JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.140.171.52

158.140.171.52 was found in our database!

This IP was reported 122 times. Confidence of Abuse is 39%: ?

39%

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-158.140.171-52.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	Sidoarjo, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.140.171.52

Whois 158.140.171.52

IP Abuse Reports for 158.140.171.52:

This IP address has been reported a total of 122 times from 25 distinct sources. 158.140.171.52 was first reported on January 24th 2021, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 pltcldvlpr	2026-06-20 16:44:15 (3 days ago)	Bogus Useragent: 158.140.171.52 - - [20/Jun/2026:18:44:14 +0200] "GET /protocol?id=st_8_105&offset=4 ... show more Bogus Useragent: 158.140.171.52 - - [20/Jun/2026:18:44:14 +0200] "GET /protocol?id=st_8_105&offset=400&seq=468 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 5.0; ka-GE; rv:1.9.1.20) Gecko/2169-04-24 19:17:05.998464 Firefox/3.8" asn=63859 org="PT. Eka Mas Republik" country=ID ... show less	Bad Web Bot
🇫🇷 zulzeen	2026-06-18 00:06:34 (5 days ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇩🇪 check-the-sum.fr	2026-06-10 10:02:30 (1 week ago)	Port Scanning	Port Scan
🇵🇱 nfsec.pl	2026-06-03 01:50:08 (2 weeks ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇺🇸 ALSCO®️	2026-05-23 22:00:06 (1 month ago)	Report By ALSCO Security Team: Unauthorized Connection Attempt	SQL Injection
🇺🇸 Secure Gateway®️	2026-05-23 22:00:05 (1 month ago)	Report By Secure Gateway Security Team: Unsolicited Connection Attempt	Hacking
🇺🇸 xmission.com	2026-05-23 10:13:59 (1 month ago)	Blocked by UFW (TCP on 9101) Source port: 18202 TTL: 111 Packet length: 48 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 18202 TTL: 111 Packet length: 48 TOS: 0x08 This report (for 158.140.171.52) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-23 02:11:55 (1 month ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-12 07:58:39 (1 month ago)	Blocked by UFW (TCP on 9101) Source port: 63263 TTL: 111 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 63263 TTL: 111 Packet length: 52 TOS: 0x08 This report (for 158.140.171.52) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 EGP Abuse Dept	2026-05-02 02:10:20 (1 month ago)	Unsolicited connection to port 445	Port Scan Hacking
🇮🇹 VHosting	2026-04-26 09:29:03 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
Anonymous	2026-03-25 00:05:25 (2 months ago)	Blocked: Reason='Possible SQL injection activity (4/60 min)'; Requests=4	SQL Injection
🇨🇭 backslash	2026-03-12 03:27:00 (3 months ago)	block ruleset SQL-Injections: typical patterns B00691C2B3660FF27FABC58C19A75B50EDEC4A5E	SQL Injection
🇮🇹 VHosting	2026-03-01 13:57:36 (3 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇱🇻 garmtech.com	2026-02-05 22:01:43 (4 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection

Showing 1 to 15 of 122 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 121.132.27.238

🇺🇸 167.71.253.111

🇺🇸 162.216.149.133

🇺🇸 142.4.31.180

🇦🇷 181.2.47.47

🇻🇳 171.250.97.199

🇺🇸 165.154.173.211

🇺🇸 150.136.214.177

🇨🇳 124.14.224.113

🇹🇭 106.0.165.219

🇪🇸 79.116.195.23

🇳🇱 45.148.10.121

🇺🇸 216.180.246.131

🇲🇦 196.75.122.212

🇲🇽 187.190.166.203

🇺🇸 103.143.231.24

🇮🇳 92.4.76.12

🇺🇸 165.154.162.73

🇺🇸 162.216.150.25

🇸🇦 94.96.162.62