JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.140.162.205

158.140.162.205 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 24%: ?

24%

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-158.140.162-205.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	Cileungsir, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.140.162.205

Whois 158.140.162.205

IP Abuse Reports for 158.140.162.205:

This IP address has been reported a total of 12 times from 10 distinct sources. 158.140.162.205 was first reported on November 30th 2020, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-18 05:21:14 (14 hours ago)	[Thu Jun 18 12:21:12.032284 2026] [security2:error] [pid 210134:tid 139989676443328] [client 158.140 ... show more [Thu Jun 18 12:21:12.032284 2026] [security2:error] [pid 210134:tid 139989676443328] [client 158.140.162.205:24247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bing" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bing found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 13; SM-N986U1 Build/TP1A.220624.014; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36 BingSapphire/32.3.430811006 request_line = GET /index.php/profil/meteorologi/geofisika/555558585-poster-antisipasi-gempa HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/geofisika/555558585-poster-antisipasi-gempa"] [unique_id "ajOASNbqlbXvD0G_0KEMqwAByAU"], referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] to ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-29 06:10:48 (2 weeks ago)	[Fri May 29 13:10:45.508187 2026] [security2:error] [pid 1394220:tid 139851953927872] [client 158.14 ... show more [Fri May 29 13:10:45.508187 2026] [security2:error] [pid 1394220:tid 139851953927872] [client 158.140.162.205:59725] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "815"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur HTTP/2.0 Request URI RAW = /index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur Request Basename = e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur"] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_C ... show less	Email Spam Hacking
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇨🇭 ALPHANET	2026-05-18 11:45:05 (1 month ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
🇩🇪 pltcldvlpr	2026-05-10 01:41:48 (1 month ago)	Unidentified crawler ignoring robots.txt: 158.140.162.205 - - [09/May/2026:08:39:34 +0200] "GET /pro ... show more Unidentified crawler ignoring robots.txt: 158.140.162.205 - - [09/May/2026:08:39:34 +0200] "GET /protocol?id=hb_18_62&offset=150&seq=157 HTTP/1.1" 200 342262 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" asn=63859 org="PT. Eka Mas Republik" 158.140.162.205 - - [10/May/2026:03:41:48 +0200] "GET /protocol?id=th_3_99&offset=600&seq=645 HTTP/1.1" 200 340687 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3" asn=63859 org="PT. Eka Mas Republik" ... show less	Bad Web Bot
🇮🇩 hermawan	2026-05-06 23:27:23 (1 month ago)	05/06/2026-13:49:20.068175 [Drop] [] [1:2100001532:0] Suricata match TLS JA4 scan Uniq Zeek no 15 ... show more 05/06/2026-13:49:20.068175 [Drop] [] [1:2100001532:0] Suricata match TLS JA4 scan Uniq Zeek no 1532 with hash_t13d2014h2_a09f3c656075_d0a99439f9b1 [**] [Classification: (null)] [Priority: 3] {TCP} 158.140.162.205:5251 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇮🇹 VHosting	2026-04-26 09:29:03 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇨🇦 smick	2024-06-29 04:45:04 (1 year ago)	RDP Brute-force.	Brute-Force
Anonymous	2024-05-07 11:53:39 (2 years ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 ⓔⓜⓙⓔⓔ	2023-10-23 01:47:24 (2 years ago)	SMB 🖴 Honeypot: connected to port 445 by 158.140.162.205: port 60754	Port Scan
🇯🇵 HeliJP	2023-07-07 15:15:03 (2 years ago)	2023-07-07 14:21:05 - Recognized attacks\bad behavior from IP address 158.140.162.205 on port 443\80 ... show more 2023-07-07 14:21:05 - Recognized attacks\bad behavior from IP address 158.140.162.205 on port 443\80 (4 daily hits): client denied by server configuration show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇩🇪 IP Analyzer	2020-11-30 04:31:45 (5 years ago)	Unauthorized connection attempt from IP address 158.140.162.205 on Port 445(SMB)	Port Scan

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 92.205.176.4

🇨🇳 36.159.178.121

🇮🇷 193.151.133.105

🇺🇸 162.216.149.218

🇺🇸 136.144.35.226

🇨🇳 112.84.63.224

🇱🇹 81.30.98.44

🇳🇱 2a06:a880:5:c593::1

🇺🇸 216.73.161.243

🇫🇮 147.185.133.236

🇺🇸 103.203.57.2

🇺🇸 70.91.135.181

🇩🇪 8.211.45.42

🇨🇦 209.50.188.119

🇺🇸 209.50.175.246

🇺🇸 193.56.28.244

🇧🇩 161.248.201.240

🇩🇪 151.123.177.117

🇩🇪 104.207.55.156

🇳🇱 91.92.40.171