JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.28.226.8

104.28.226.8 was found in our database!

This IP was reported 523 times. Confidence of Abuse is 69%: ?

69%

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.28.226.8

Whois 104.28.226.8

IP Abuse Reports for 104.28.226.8:

This IP address has been reported a total of 523 times from 210 distinct sources. 104.28.226.8 was first reported on November 26th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 jcbriar	2026-05-20 02:42:37 (2 weeks ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇺🇸 Rbot	2026-05-19 23:44:00 (2 weeks ago)	404 requests for the file /wordpress/wp-content/ai1wm-backups/	Web App Attack Hacking
Anonymous	2026-05-19 23:38:39 (2 weeks ago)	104.28.226.8 - - [20/May/2026:01:38:35 +0200] "GET /wp-content/plugins/all-in-one-wp-migration/unins ... show more 104.28.226.8 - - [20/May/2026:01:38:35 +0200] "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.0" 404 161594 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [20/May/2026:01:38:36 +0200] "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 29316 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [20/May/2026:01:38:37 +0200] "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.0" 404 161594 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [20/May/2026:01:38:37 +0200] "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 29316 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safar ... show less	Brute-Force Web App Attack
🇩🇪 Viveronese	2026-05-19 22:52:04 (2 weeks ago)	HTTP vulnerability scanning	Web App Attack
Anonymous	2026-05-19 22:29:27 (2 weeks ago)	104.28.226.8 - - [19/May/2026:19:29:26 -0300] "GET /wp-content/plugins/all-in-one-wp-migration/unins ... show more 104.28.226.8 - - [19/May/2026:19:29:26 -0300] "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/2.0" 404 170 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [19/May/2026:19:29:26 -0300] "GET /wp-content/ai1wm-backups/ HTTP/2.0" 404 170 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [19/May/2026:19:29:26 -0300] "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/2.0" 404 170 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" ... show less	Port Scan
🇩🇪 expandmade.com	2026-05-19 20:18:59 (2 weeks ago)	trolling for resource vulnerabilities [19/May/2026:20:18:59 "GET /wp-content/plugins/all-in-one-wp-m ... show more trolling for resource vulnerabilities [19/May/2026:20:18:59 "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php"] show less	Web App Attack
Anonymous	2026-05-19 14:15:11 (2 weeks ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 MarkGGN	2026-05-19 11:42:01 (2 weeks ago)	Web attack. 104.28.226.8 - - [19/May/2026:13:42:00 +0200] "GET /wordpress/wp-content/plugins/all-in- ... show more Web attack. 104.28.226.8 - - [19/May/2026:13:42:00 +0200] "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/2.0" 403 129 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [19/May/2026:13:42:00 +0200] "GET /wordpress/wp-content/ai1wm-backups/ HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" show less	Web App Attack
🇳🇱 wlt-blocker	2026-05-19 07:14:41 (2 weeks ago)	Unauthorized access to webpage admin	Web App Attack
🇬🇧 Greg Poulson	2026-05-19 06:10:37 (2 weeks ago)	Our website was hit by this DDOS at a rate of 6 in 5 minutes.	DDoS Attack Web Spam Brute-Force
🇬🇧 consul.to	2026-05-18 16:48:43 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 LRob.fr	2026-05-18 16:46:05 (2 weeks ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇺🇸 LSPCCU	2026-05-18 14:13:17 (3 weeks ago)	TSEC Honeypot Network report. Threat score: 80/100. Categories: DDoS Attack, Port Scan, Hacking, Bru ... show more TSEC Honeypot Network report. Threat score: 80/100. Categories: DDoS Attack, Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: 104. show less	DDoS Attack Port Scan Hacking Brute-Force Web App Attack SSH
🇺🇸 Major Hostility	2026-05-18 14:00:27 (3 weeks ago)	"GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 "GET /wp-content/ai1wm- ... show more "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 "GET /wp-content/ai1wm-backups/ HTTP/1.1" 404 "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 "GET /wordpress/wp-content/ai1wm-backups/ HTTP/1.1" 404 "GET /blog/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 "GET /blog/wp-content/ai1wm-backups/ HTTP/1.1" 404 show less	Web App Attack
Anonymous	2026-05-18 11:55:31 (3 weeks ago)	104.28.226.8 - - [18/May/2026:13:55:31 +0200] "GET /wp-content/plugins/all-in-one-wp-migration/unins ... show more 104.28.226.8 - - [18/May/2026:13:55:31 +0200] "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.0" 404 463 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [18/May/2026:13:55:31 +0200] "GET /wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 247 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [18/May/2026:13:55:31 +0200] "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.0" 404 463 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" 104.28.226.8 - - [18/May/2026:13:55:31 +0200] "GET /wordpress/wp-content/plugins/all-in-one-wp-migration/uninstall.php HTTP/1.1" 404 247 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 523 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 14.103.84.145

🇳🇱 195.178.110.30

🇳🇱 193.176.31.201

🇺🇾 186.53.174.60

🇨🇳 180.76.240.16

🇳🇱 176.65.139.237

🇺🇸 172.56.96.118

🇺🇦 93.175.202.22

🇭🇺 62.77.224.67

🇨🇳 42.84.60.206

🇳🇱 5.129.216.23

🇩🇪 213.209.159.56

🇬🇧 213.171.208.62

🇩🇪 194.88.98.112

🇭🇰 154.83.13.181

🇧🇷 138.94.127.153

🇨🇳 112.46.212.226

🇷🇺 85.172.92.240

🇺🇸 76.127.61.251

🇺🇸 68.69.177.112