AbuseIPDB » 155.94.141.217
155.94.141.217 was found in our database!
This IP was reported 9 times. Confidence of
Abuse
is 2%: ?
| ISP |
HostPapa
|
| Usage Type |
Data Center/Web Hosting/Transit
|
| ASN |
AS203020
|
| Domain Name |
hostpapa.com
|
| Country |
๐ณ๐ฑ
Netherlands
|
| City |
Amsterdam, North Holland
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 155.94.141.217:
This IP address has been reported a total of
9
times from
6 distinct
sources.
155.94.141.217 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
๐ฎ๐ฉ
hermawan
|
|
Captured JA4H: ge20n_fd2543106793 | Log: 155.94.141.217 - - [01/Jun/2026:13:46:25 +0700] "GET /image ...
show more
Captured JA4H: ge20n_fd2543106793 | Log: 155.94.141.217 - - [01/Jun/2026:13:46:25 +0700] "GET /images/Klimatologi/Prakiraan/02-Prakiraan-Dasarian/Prakiraan_Deterministik_Curah_Hujan_Dasarian/Prakiraan_Deterministik_Curah_Hujan_Dasarian_Provinsi_Jawa_Timur/2026/01_Januari_2026/Das-I/Peta_Prediksi_Dasarian_Deterministik_Curah_Hujan_Dasarian_II-JANUARI-II_FEBRUARI_2026_Provinsi_Jawa_Timur_Update_10_Januari_2026.jpg HTTP/2.0" 200 251968 "https://staklim-jatim.bmkg.go.id/index.php/prediksi-iklim/prediksi-dasarian/deterministik-curah-hujan-provinsi-jawa-timur" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" ge20n_accept,user-agent,referer,sec-fetch-dest,accept-encoding,accept-language,host...
...
show less
|
Email Spam
Hacking
|
|
|
๐ฉ๐ช
Phenix Info
|
|
SmallGuard.fr/Prestashop Massive 403
|
Web App Attack
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Sat Jan 24 14:29:16.952575 2026] [security2:error] [pid 93114:tid 140683726808768] [client 155.94.1 ...
show more
[Sat Jan 24 14:29:16.952575 2026] [security2:error] [pid 93114:tid 140683726808768] [client 155.94.141.217:37535] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".webp" at REQUEST_LINE. [file "/etc/modsecurity/coreruleset-4.22.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "466"] [id "440010"] [msg "BAD REQUEST Bro, 206 Partial Content"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: identity found within REQUEST_LINE: GET /images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jombang_Tahun_2025_Peserta-600.webp HTTP/2.0 request_line = GET /images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jombang_Tahun_2025_Peserta-600.webp HTTP/2.0 Request URI RAW = /images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jombang_Tahun_2025_Peserta-600.webp Reque..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jo
...
show less
|
Hacking
Web App Attack
|
|
|
Anonymous
|
|
Malicious activity detected
|
Hacking
Web App Attack
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Tue Jan 13 02:09:57.350346 2026] [security2:error] [pid 98363:tid 140521872729792] [client 155.94.1 ...
show more
[Tue Jan 13 02:09:57.350346 2026] [security2:error] [pid 98363:tid 140521872729792] [client 155.94.141.217:36179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".webp" at REQUEST_LINE. [file "/etc/modsecurity/coreruleset-4.22.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "463"] [id "440010"] [msg "BAD REQUEST Bro, 206 Partial Content"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: identity found within REQUEST_LINE: GET /images/Klimatologi/Buletin/Bulanan/2025/11_November_2025/Buletin_Bulanan_Analisis_Hujan_Bulan_November_Tahun_2025_dan_Prediksi_Hujan_Bulan_JANUARI-FEBRUARI-MARET_Tahun_2026_Provinsi_Jawa_Timur.webp HTTP/2.0 request_line = GET /images/Klimatologi/Buletin/Bulanan/2025/11_November_2025/Buletin_Bulanan_Analisis_Hujan_Bulan_November_Tahun_2025_dan_Prediksi_Hujan_Bu..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Buletin/Bulanan/2025/11_November_2025/Buletin_B
...
show less
|
Hacking
Web App Attack
|
|
|
๐ฉ๐ช
CommanderRoot
|
|
Bot crawler
|
DDoS Attack
Web Spam
|
|
|
๐ณ๐ฑ
Study Bitcoin ๐ค
|
|
May 12 04:00:00 XXXXXX sshd[677]: Invalid user volumio from 155.94.141.217 port 36582
|
Brute-Force
SSH
|
|
|
๐ณ๐ฑ
Study Bitcoin ๐ค
|
|
May 12 03:57:14 XXXXXX sshd[498]: Invalid user ubnt from 155.94.141.217 port 54770
|
Brute-Force
SSH
|
|
|
๐ฉ๐ช
www.blocklist.de
|
|
May 4 12:57:40 hostnameproxy sshd[4982]: pam_unix(sshd:auth): authentication failure; logname= uid= ...
show more
May 4 12:57:40 hostnameproxy sshd[4982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.141.217 user=r.r
May 4 12:57:42 hostnameproxy sshd[4982]: Failed password for r.r from 155.94.141.217 port 42816 ssh2
May 4 12:57:45 hostnameproxy sshd[4985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.141.217 user=r.r
May 4 12:57:47 hostnameproxy sshd[4985]: Failed password for r.r from 155.94.141.217 port 43052 ssh2
May 4 12:57:49 hostnameproxy sshd[4987]: Invalid user ubnt from 155.94.141.217 port 43306
May 4 12:57:49 hostnameproxy sshd[4987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.141.217
May 4 12:57:51 hostnameproxy sshd[4987]: Failed password for invalid user ubnt from 155.94.141.217 port 43306 ssh2
May 4 12:57:54 hostnameproxy sshd[4992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ru........
------------------------------
show less
|
FTP Brute-Force
Hacking
|
|
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: