JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.242.160.28

159.242.160.28 was found in our database!

This IP was reported 173 times. Confidence of Abuse is 100%: ?

100%

ISP	Adwanted USA (CH1)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13499
Domain Name	elementcritical.com
Country	🇺🇸 United States of America
City	Wood Dale, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.242.160.28

Whois 159.242.160.28

IP Abuse Reports for 159.242.160.28:

This IP address has been reported a total of 173 times from 92 distinct sources. 159.242.160.28 was first reported on May 12th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-08 22:46:08 (1 week ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-04 20:30:42 (2 weeks ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-05-29 05:46:13 (3 weeks ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-05-23 20:46:18 (3 weeks ago)	Failed Wordpress Logins	Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-21 22:00:14 (4 weeks ago)	Auto-ban: 12 malicious requests on 2026-05-20 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 12 malicious requests on 2026-05-20 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
Anonymous	2026-05-21 03:46:08 (4 weeks ago)	Failed Wordpress Logins	Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-20 22:01:22 (4 weeks ago)	Auto-ban: >3000 req/min op 2026-05-20	Web App Attack SSH Hacking
🇫🇷 tecnicorioja	2026-05-20 22:00:57 (4 weeks ago)	wp-login attack [20/May/2026:09:17:36	Brute-Force Web App Attack
🇩🇪 barbarella	2026-05-20 15:43:33 (4 weeks ago)	Multiple (2) times attack on https port 443: Hacking attempt of Wordpress (scan for users) (GET /?au ... show more Multiple (2) times attack on https port 443: Hacking attempt of Wordpress (scan for users) (GET /?author=21) 15:45:02 Hacking attempt of Wordpress (scan for users) (GET /?author=27) show less	Hacking Web App Attack
🇨🇭 4server	2026-05-20 15:38:08 (4 weeks ago)	[WedMay2017:38:06.0189382026][security2:error][pid3300669:tid3300677][client159.242.160.28:0]ModSecu ... show more [WedMay2017:38:06.0189382026][security2:error][pid3300669:tid3300677][client159.242.160.28:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"giulianodemarco.ch\"][uri\"/xmlrpc.php\"][unique_id\"ag3VXiztyxFqRIAUnC0mMwAAAEU\"] show less	Hacking Web App Attack
🇺🇸 etu brutus	2026-05-20 15:14:10 (4 weeks ago)	159.242.160.28 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
Anonymous	2026-05-20 14:33:14 (4 weeks ago)	Web App Attack, Hacking	Hacking Web App Attack
🇩🇪 FeG Deutschland	2026-05-20 13:43:13 (4 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 dbmwebdesign	2026-05-20 13:37:00 (4 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TAY	2026-05-20 13:31:36 (4 weeks ago)	159.242.160.28 - - [20/May/2026:21:22:07 +0800] "POST /wp-login.php HTTP/1.1" 200 2616 "https://litt ... show more 159.242.160.28 - - [20/May/2026:21:22:07 +0800] "POST /wp-login.php HTTP/1.1" 200 2616 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 159.242.160.28 - - [20/May/2026:21:22:09 +0800] "POST /wp-login.php HTTP/1.1" 200 2678 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 159.242.160.28 - - [20/May/2026:21:31:36 +0800] "POST /wp-login.php HTTP/1.1" 200 2976 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force

Showing 1 to 15 of 173 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.238

🇮🇳 49.42.136.145

🇩🇪 45.130.203.178

🇨🇦 24.203.79.110

🇳🇱 216.163.184.69

🇷🇴 141.98.83.240

🇨🇳 106.75.185.227

🇱🇹 81.30.98.62

🇫🇮 45.154.244.2

🇩🇪 43.228.157.9

🇭🇰 43.135.49.67

🇧🇷 34.95.197.36

🇺🇸 147.90.235.154

🇸🇬 128.199.64.40

🇨🇦 85.217.149.19

🇺🇸 67.20.76.166

🇫🇷 157.173.102.12

🇭🇰 154.221.25.72

🇺🇸 143.198.174.13

🇮🇳 117.221.71.25