JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.118.224.173

161.118.224.173 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 62%: ?

62%

ISP	500 Oracle Parkway
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇸🇬 Singapore
City	Kampong Loyang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.118.224.173

Whois 161.118.224.173

IP Abuse Reports for 161.118.224.173:

This IP address has been reported a total of 161 times from 76 distinct sources. 161.118.224.173 was first reported on April 16th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-06-22 05:25:06 (1 day ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
Anonymous	2026-06-04 20:31:17 (2 weeks ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-05-30 07:46:27 (3 weeks ago)	Failed Wordpress Logins	Web App Attack
🇧🇷 ICS Labs	2026-05-28 20:29:23 (3 weeks ago)	ICS Labs identified 161.118.224.173 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
Anonymous	2026-05-24 18:09:27 (4 weeks ago)	Failed Wordpress Logins	Web App Attack
🇫🇷 Lunix	2026-05-19 06:15:54 (1 month ago)		Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-18 07:02:40 (1 month ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇦 URAN Publishing Service	2026-05-18 05:01:01 (1 month ago)	161.118.224.173 - - [18/May/2026:08:00:53 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 218 "-" ... show more 161.118.224.173 - - [18/May/2026:08:00:53 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.1 Safari/605.1.15" 161.118.224.173 - - [18/May/2026:08:00:57 +0300] "GET /wp-admin/load-scripts.php HTTP/1.1" 404 2801 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-05-17 20:57:47 (1 month ago)	Failed Wordpress Logins	Web App Attack
🇬🇧 consul.to	2026-05-17 04:06:06 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇦 Dolphi	2026-05-16 05:50:03 (1 month ago)	Excessive GET /wp-login.php?redirect_to=https%3A%2F%2Fbest-lp.com%2Fwp-ad requests	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-05-16 04:28:10 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
🇬🇧 andypiper	2026-05-16 01:00:46 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-16 00:15:52 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 Prepaid-Host.com	2026-05-15 21:29:23 (1 month ago)	Web Exploit detected \| Events: 15 \| First seen: 2026-05-15 21:29 UTC \| Last seen: 2026-05-15 21:29 U ... show more Web Exploit detected \| Events: 15 \| First seen: 2026-05-15 21:29 UTC \| Last seen: 2026-05-15 21:29 UTC \| Sample: Web Exploit detected by fail2ban jail 'plesk-wordpress': 15 failed attempt(s) from 161.118.224.173 Web Exploit detected by fail2ban jail 'plesk-wordpress': 15 failed attempt(s) from 161.118.224.173 show less	Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 92.4.76.12

🇺🇸 51.81.85.130

🇪🇸 213.181.88.137

🇺🇸 195.184.76.212

🇵🇦 190.140.23.5

🇧🇷 190.103.165.162

🇺🇸 172.120.234.143

🇺🇸 45.79.173.114

🇨🇳 39.106.62.203

🇺🇸 195.184.76.89

🇳🇱 176.65.148.84

🇻🇳 171.243.50.31

🇨🇳 117.132.5.139

🇮🇩 103.181.254.147

🇻🇳 103.60.242.169

🇹🇬 102.64.165.65

🇬🇧 86.4.148.124

🇺🇦 46.201.29.101

🇺🇸 18.189.3.7

🇹🇼 198.235.24.35