JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.66.56.19

157.66.56.19 was found in our database!

This IP was reported 123 times. Confidence of Abuse is 36%: ?

36%

ISP	Argon Data Communication
Usage Type	Data Center/Web Hosting/Transit
ASN	AS58477
Domain Name	argonhost.com
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.66.56.19

Whois 157.66.56.19

IP Abuse Reports for 157.66.56.19:

This IP address has been reported a total of 123 times from 30 distinct sources. 157.66.56.19 was first reported on February 1st 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-05-12 01:20:44 (1 month ago)	ICS Labs identified 157.66.56.19 as a malicious indicator from threat intelligence.	Hacking
🇮🇩 David Koswari	2026-05-04 05:52:00 (1 month ago)	REQ_BLOCKED_SECURITY	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇫🇷 solution.it	2026-05-03 21:57:46 (1 month ago)	[Sun May 03 23:57:45.745541 2026] [php7:error] [pid 652795:tid 652795] [client 157.66.56.19:65425] s ... show more [Sun May 03 23:57:45.745541 2026] [php7:error] [pid 652795:tid 652795] [client 157.66.56.19:65425] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇺🇸 mawan	2026-05-03 17:09:52 (1 month ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇺🇸 mind5t0rm	2026-05-03 13:20:04 (1 month ago)	(WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Directio ... show more (WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 157.66.56.19 - - [03/May/2026:20:19:55 +0700] "GET /wp-login.php HTTP/2.0" 200 3118 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 157.66.56.19 - - [03/May/2026:20:19:57 +0700] "POST /wp-login.php HTTP/2.0" 200 3280 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 157.66.56.19 - - [03/May/2026:20:19:59 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.zerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 3122 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Port Scan
🇹🇭 MWA SOC	2026-05-03 10:35:09 (1 month ago)		Hacking
🇺🇸 mind5t0rm	2026-05-03 09:16:31 (1 month ago)	(WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Directio ... show more (WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 157.66.56.19 - - [03/May/2026:16:16:18 +0700] "GET /wp-login.php HTTP/2.0" 200 3114 "-" "Mozila/5.0" 157.66.56.19 - - [03/May/2026:16:16:22 +0700] "POST /wp-login.php HTTP/2.0" 200 3279 "-" "Mozila/5.0" 157.66.56.19 - - [03/May/2026:16:16:25 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.zerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 3119 "-" "Mozila/5.0" show less	Port Scan
🇹🇷 baku.hosting	2026-05-03 00:31:32 (1 month ago)	CSF Auto Report: (cpanel) Failed cPanel login from 157.66.56.19 (ID/Indonesia/-): 4 in the last 3600 ... show more CSF Auto Report: (cpanel) Failed cPanel login from 157.66.56.19 (ID/Indonesia/-): 4 in the last 3600 secs show less	Brute-Force Web App Attack
🇫🇷 tilellit.pro	2026-05-02 21:54:10 (1 month ago)	Fail2Ban banned 157.66.56.19 for security violations in jail wp-armour. Log: 2026/05/02 21:54:09 [er ... show more Fail2Ban banned 157.66.56.19 for security violations in jail wp-armour. Log: 2026/05/02 21:54:09 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 157.66.56.19 \| Target: wplogin" , client: 157.66.56.19, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇺🇸 mind5t0rm	2026-05-02 14:20:16 (1 month ago)	(WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Directio ... show more (WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 157.66.56.19 - - [02/May/2026:21:20:10 +0700] "GET /wp-login.php HTTP/2.0" 200 3117 "-" "Mozila/5.0" 157.66.56.19 - - [02/May/2026:21:20:12 +0700] "POST /wp-login.php HTTP/2.0" 200 3282 "-" "Mozila/5.0" 157.66.56.19 - - [02/May/2026:21:20:14 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.zerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 3123 "-" "Mozila/5.0" show less	Port Scan
🇫🇷 tilellit.pro	2026-05-02 13:33:18 (1 month ago)	Fail2Ban banned 157.66.56.19 for security violations in jail wp-armour. Log: 2026/05/02 13:33:18 [er ... show more Fail2Ban banned 157.66.56.19 for security violations in jail wp-armour. Log: 2026/05/02 13:33:18 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 157.66.56.19 \| Target: wplogin" , client: 157.66.56.19, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇺🇸 mind5t0rm	2026-05-02 10:37:07 (1 month ago)	(WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Directio ... show more (WPLOGIN) WP Login Attack 157.66.56.19 (ID/Indonesia/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 157.66.56.19 - - [02/May/2026:17:36:56 +0700] "GET /wp-login.php HTTP/2.0" 200 3118 "-" "Mozila/5.0" 157.66.56.19 - - [02/May/2026:17:36:57 +0700] "POST /wp-login.php HTTP/2.0" 200 3282 "-" "Mozila/5.0" 157.66.56.19 - - [02/May/2026:17:37:02 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.zerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 3123 "-" "Mozila/5.0" show less	Port Scan
🇫🇷 solution.it	2026-05-01 23:56:50 (1 month ago)	[Sat May 02 01:56:50.064589 2026] [php7:error] [pid 139052:tid 139052] [client 157.66.56.19:54011] s ... show more [Sat May 02 01:56:50.064589 2026] [php7:error] [pid 139052:tid 139052] [client 157.66.56.19:54011] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇮🇩 zam	2026-05-01 19:37:05 (1 month ago)	157.66.56.19 - - [01/May/2026:19:37:03 +0000] "GET /local/moodle_webshell/webshell.php?action=exec\u ... show more 157.66.56.19 - - [01/May/2026:19:37:03 +0000] "GET /local/moodle_webshell/webshell.php?action=exec\u0026cmd=id HTTP/1.1" 301 334 show less	Web App Attack
🇺🇸 mawan	2026-05-01 18:11:34 (1 month ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack

Showing 1 to 15 of 123 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4004:100d::12a

🇪🇸 196.196.150.124

🇧🇷 45.190.204.243

🇧🇷 201.1.168.186

🇲🇽 187.230.115.212

🇫🇷 185.194.178.75

🇧🇩 182.252.88.209

🇨🇴 181.48.154.10

🇮🇶 169.224.87.237

🇮🇳 135.13.28.35

🇨🇳 124.227.31.39

🇨🇳 117.13.174.2

🇨🇳 111.49.202.119

🇵🇰 110.37.96.161

🇺🇸 107.22.185.233

🇭🇰 103.230.240.59

🇨🇳 101.126.11.137

🇩🇪 92.209.190.98

🇺🇸 52.15.121.27

🇸🇦 51.253.136.118