JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.140.180.95

158.140.180.95 was found in our database!

This IP was reported 185 times. Confidence of Abuse is 77%: ?

77%

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-158.140.180-95.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	South Tangerang, Banten

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.140.180.95

Whois 158.140.180.95

IP Abuse Reports for 158.140.180.95:

This IP address has been reported a total of 185 times from 44 distinct sources. 158.140.180.95 was first reported on March 23rd 2021, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-16 08:33:20 (8 hours ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇮🇩 sockominfo	2026-06-16 05:00:56 (11 hours ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 3.5/10 (LOW). Confidence: ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 3.5/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-16 04:00:53 (12 hours ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 3.6/10 (LOW). Confidence: ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 3.6/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-16 03:00:57 (13 hours ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 3.8/10 (LOW). Confidence: ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 3.8/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇩🇪 pltcldvlpr	2026-06-15 13:08:56 (1 day ago)	Bogus Useragent: 158.140.180.95 - - [14/Jun/2026:15:45:21 +0200] "GET /protocol?id=be_15_88&paragrap ... show more Bogus Useragent: 158.140.180.95 - - [14/Jun/2026:15:45:21 +0200] "GET /protocol?id=be_15_88&paragraph=949279&seq=1192 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible; MSIE 5.0; Windows NT 10.0; Trident/5.0)" asn=63859 org="PT. Eka Mas Republik" country=ID ... show less	Bad Web Bot
🇮🇩 sockominfo	2026-06-15 12:00:09 (1 day ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-15 07:00:53 (1 day ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 4.1/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 4.1/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 68%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-15 06:00:55 (1 day ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 4.3/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 4.3/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 68%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-15 04:00:53 (1 day ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 4/10 (MEDIUM). Confidence ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 4/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 57%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-14 17:00:37 (1 day ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-14 16:00:09 (2 days ago)	User access to sensitive menu from malicious IP 158.140.180.95.. Threat Score: 8.4/10 (HIGH). Report ... show more User access to sensitive menu from malicious IP 158.140.180.95.. Threat Score: 8.4/10 (HIGH). Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-14 14:00:52 (2 days ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 4.2/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 4.2/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 68%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-14 11:00:09 (2 days ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 hermawan	2026-06-13 04:24:37 (3 days ago)	[Sat Jun 13 11:24:28.924610 2026] [security2:error] [pid 608394:tid 140091585357504] [client 158.140 ... show more [Sat Jun 13 11:24:28.924610 2026] [security2:error] [pid 608394:tid 140091585357504] [client 158.140.180.95:7311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.google.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.google.go.id found within REQUEST_HEADERS:Referer: https://www.google.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561495-infografis-waspada-cuaca-ekstrem-di-masa-pancaroba HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561495-infografis-waspada-cuaca-ekstrem-di-masa-pancaroba"] [unique_id "aizbfHuYpmqO7rRqi8zhQQAAhBg"], referer https://www.google.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[608419] [4VUX+Novj8E] [aizbfHuYpmqO7rRqi8zhQ ... show less	Email Spam Hacking
🇮🇩 sockominfo	2026-06-12 14:00:53 (4 days ago)	User login to application from malicious IP 158.140.180.95.. Threat Score: 3.6/10 (LOW). Confidence: ... show more User login to application from malicious IP 158.140.180.95.. Threat Score: 3.6/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack

Showing 1 to 15 of 185 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.170.175.95

🇧🇬 193.24.211.107

🇩🇪 91.132.145.3

🇺🇸 35.254.232.101

🇳🇱 178.16.53.230

🇻🇳 171.251.111.168

🇭🇷 149.102.247.241

🇫🇷 51.68.34.131

🇳🇱 45.148.10.183

🇻🇳 27.79.46.5

🇻🇳 14.225.7.70

🇨🇳 14.103.118.186

🇮🇱 5.100.255.168

🇺🇸 2607:f8b0:400e:c1e::128

🇺🇸 198.44.167.111

🇰🇷 168.110.107.79

🇺🇸 165.1.64.235

🇭🇰 119.28.47.247

🇧🇩 103.86.198.162

🇳🇱 91.92.40.28