JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.140.171.55

158.140.171.55 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 23%: ?

23%

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-158.140.171-55.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	Surabaya, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.140.171.55

Whois 158.140.171.55

IP Abuse Reports for 158.140.171.55:

This IP address has been reported a total of 22 times from 16 distinct sources. 158.140.171.55 was first reported on March 6th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 week ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇩🇪 xserverx.ru	2026-05-12 03:46:23 (3 weeks ago)	[UFW SCAN!!!!] SRC=158.140.171.55 LEN=40 TOS=0x00 PREC=0x00 TTL=49 PROTO=TCP SPT=62067 DPT=23 WINDOW ... show more [UFW SCAN!!!!] SRC=158.140.171.55 LEN=40 TOS=0x00 PREC=0x00 TTL=49 PROTO=TCP SPT=62067 DPT=23 WINDOW=36415 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇮🇩 hermawan	2026-05-11 12:44:41 (3 weeks ago)	[Mon May 11 18:41:50.799446 2026] [security2:error] [pid 47008:tid 140116124219072] [client 158.140. ... show more [Mon May 11 18:41:50.799446 2026] [security2:error] [pid 47008:tid 140116124219072] [client 158.140.171.55:17561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "AndroidHttpClient" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "295"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: AndroidHttpClient found within REQUEST_HEADERS:User-Agent: AndroidHttpClient (Linux; U; Android 13; in_ID; 2207117BPG; Build/TP1A.220624.014; Cronet/144.0.7500.8) request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/01_Januari_2025/01_Prakiraan_Curah_Hujan_Bulan_MARET_2025_di_Provinsi_Jawa_Timur-Update_dari_Analisis_Bulan_Januari_2025.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_ ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-11 11:51:02 (3 weeks ago)	Captured JA4H: ge20n_1acb9ae6256f \| Log: 158.140.171.55 - - [11/May/2026:18:41:50 +0700] "GET /image ... show more Captured JA4H: ge20n_1acb9ae6256f \| Log: 158.140.171.55 - - [11/May/2026:18:41:50 +0700] "GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2025/01_Januari_2025/01_Prakiraan_Curah_Hujan_Bulan_MARET_2025_di_Provinsi_Jawa_Timur-Update_dari_Analisis_Bulan_Januari_2025.webp HTTP/2.0" 403 16976 "-" "AndroidHttpClient (Linux; U; Android 13; in_ID; 2207117BPG; Build/TP1A.220624.014; Cronet/144.0.7500.8)" ge20n_user-agent,accept-encoding,priority,host... ... show less	Email Spam Hacking
🇫🇷 Sklurk	2026-04-29 03:24:50 (1 month ago)	Web App Attack	Web App Attack
🇺🇸 mnsf	2026-04-25 18:05:44 (1 month ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇺🇸 mnsf	2026-04-20 07:06:13 (1 month ago)	Login Too Frequent (8)	Brute-Force Web App Attack
🇮🇩 hermawan	2026-04-04 00:33:20 (2 months ago)	1775262789.461438 CTK0kr4ua6CW8sL2U9 158.140.171.55 55895 103.166.156.58 443 tcp ssl 3.333127 3201 4 ... show more 1775262789.461438 CTK0kr4ua6CW8sL2U9 158.140.171.55 55895 103.166.156.58 443 tcp ssl 3.333127 3201 42763 SF F F 0 ShADTadFfR 45 5871 43 45031 - 6 8330_57_21928 8500_64_59680 65535_2-4-8-1-3_1400_9 43440_2-4-8-1-3_1460_14 04/04/2026-07:33:09.461438 ... show less	Email Spam Hacking
🇳🇱 maxxsense	2026-03-28 09:33:13 (2 months ago)	158.140.171.55 (ID/Indonesia/host-158.140.171-55.myrepublic.co.id), 12 distributed imapd attacks on ... show more 158.140.171.55 (ID/Indonesia/host-158.140.171-55.myrepublic.co.id), 12 distributed imapd attacks on account [redacted] show less	Brute-Force
🇺🇸 SiliSoftware	2026-03-16 10:36:14 (2 months ago)	/phpBB3/app.php/help/faq?sid=921f16c6cec692598e6ca2dc4dec2f15	Web App Attack
Anonymous	2026-03-13 00:59:24 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇮🇩 Burayot	2026-03-09 01:07:44 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:10000003) triggered by 158.140.171.55 (ID/Indonesia/host- ... show more LF_MODSEC: (mod_security) mod_security (id:10000003) triggered by 158.140.171.55 (ID/Indonesia/host-158.140.171-55.myrepublic.co.id): 2 in the last 3600 secs show less	Web App Attack
🇦🇺 Telemetry2U.com	2026-03-03 12:23:18 (3 months ago)	SQL Injection attempt detected	Web App Attack SQL Injection
🇳🇱 exxos	2025-09-17 03:03:01 (8 months ago)	HTTP1.x attacks	DDoS Attack
🇮🇩 hermawan	2025-09-08 10:49:57 (8 months ago)	[Mon Sep 08 17:49:11.708422 2025] [security2:error] [pid 342326:tid 139842060859072] [client 158.140 ... show more [Mon Sep 08 17:49:11.708422 2025] [security2:error] [pid 342326:tid 139842060859072] [client 158.140.171.55:41987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "utf-8" at REQUEST_HEADERS:Accept-Charset. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "333"] [id "440015"] [msg "Bot Accept-Charset utf-8"] [data "Matched Data: utf-8 found within REQUEST_HEADERS:Accept-Charset: UTF-8 request_line = GET /images/Klimatologi/Analisis/02-Analisis_Dasarian/Analisis_Distribusi_Curah_Hujan_Dasarian/Analisis_Distribusi_Curah_Hujan_Dasarian_Provinsi_Jawa_Timur/2021/02_Februari_2021/Das-II/Peta_Analisis-Dasarian_Distribusi_Curah_Hujan_Dasarian_II_Februari_Tahun_2021_di_Provinsi_Jawa_Timur.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/02-Analisis_Dasarian/Analisis_Distribusi_Curah_Hujan_Dasarian/Analisis_Distribusi_Curah_Hujan_Dasarian_Provinsi_Jawa_Timur/2021/02_Februari ... show less	Hacking Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 64.62.156.168

🇬🇧 35.203.211.135

🇹🇷 213.43.49.157

🇸🇪 171.25.193.235

🇰🇷 122.202.250.160

🇬🇷 83.235.16.111

🇩🇪 64.89.163.164

🇽🇰 37.35.64.130

🇭🇰 185.239.84.249

🇮🇳 122.176.122.24

🇨🇳 117.50.130.211

🇩🇪 64.89.163.78

🇨🇳 183.167.35.63

🇩🇪 141.11.250.239

🇱🇹 81.30.98.225

🇩🇪 79.192.72.134

🇧🇬 79.124.56.138

🇺🇸 74.235.120.62

🇺🇸 52.165.89.126

🇮🇩 2a02:4780:6:1253:0:172e:eeb5:1