JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 168.138.9.147

168.138.9.147 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 33%: ?

33%

ISP	Oracle Public Cloud
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracleemaildelivery.com
Country	🇦🇺 Australia
City	Melbourne, Victoria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 168.138.9.147

Whois 168.138.9.147

IP Abuse Reports for 168.138.9.147:

This IP address has been reported a total of 24 times from 15 distinct sources. 168.138.9.147 was first reported on October 10th 2025, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 Fn4ticHz	2026-06-05 17:53:09 (19 hours ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇦🇺 MAGIC	2026-06-03 00:01:20 (3 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 oncord	2026-05-24 14:22:09 (1 week ago)	Form spam	Web Spam
Anonymous	2026-05-14 12:01:46 (3 weeks ago)	Forum/form spam	Web Spam
🇮🇹 VHosting	2026-05-13 04:58:47 (3 weeks ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇺🇸 cheatmaster.store	2026-05-08 11:34:51 (4 weeks ago)	Proxy parsed from 168.138.9.147:1080	Brute-Force SSH
🇮🇹 VHosting	2026-03-18 12:55:06 (2 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
Anonymous	2026-02-26 14:22:48 (3 months ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack
🇮🇳 liveaspankaj	2026-02-14 11:28:54 (3 months ago)	DDoS attack: 81 requests in 5m (GET / or repair.php).	DDoS Attack
🇮🇳 liveaspankaj	2026-02-12 11:36:40 (3 months ago)	DDoS attack on learngeeta.com: 296 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Auto ... show more DDoS attack on learngeeta.com: 296 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Automated bot attack with randomized User-Agents (outdated Chrome 127-129). show less	DDoS Attack
🇨🇭 Zeprax	2025-12-17 19:52:52 (5 months ago)	Layer 7 Flood Detected	DDoS Attack
🇪🇸 el-brujo	2025-12-17 15:47:06 (5 months ago)	Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (W ... show more Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: ORACLE-BMC-31898 Country: AU Method: GET Timestamp: 2025-12-17T15:47:06Z ruleId: 6e3ccc23900c428e8ec0fb8a3a679c52. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2025-12-17 15:47:06 (5 months ago)	Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (W ... show more Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: ORACLE-BMC-31898 Country: AU Method: GET Timestamp: 2025-12-17T15:47:06Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 COMPLEX	2025-12-16 03:12:52 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from AU. Action taken: BLOCK ASN: 31898 (ORACLE-BMC-31898) Protoco ... show more Triggered Cloudflare WAF (l7ddos) from AU. Action taken: BLOCK ASN: 31898 (ORACLE-BMC-31898) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇵🇹 PTnet	2025-12-09 02:57:54 (5 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 195.122.253.45

🇨🇦 104.158.136.36

🇪🇸 66.81.160.219

🇺🇸 47.251.59.83

🇰🇷 43.128.156.124

🇨🇳 14.103.115.213

🇨🇳 221.13.86.19

🇧🇷 144.22.238.238

🇧🇷 45.205.1.244

🇨🇴 186.116.53.254

🇫🇮 147.185.133.239

🇺🇸 147.185.132.77

🇺🇸 107.167.34.125

🇻🇳 103.15.222.183

🇱🇹 81.30.98.158

🇩🇪 43.228.157.10

🇻🇳 14.229.138.75

🇨🇦 2607:f8b0:4023:1807::124

🇨🇳 223.199.188.28

🇮🇹 192.71.26.53