JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.178.228.72

158.178.228.72 was found in our database!

This IP was reported 239 times. Confidence of Abuse is 84%: ?

84%

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇸🇬 Singapore
City	Kampong Loyang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.178.228.72

Whois 158.178.228.72

IP Abuse Reports for 158.178.228.72:

This IP address has been reported a total of 239 times from 42 distinct sources. 158.178.228.72 was first reported on November 14th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 macrob	2026-06-24 06:07:24 (1 hour ago)	2026/06/24 06:07:23 [error] 3800015#3800015: 326881097 access forbidden by rule, client: 158.178.22 ... show more 2026/06/24 06:07:23 [error] 3800015#3800015: 326881097 access forbidden by rule, client: 158.178.228.72, server: antzfund.com, request: "GET /wp-includes/js/jquery/jquery.js HTTP/1.1", host: "antzfund.com" 2026/06/24 06:07:23 [error] 3800015#3800015: 326881116 access forbidden by rule, client: 158.178.228.72, server: antzfund.com, request: "GET /wp-includes/css/dashicons.css HTTP/1.1", host: "antzfund.com" 2026/06/24 06:07:23 [error] 3800015#3800015: 326881121 access forbidden by rule, client: 158.178.228.72, server: antzfund.com, request: "GET /wp-content/themes/ HTTP/1.1", host: "antzfund.com" ... show less	Web App Attack
🇺🇸 lostswordfish.com	2026-06-23 20:14:04 (11 hours ago)	Wordfence waf block on illinoisvoices	Web App Attack
🇺🇸 www.nomadomia.com	2026-06-23 16:12:24 (15 hours ago)	Hack attack wp-admin	Port Scan Hacking Bad Web Bot Web App Attack
Anonymous	2026-06-23 15:48:43 (15 hours ago)	wp admin page access attempt ...	Hacking Web App Attack
🇳🇱 Site.eu	2026-06-23 14:46:51 (16 hours ago)	Excessive multi-domain requests	Brute-Force
🇫🇮 oh.mg	2026-06-23 12:13:44 (19 hours ago)	[Tue Jun 23 14:13:26.230290 2026] [security2:error] [pid 463151:tid 463164] [client 158.178.228.72:0 ... show more [Tue Jun 23 14:13:26.230290 2026] [security2:error] [pid 463151:tid 463164] [client 158.178.228.72:0] [client 158.178.228.72] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "mmn.eco"] [uri "/wp-login.php"] [unique_id "ajp4ZtALcElecha1QSmBwAAAAIo"] [Tue Jun 23 14:13:43.641290 2026] [security2:error] [pid 463151:tid 463175] [client 158.178.228.72:0] [client 158.178.228.72] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomal ... show less	Web App Attack Bad Web Bot
🇺🇸 ctidrv	2026-06-23 11:17:42 (20 hours ago)	Honeypot detection. Threat score: 65/100. Collector: wp_login. \| Request: GET /wp-login.php \| UA: Mo ... show more Honeypot detection. Threat score: 65/100. Collector: wp_login. \| Request: GET /wp-login.php \| UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 \| rDNS: 158.178.228.72 \| Reasons: wp_login_probe show less	Bad Web Bot
🇳🇱 ConsulHosting	2026-06-23 10:36:30 (20 hours ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇩🇪 Vegascosmetics	2026-06-23 07:11:52 (1 day ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after attack pattern. Vegas Security	Hacking Web App Attack
🇳🇱 Site.eu	2026-06-23 06:41:45 (1 day ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 mnsf	2026-06-23 05:06:40 (1 day ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇫🇷 COMAITE	2026-06-23 04:01:01 (1 day ago)	CMS (WordPress or Joomla) brute force attempt.	Web App Attack
🇩🇪 joharikop	2026-06-22 22:42:34 (1 day ago)	Nginx: WordPress/CMS probe (wp-admin, wp-login, xmlrpc). Automated ban via fail2ban nginx-cms-probes ... show more Nginx: WordPress/CMS probe (wp-admin, wp-login, xmlrpc). Automated ban via fail2ban nginx-cms-probes jail. show less	Web App Attack
🇧🇪 cmbplf	2026-06-22 21:31:55 (1 day ago)	2.469 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇬🇧 noise.agency	2026-06-22 21:12:26 (1 day ago)	(wordpress) Failed wordpress login from 158.178.228.72 (SG/Singapore/-)	Brute-Force

Showing 1 to 15 of 239 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:2cc:1::25f

🇲🇾 219.92.184.36

🇭🇰 199.45.155.108

🇨🇱 190.102.240.48

🇨🇳 180.111.30.149

🇭🇰 152.32.174.171

🇨🇦 85.217.149.26

🇺🇸 71.6.232.20

🇸🇪 65.99.181.123

🇺🇸 64.62.197.38

🇺🇸 47.251.123.229

🇺🇸 43.135.174.146

🇺🇸 3.130.168.2

🇺🇸 216.25.89.117

🇹🇷 213.142.151.136

🇨🇦 209.141.162.201

🇭🇰 199.45.155.100

🇳🇴 185.253.97.253

🇳🇱 185.226.197.10

🇳🇱 176.65.148.147