JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.118.224.173

161.118.224.173 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 62%: ?

62%

ISP	500 Oracle Parkway
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇸🇬 Singapore
City	Kampong Loyang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.118.224.173

Whois 161.118.224.173

IP Abuse Reports for 161.118.224.173:

This IP address has been reported a total of 161 times from 76 distinct sources. 161.118.224.173 was first reported on April 16th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-06-22 05:25:06 (1 day ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
Anonymous	2026-06-04 20:31:17 (2 weeks ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-05-30 07:46:27 (3 weeks ago)	Failed Wordpress Logins	Web App Attack
🇧🇷 ICS Labs	2026-05-28 20:29:23 (3 weeks ago)	ICS Labs identified 161.118.224.173 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
Anonymous	2026-05-24 18:09:27 (4 weeks ago)	Failed Wordpress Logins	Web App Attack
🇫🇷 Lunix	2026-05-19 06:15:54 (1 month ago)		Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-18 07:02:40 (1 month ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇦 URAN Publishing Service	2026-05-18 05:01:01 (1 month ago)	161.118.224.173 - - [18/May/2026:08:00:53 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 218 "-" ... show more 161.118.224.173 - - [18/May/2026:08:00:53 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.1 Safari/605.1.15" 161.118.224.173 - - [18/May/2026:08:00:57 +0300] "GET /wp-admin/load-scripts.php HTTP/1.1" 404 2801 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-05-17 20:57:47 (1 month ago)	Failed Wordpress Logins	Web App Attack
🇬🇧 consul.to	2026-05-17 04:06:06 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇦 Dolphi	2026-05-16 05:50:03 (1 month ago)	Excessive GET /wp-login.php?redirect_to=https%3A%2F%2Fbest-lp.com%2Fwp-ad requests	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-05-16 04:28:10 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
🇬🇧 andypiper	2026-05-16 01:00:46 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-16 00:15:52 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 Prepaid-Host.com	2026-05-15 21:29:23 (1 month ago)	Web Exploit detected \| Events: 15 \| First seen: 2026-05-15 21:29 UTC \| Last seen: 2026-05-15 21:29 U ... show more Web Exploit detected \| Events: 15 \| First seen: 2026-05-15 21:29 UTC \| Last seen: 2026-05-15 21:29 UTC \| Sample: Web Exploit detected by fail2ban jail 'plesk-wordpress': 15 failed attempt(s) from 161.118.224.173 Web Exploit detected by fail2ban jail 'plesk-wordpress': 15 failed attempt(s) from 161.118.224.173 show less	Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 118.163.132.212

🇨🇳 202.111.183.254

🇺🇸 143.110.206.19

🇸🇬 47.128.23.111

🇧🇪 34.62.58.235

🇨🇳 14.103.115.80

🇧🇷 200.216.172.182

🇺🇸 173.255.221.189

🇩🇪 172.71.172.121

🇩🇪 172.71.172.120

🇺🇸 103.143.11.150

🇮🇹 72.146.1.254

🇮🇶 65.20.174.49

🇬🇧 31.14.254.50

🇩🇪 217.91.8.42

🇮🇷 217.18.94.171

🇹🇼 198.235.24.40

🇲🇽 187.192.86.153

🇺🇸 172.202.100.15

🇪🇬 156.202.60.184