:17:12 +0200] "GET /class-t.api.php HTTP/2 ... show less	Web App Attack
🇨🇦 zXero	2026-05-29 12:21:16 (6 days ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
Anonymous	2026-05-28 13:10:06 (1 week ago)	104.28.214.117 - - [28/May/2026:15:10:05 +0200] "GET /wp-content/plugins/hellopress/wp_mna.php HTTP/ ... show more 104.28.214.117 - - [28/May/2026:15:10:05 +0200] "GET /wp-content/plugins/hellopress/wp_mna.php HTTP/1.1" 404 447 "-" "Go-http-client/1.1" 104.28.214.117 - - [28/May/2026:15:10:05 +0200] "GET /wp-content/plugins/index.php HTTP/1.1" 404 447 "-" "Go-http-client/1.1" 104.28.214.117 - - [28/May/2026:15:10:05 +0200] "GET /wp-content/index.php HTTP/1.1" 404 447 "-" "Go-http-client/1.1" 104.28.214.117 - - [28/May/2026:15:10:05 +0200] "GET /wp-content/themes/txets.php HTTP/1.1" 404 447 "-" "Go-http-client/1.1" 104.28.214.117 - - [28/May/2026:15:10:06 +0200] "GET /wp-includes/txets.php HTTP/1.1" 404 447 "-" "Go-http-client/1.1" ... show less	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-27 10:09:05 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 masterguru	2026-05-27 05:55:06 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇮🇳 evicky2002	2026-05-26 06:03:40 (1 week ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇩🇪 fleckenbase	2026-05-22 17:41:37 (1 week ago)	apache-noscript ...	Brute-Force Web App Attack
🇷🇺 BellFix	2026-05-22 14:07:09 (1 week ago)	Fail2ban reported 104.28.214.117 for npm-admin	Web App Attack
🇷🇺 BellFix	2026-05-19 15:51:50 (2 weeks ago)	Fail2ban reported 104.28.214.117 for npm-admin	Web App Attack
🇩🇪 iNetWorker	2026-05-18 20:48:01 (2 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇳🇱 Site.eu	2026-05-18 11:12:28 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇷🇺 BellFix	2026-05-12 01:09:03 (3 weeks ago)	Fail2ban reported 104.28.214.117 for npm-admin	Web App Attack
Anonymous	2026-05-11 06:03:01 (3 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Webshell probing, Malicious User-Agent show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 867 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.110.223.171

🇲🇾 20.17.99.104

🇳🇱 185.223.235.53

🇮🇳 103.123.53.88

🇷🇴 89.47.53.19

🇺🇿 87.192.224.131

🇸🇬 47.237.134.163

🇺🇸 47.163.25.182

🇳🇱 45.148.10.157

🇳🇱 45.148.10.152

🇳🇱 45.142.193.12

🇨🇦 38.49.217.60

🇨🇳 36.106.167.149

🇸🇬 8.219.94.188

🇺🇸 194.113.37.217

🇨🇳 182.61.35.204

🇧🇷 179.125.163.200

🇮🇳 125.19.253.154

🇮🇳 122.185.100.218

🇰🇿 95.59.142.69