JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.55.106.168

198.55.106.168 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 3%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	hostpapa.com
Country	🇸🇬 Singapore
City	Kampong Loyang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.55.106.168

Whois 198.55.106.168

IP Abuse Reports for 198.55.106.168:

This IP address has been reported a total of 9 times from 4 distinct sources. 198.55.106.168 was first reported on December 3rd 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Phenix Info	2026-06-19 10:32:46 (4 days ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇮🇩 hermawan	2026-03-19 02:59:46 (3 months ago)	2026-03-19T08:53:45.744456+07:00 staklim-malang kernel: Ipt-PREROUCOBA:DROP IN=eth0 OUT= MAC=c4:37:7 ... show more 2026-03-19T08:53:45.744456+07:00 staklim-malang kernel: Ipt-PREROUCOBA:DROP IN=eth0 OUT= MAC=c4:37:72:f5:bf:f3:90:e2:ba:b3:7b:52:08:00 SRC=198.55.106.168 DST=103.166.156.58 LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=64708 DF PROTO=TCP SPT=42735 DPT=443 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Email Spam Hacking
🇩🇪 Phenix Info	2026-03-19 00:02:09 (3 months ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇩🇪 Phenix Info	2026-02-28 02:39:57 (3 months ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇩🇪 Phenix Info	2026-02-10 02:05:35 (4 months ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇩🇪 Phenix Info	2026-02-07 04:33:51 (4 months ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇮🇩 hermawan	2026-01-23 07:49:18 (5 months ago)	[Fri Jan 23 14:48:02.797389 2026] [security2:error] [pid 1010583:tid 139836712273600] [client 198.55 ... show more [Fri Jan 23 14:48:02.797389 2026] [security2:error] [pid 1010583:tid 139836712273600] [client 198.55.106.168:44313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".webp" at REQUEST_LINE. [file "/etc/modsecurity/coreruleset-4.22.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "466"] [id "440010"] [msg "BAD REQUEST Bro, 206 Partial Content"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: identity found within REQUEST_LINE: GET /images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jombang_Tahun_2025_Peserta-600.webp HTTP/2.0 request_line = GET /images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jombang_Tahun_2025_Peserta-600.webp HTTP/2.0 Request URI RAW = /images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_Jombang_Tahun_2025_Peserta-600.webp Reque..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/berita/2025/12/18-12-2025/Sekolah_Lapang_Iklim_Kabupaten_ ... show less	Hacking Web App Attack
🇪🇸 el-brujo	2024-12-06 23:27:38 (1 year ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/535.33 (KHTML, like Gecko111) Chrome/91.5 Safari/534.33 Action: managed_challenge Source: firewallManaged ASN Description: ASN-QUADRANET-GLOBAL Country: US Method: POST Timestamp: 2024-12-06T23:27:38Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇵🇱 rafamiga	2024-12-03 06:10:00 (1 year ago)	198.55.106.168 [03/Dec/2024:07:10:58 +0100] "POST /xmlrpc.php HTTP/1.0" 404 282 "Mozilla/5.0 (Macint ... show more 198.55.106.168 [03/Dec/2024:07:10:58 +0100] "POST /xmlrpc.php HTTP/1.0" 404 282 "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_8) AppleWebKit/532.39 (KHTML, like Gecko111) Chrome/99.6 Safari/534.34" 326 show less	Port Scan Exploited Host

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 85.11.167.11

🇳🇱 176.65.139.112

🇸🇪 171.25.193.38

🇳🇱 158.94.210.216

🇭🇰 144.48.8.10

🇰🇷 125.139.124.120

🇫🇷 85.217.140.5

🇨🇭 51.107.70.198

🇮🇳 202.164.35.18

🇺🇸 185.199.92.29

🇺🇸 178.92.1.162

🇰🇷 118.194.249.8

🇦🇺 115.130.87.202

🇰🇪 102.0.11.254

🇺🇦 91.239.232.40

🇺🇸 66.80.63.122

🇨🇳 218.29.196.162

🇺🇸 209.50.164.51

🇭🇰 118.193.47.223

🇺🇸 71.6.236.40