JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.96.225.138

66.96.225.138 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-66-96-225-138.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.96.225.138

Whois 66.96.225.138

IP Abuse Reports for 66.96.225.138:

This IP address has been reported a total of 10 times from 8 distinct sources. 66.96.225.138 was first reported on November 9th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2026-01-15 23:17:21 (4 months ago)	66.96.225.138 (ID/Indonesia/host-66-96-225-138.myrepublic.co.id), 5 distributed sshd attacks on acco ... show more 66.96.225.138 (ID/Indonesia/host-66-96-225-138.myrepublic.co.id), 5 distributed sshd attacks on account [admin] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jan 15 17:16:37 15394 sshd[30590]: Invalid user admin from 66.96.225.138 port 41986 Jan 15 17:16:39 15394 sshd[30590]: Failed password for invalid user admin from 66.96.225.138 port 41986 ssh2 Jan 15 17:16:03 15394 sshd[30511]: Invalid user admin from 66.96.225.191 port 48820 Jan 15 17:16:05 15394 sshd[30511]: Failed password for invalid user admin from 66.96.225.191 port 48820 ssh2 Jan 15 17:17:14 15394 sshd[30684]: Invalid user admin from 66.96.225.69 port 43842 IP Addresses Blocked: show less	Brute-Force SSH
🇮🇩 titis.blitarkab	2025-10-30 05:27:00 (7 months ago)	njaluk paswod tah cuk?	Hacking Exploited Host Web App Attack
🇮🇩 sockominfo	2025-10-29 10:40:54 (7 months ago)	[WAZUH] Critical LFI with PHP code injection detected - Basic 2	Hacking Web App Attack
🇺🇸 ipblock.com	2025-10-27 05:32:00 (7 months ago)	IPBlock protected site ID [4055-d][s=02]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2025-10-27 01:58:00 (7 months ago)	IPBlock protected site ID [4055-d][s=01]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2025-10-27 01:27:00 (7 months ago)	IPBlock protected site ID [4055-d][s=01]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇮🇩 Ridwan Na'im	2024-12-19 02:42:04 (1 year ago)	Multiple web server 400 error codes from same source ip. - Vulnerability Scanning	Hacking Web App Attack
🇮🇩 hermawan	2024-11-21 12:25:06 (1 year ago)	[Thu Nov 21 18:48:14.652237 2024] [security2:error] [pid 45125:tid 129882747623104] [client 66.96.22 ... show more [Thu Nov 21 18:48:14.652237 2024] [security2:error] [pid 45125:tid 129882747623104] [client 66.96.225.138:53090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "myactivity.google.com" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.8.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "259"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: myactivity.google.com found within REQUEST_HEADERS:Referer: https://myactivity.google.com/ request_line = GET /images/Klimatologi/Buletin/Musim/Musim_Hujan/2024-2025/Buletin_6_Bulanan_Prediksi_Musim_Hujan_Provinsi_Jawa_Timur_Tahun_2024.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Buletin/Musim/Musim_Hujan/2024-2025/Buletin_6_Bulanan_Prediksi_Musim_Hujan_Provinsi_Jawa_Timur_Tahun_2024.webp"] [unique_id "Zz8d_pUPpDa3dtbaxPka-wAD4TA"], referer https://myactivity.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[45174] [uQFs15LZD0Q] [ ... show less	Hacking Web App Attack
🇮🇩 penjaga BRIN	2024-03-19 14:22:12 (2 years ago)	Multiple web server 503 error code (Service unavailable).-180	Web App Attack
🇮🇩 Burayot	2023-11-09 05:10:58 (2 years ago)	LF_POP3D: (pop3d) Failed POP3 login from 66.96.225.138 (ID/Indonesia/host-66-96-225-138.myrepublic.c ... show more LF_POP3D: (pop3d) Failed POP3 login from 66.96.225.138 (ID/Indonesia/host-66-96-225-138.myrepublic.co.id): 2 in the last 3600 secs show less	Brute-Force

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 131.196.82.201

🇭🇰 119.246.15.94

🇨🇳 117.50.182.94

🇨🇳 112.6.227.209

🇳🇱 77.83.39.101

🇳🇱 31.56.209.229

🇮🇳 117.222.54.136

🇻🇳 103.48.192.48

🇧🇷 37.148.132.190

🇳🇱 5.61.209.33

🇭🇷 2620:171:d1:f002:9999::177

🇬🇧 212.38.75.196

🇺🇬 196.0.3.188

🇺🇸 195.184.76.19

🇬🇧 194.50.235.142

🇮🇳 182.95.103.110

🇮🇩 103.15.226.202

🇷🇴 92.118.39.62

🇯🇵 43.163.242.6

🇫🇷 34.155.254.154