IP Address

141.98.11.181

IPv4 Public
LT LT
AS209605
UAB Host Baltic
176 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
8/10 Threat
78% Confidence
176 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
LT
LT Location
UAB Host Baltic ASN 209605
176 Reports
Mixed Data Source

High Risk

IP 141.98.11.181 is a high-risk address originating from Lithuania (AS209605, UAB Host Baltic) that has been linked to WordPress login brute-force attacks and related intrusion activity. With a threat level of 8/10 and 176 total abuse reports spanning from November 2025 to April 2026, this IP represents an ongoing credential-compromise threat to web-facing authentication endpoints, particularly WordPress installations.

The address has accumulated reports from 18 automated honeypot sensors and 2 community sources. The dominant threat pattern is WordPress login brute-force attempts, accounting for 18 of the recent reported incidents, alongside isolated brute-force, hacking, and DDoS activity. Automated sensors observed the WordPress escalation pattern with 50 violations and documented multiple failed authentication attempts within a 15-minute window, indicating a sustained and methodical approach to credential guessing. The geographic origin in Lithuania and routing through UAB Host Baltic provides network context for this persistent scanning behavior.

WordPress login brute-force attacks systematically test credential combinations against administrative login portals, exploiting weak or reused passwords. Successful compromise grants attackers administrative access, enabling website defacement, malware hosting, data exfiltration, or use of the compromised site as a pivot point for further attacks. The concurrent hacking and DDoS indicators suggest this address may participate in broader malicious campaigns beyond credential attacks alone, increasing the overall risk profile for any exposed service.

Site operators running WordPress should enforce strong password policies and implement multi-factor authentication on all administrative accounts. Deploying rate limiting or account lockout thresholds significantly raises the difficulty of successful brute-force attempts, and tools such as fail2ban can automatically detect and block repeated login failures. Keeping WordPress core, plugins, and themes updated eliminates known vulnerabilities that attackers might exploit alongside credential guessing. Organizations should monitor authentication logs for suspicious activity patterns matching this IP and block or challenge traffic from this address at the network perimeter.

More threatening than 80% of monitored IPs

Threat Categories

WP Login Brute Force 28
Brute-Force 2
Hacking 2
DDoS Attack 1
Port Scan 1
WP User Enumeration 1

Moderate Network Risk

The network hosting this IP (ASN 209605, operated by UAB Host Baltic) shows moderate threat indicators. Some concerning activity has been detected from neighboring addresses.

Consider the network context when assessing this individual IP.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 8/10 High
Critical
Activity Frequency 0/10 Inactive
Confidence Score 69% High Confidence

Confidence History

10. Mar 2026 - 20. Apr 2026
78% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
WP Login Brute Force Honeypot 75%
Brute-Force Community 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
Hacking DDoS Attack Community 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force +2 Honeypot x18 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
10 of 176 shown

Technical Details

Basic Information

IP Address
141.98.11.181
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
LT LT
ASN
AS209605
ISP
UAB Host Baltic

DNS Information

Reverse DNS
srv-141-98-11-181.serveroffer.net
PTR Record
Yes
Connection Type
Dynamic

Statistics

Total Reports
176
First Reported
28 Nov 2025
Last Reported
20 Apr 2026, 23:37

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS209605
UAB Host Baltic
LT LT

Network Threat Assessment

6/10
This network shows moderate threat levels with some malicious activity patterns.

Network Statistics

184
Total IPs Monitored
14,057
Total Reports
76.4
Reports per IP

Network Context

This IP address belongs to UAB Host Baltic (AS209605), which manages 184 IP addresses in our monitoring system. Out of these, 14,057 have been reported for suspicious activities, resulting in a network-wide threat level of 6/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

80 %

Global Threat Ranking

This IP is more threatening than 80% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,471 reported IPs worldwide

Threat Level 8/10 avg: 5.3 ++
Total Reports 176 avg: 23 ++

Network Comparison

Compared against 192 IPs in ASN 209605

Threat Level 8/10 network avg: 6.5 +
Total Reports 176 network avg: 75 ++
Network UAB Host Baltic has overall threat level 6/10

Geographic Comparison

Compared against 231 IPs in LT

Threat Level 8/10 country avg: 5.8 +
Total Reports 176 country avg: 29 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,140 threat incidents tracked globally • Last 24h: 19,043 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,446 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,142 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,539 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
8.7/10 Avg Threat
93% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
141.98.11.117 8/10
Confidence 100%
Reports 520
Location LT LT
9 Jun 2026
141.98.11.182 8/10
Confidence 100%
Reports 21
Location LT LT
25 May 2026
141.98.11.168 8/10
Confidence 97%
Reports 79
Location LT LT
26 Apr 2026
141.98.11.161 8/10
Confidence 97%
Reports 73
Location LT LT
23 Apr 2026
141.98.11.52 8/10
Confidence 96%
Reports 87
Location LT LT
27 Apr 2026
91.224.92.159 8/10
Confidence 96%
Reports 30
Location GB GB
16 May 2026
91.224.92.156 10/10
Confidence 94%
Reports 592
Location GB GB
22 Jan 2026
91.224.92.55 10/10
Confidence 94%
Reports 376
Location GB GB
30 Dec 2025
91.224.92.32 10/10
Confidence 94%
Reports 112
Location GB GB
8 Jun 2026
91.224.92.27 8/10
Confidence 94%
Reports 106
Location GB GB
4 Feb 2026
185.169.4.104 10/10
Confidence 94%
Reports 15
Location GB GB
15 Jan 2026
185.36.81.23 10/10
Confidence 93%
Reports 92
Location LT LT
7 Jun 2026
91.224.92.177 10/10
Confidence 91%
Reports 608
Location GB GB
22 Apr 2026
185.169.4.164 7/10
Confidence 91%
Reports 213
Location GB GB
7 May 2026
91.224.92.127 8/10
Confidence 91%
Reports 46
Location GB GB
5 Jun 2026
185.169.4.22 7/10
Confidence 91%
Reports 44
Location GB GB
20 May 2026
185.169.4.238 7/10
Confidence 91%
Reports 35
Location GB GB
9 Jun 2026
141.98.11.59 10/10
Confidence 90%
Reports 311
Location LT LT
15 May 2026
91.224.92.35 8/10
Confidence 86%
Reports 162
Location GB GB
5 May 2026
91.224.92.161 10/10
Confidence 85%
Reports 13
Location GB GB
23 Apr 2026

IPs from the same subnet range, likely same network segment.

20 Related IPs
8.9/10 Avg Threat
84% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
141.98.11.117 8/10
Confidence 100%
Reports 520
Location LT LT
9 Jun 2026
141.98.11.182 8/10
Confidence 100%
Reports 21
Location LT LT
25 May 2026
141.98.11.168 8/10
Confidence 97%
Reports 79
Location LT LT
26 Apr 2026
141.98.11.161 8/10
Confidence 97%
Reports 73
Location LT LT
23 Apr 2026
141.98.11.52 8/10
Confidence 96%
Reports 87
Location LT LT
27 Apr 2026
141.98.11.59 10/10
Confidence 90%
Reports 311
Location LT LT
15 May 2026
141.98.11.17 8/10
Confidence 84%
Reports 28
Location LT LT
15 Apr 2026
141.98.11.120 8/10
Confidence 83%
Reports 124
Location LT LT
27 Apr 2026
141.98.11.111 8/10
Confidence 83%
Reports 12
Location LT LT
3 Jan 2026
141.98.11.239 8/10
Confidence 80%
Reports 37
Location LT LT
11 Apr 2026
141.98.11.171 10/10
Confidence 80%
Reports 24
Location LT LT
26 Feb 2026
141.98.11.173 10/10
Confidence 78%
Reports 77
Location LT LT
6 Apr 2026
141.98.11.132 8/10
Confidence 76%
Reports 95
Location LT LT
21 Dec 2025
141.98.11.209 8/10
Confidence 76%
Reports 28
Location LT LT
17 Apr 2026
141.98.11.172 10/10
Confidence 76%
Reports 14
Location LT LT
30 Nov 2025
141.98.11.143 10/10
Confidence 75%
Reports 56
Location LT LT
4 Apr 2026
141.98.11.190 10/10
Confidence 75%
Reports 42
Location LT LT
3 Apr 2026
141.98.11.236 10/10
Confidence 75%
Reports 28
Location LT LT
2 Apr 2026
141.98.11.35 10/10
Confidence 75%
Reports 27
Location LT LT
2 Apr 2026
141.98.11.81 10/10
Confidence 75%
Reports 27
Location LT LT
1 Apr 2026

IPs from the same country with similar threat profiles.

15 Related IPs
8.5/10 Avg Threat
90% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
141.98.11.117 8/10
Confidence 100%
Reports 520
ISP UAB Host Baltic
9 Jun 2026
141.98.11.182 8/10
Confidence 100%
Reports 21
ISP UAB Host Baltic
25 May 2026
141.98.11.168 8/10
Confidence 97%
Reports 79
ISP UAB Host Baltic
26 Apr 2026
141.98.11.161 8/10
Confidence 97%
Reports 73
ISP UAB Host Baltic
23 Apr 2026
88.119.141.208 8/10
Confidence 97%
Reports 24
ISP Telia Lietuva, AB
4 Jun 2026
141.98.11.52 8/10
Confidence 96%
Reports 87
ISP UAB Host Baltic
27 Apr 2026
185.36.81.23 10/10
Confidence 93%
Reports 92
ISP UAB Host Baltic
7 Jun 2026
141.98.11.59 10/10
Confidence 90%
Reports 311
ISP UAB Host Baltic
15 May 2026
141.98.11.17 8/10
Confidence 84%
Reports 28
ISP UAB Host Baltic
15 Apr 2026
85.206.68.80 10/10
Confidence 84%
Reports 7
ISP Telia Lietuva, AB
28 May 2026
141.98.11.120 8/10
Confidence 83%
Reports 124
ISP UAB Host Baltic
27 Apr 2026
141.98.11.111 8/10
Confidence 83%
Reports 12
ISP UAB Host Baltic
3 Jan 2026
188.69.225.188 8/10
Confidence 82%
Reports 22
ISP Telia Lietuva, AB
6 Jun 2026
141.98.11.239 8/10
Confidence 80%
Reports 37
ISP UAB Host Baltic
11 Apr 2026
141.98.11.171 10/10
Confidence 80%
Reports 24
ISP UAB Host Baltic
26 Feb 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.2/10 Avg Threat
78% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
207.90.244.5 8/10
Confidence 78%
Reports 18,181
Location US US
9 Jun 2026
143.110.239.2 8/10
Confidence 78%
Reports 11,934
Location US US
9 Jun 2026
64.225.74.178 8/10
Confidence 78%
Reports 9,571
Location NL NL
9 Jun 2026
185.156.73.167 8/10
Confidence 78%
Reports 2,534
Location UA UA
28 Apr 2026
80.94.92.67 10/10
Confidence 78%
Reports 1,569
Location RO RO
11 May 2026
64.62.197.137 8/10
Confidence 78%
Reports 910
Location US US
9 Jun 2026
95.215.0.144 8/10
Confidence 78%
Reports 832
Location RU RU
9 Jun 2026
216.126.239.150 10/10
Confidence 78%
Reports 828
Location US US
7 Dec 2025
78.153.140.147 10/10
Confidence 78%
Reports 819
Location GB GB
26 May 2026
93.123.109.192 10/10
Confidence 78%
Reports 804
Location BG BG
9 May 2026
5.188.154.78 10/10
Confidence 78%
Reports 695
Location KZ KZ
5 Dec 2025
80.94.92.182 10/10
Confidence 78%
Reports 671
Location RO RO
23 May 2026
34.58.124.191 10/10
Confidence 78%
Reports 644
Location US US
8 Jun 2026
109.199.98.14 10/10
Confidence 78%
Reports 573
Location FR FR
8 Apr 2026
178.214.77.7 10/10
Confidence 78%
Reports 536
Location PS PS
5 Jun 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "141.98.11.181",
    "threat_level": 8,
    "confidence_score": 78,
    "total_reports": 176,
    "country_code": "LT",
    "isp_name": "UAB Host Baltic",
    "asn": "209605",
    "first_reported": "2025-11-28 00:14:47",
    "last_reported": "2026-04-20 23:37:59",
    "exported_at": "2026-06-09T08:53:33+02:00",
    "source": "https://reportedip.de/ip/141.98.11.181/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses