AbuseIPDB » 1.55.131.193
1.55.131.193
This IP was reported 6 times. Confidence of
Abuse
is 0% : ?
ISP
FPT Telecom Company
Usage Type
Fixed Line ISP
ASN
AS18403
Domain Name
fpt.com
Country
๐ป๐ณ
Viet Nam
City
Haiphong, Hai Phong
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 1.55.131.193 :
This IP address has been reported a total of
6
times from
4 distinct
sources.
1.55.131.193 was first reported on
June 28th 2025 , and the most recent report was
6 months ago
Old Reports:
The most recent abuse report for this IP address is from
6 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ซ๐ท
sthoyer.de
2025-11-18 01:40:18
(6 months ago)
Nov 18 02:40:17 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ...
show more
Nov 18 02:40:17 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=1.55.131.193 DST=173.212.223.67 LEN=52 TOS=0x08 PREC=0x00 TTL=113 ID=25220 DF PROTO=TCP SPT=38208 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0
...
show less
Port Scan
๐ซ๐ท
sthoyer.de
2025-11-17 22:36:41
(6 months ago)
Nov 17 23:36:39 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ...
show more
Nov 17 23:36:39 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=1.55.131.193 DST=173.212.223.67 LEN=52 TOS=0x08 PREC=0x00 TTL=113 ID=14243 DF PROTO=TCP SPT=34692 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0
...
show less
Port Scan
๐ธ๐ฌ
drewf.ink
2025-11-17 05:25:20
(6 months ago)
[05:25] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ...
show more
[05:25] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12
show less
Hacking
Exploited Host
2025-11-15 14:17:32
(6 months ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
2025-11-14 05:21:37
(6 months ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐บ๐ธ
TPI-Abuse
2025-06-28 07:43:17
(11 months ago)
(mod_security) mod_security (id:217210) triggered by 1.55.131.193 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:217210) triggered by 1.55.131.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 28 03:43:00.381392 2025] [security2:error] [pid 3018950:tid 3018950] [client 1.55.131.193:63992] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./]*(?::\\\\d+)?)?/[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?|options \\\\*)\\\\s+[\\\\w\\\\./]+|get /[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line||www.goldengatecorgis.org|F|4"] [data "GET http://www.goldengatecorgis.org HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.goldengatecorgis.org"] [uri "/"] [unique_id "aF-dBP6vlhto8Q8qZLLzXQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: