JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.123.218.106

161.123.218.106 was found in our database!

This IP was reported 80 times. Confidence of Abuse is 100%: ?

100%

ISP	Wirels Connect (PTY) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS207990
Domain Name	telafrica.net
Country	🇺🇸 United States of America
City	Jeffries Point, Massachusetts

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.123.218.106

Whois 161.123.218.106

IP Abuse Reports for 161.123.218.106:

This IP address has been reported a total of 80 times from 68 distinct sources. 161.123.218.106 was first reported on October 16th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 geot	2026-06-09 10:33:01 (2 weeks ago)	HEAD /.ssh/id_ed25519 HTTP/1.1	Hacking Web App Attack
🇳🇱 JCB	2026-06-09 07:50:00 (2 weeks ago)	161.123.218.106 - - [08/Jun/2026:15:13:29 +0300] "HEAD /.ftpconfig HTTP/1.1" 404 - "-" "Mozilla/5.0 ... show more 161.123.218.106 - - [08/Jun/2026:15:13:29 +0300] "HEAD /.ftpconfig HTTP/1.1" 404 - "-" "Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected])" ... show less	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:00:16 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
🇩🇪 FeG Deutschland	2026-06-08 15:10:22 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇧🇪 voormedia	2026-06-08 13:22:53 (2 weeks ago)	Accessed trap at '/.circleci/config.yml'	Web App Attack
🇪🇸 el-brujo	2026-06-08 12:38:11 (2 weeks ago)	Cloudflare WAF: Request Path: /.idea/webServers.xml Request Query: Host: foro.elhacker.net userAgen ... show more Cloudflare WAF: Request Path: /.idea/webServers.xml Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected]) Action: block Source: firewallManaged ASN Description: HostRoyale Technologies Pvt Ltd Country: US Method: HEAD Timestamp: 2026-06-08T12:38:11Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇫🇷 Donovan	2026-06-08 12:18:34 (2 weeks ago)	Web scan/exploit blocked by fail2ban on commitshift.fr - jail: npm-scan - 1 attempt(s)	Web App Attack
🇫🇷 bazter.pro	2026-06-08 12:07:34 (2 weeks ago)	Auto-Ban [2026-06-08 15:07:25]: CRITICAL: .env attack; DC: Wirels Connect (PTY) Ltd [Paths: 20] \| De ... show more Auto-Ban [2026-06-08 15:07:25]: CRITICAL: .env attack; DC: Wirels Connect (PTY) Ltd [Paths: 20] \| Details: Exploit trap paths: /.env.bak, /.git/config, /.env.example.swp \| Sensitive files/paths: /.env.bak, /sftp-config.json, /appsettings.json.swp, /.docker/config.json, /.travis.yml \| 404 errors (17): /includes/config.php, /config/default.json, /kubernetes.yaml, /appsettings.Production.json, /application/config/database.php, /values.yaml, /LocalSettings.php, /.git/config, /.env.example.swp, /helm/values.yaml (and 6 more) \| 403 errors (3): /appsettings.json.swp, /.docker/config.json, /.travis.yml \| Other paths: /src/main/resources/application.properties show less	Web App Attack Hacking
🇫🇷 Cuteminded	2026-06-08 11:54:15 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇫🇷 Coco Bongo	2026-06-08 11:50:34 (2 weeks ago)	161.123.218.106 [redacted].contaboserver.net (207990-HostRoyale Technologies Pvt Ltd United States N ... show more 161.123.218.106 [redacted].contaboserver.net (207990-HostRoyale Technologies Pvt Ltd United States Newark) - - [08/Jun/2026:13:48:56 +0200] "HEAD /.env.swp HTTP/1.1" 404 0 "-" "Mozilla/5.0 (compatible; ... show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-08 11:39:19 (2 weeks ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇫🇷 LoneRider	2026-06-08 11:34:52 (2 weeks ago)	[08/Jun/2026:13:33:36.916124 +0200] aiaokHS2tXG_yXGjmQln7wAAAAI 161.123.218.106 59402 127.0.0.1 7081 ... show more [08/Jun/2026:13:33:36.916124 +0200] aiaokHS2tXG_yXGjmQln7wAAAAI 161.123.218.106 59402 127.0.0.1 7081 [08/Jun/2026:13:33:40.935268 +0200] aiaolKwA69BlqZ3GnKB40gAAAAo 161.123.218.106 47948 127.0.0.1 7081 [08/Jun/2026:13:34:51.951355 +0200] aiao2354jGBQAXdzgcfxygAAAAg 161.123.218.106 35914 127.0.0.1 7081 ... show less	Hacking
Anonymous	2026-06-08 11:15:11 (2 weeks ago)	Hacking Attempt	Hacking Web App Attack
🇫🇷 masterguru	2026-06-08 11:13:46 (2 weeks ago)	Restricted File Access Attempt. Matched phrase "/app/etc/env.php" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇫🇷 Dechavanne	2026-06-08 11:00:18 (2 weeks ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack

Showing 1 to 15 of 80 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 91.224.92.17

🇺🇸 165.227.93.100

🇫🇷 85.204.70.94

🇺🇸 13.86.116.162

🇮🇩 203.25.66.14

🇸🇬 152.42.242.135

🇺🇸 147.185.132.177

🇩🇪 130.12.180.174

🇰🇷 118.37.214.187

🇮🇩 103.157.26.180

🇳🇱 84.31.83.2

🇳🇱 5.61.209.92

🇹🇳 197.31.52.146

🇺🇦 188.163.49.34

🇧🇷 170.244.253.45

🇮🇶 169.224.4.31

🇴🇲 161.8.89.17

🇨🇳 120.221.233.41

🇫🇷 90.89.152.58

🇨🇱 186.64.123.124