JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.255.137.149

101.255.137.149 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 0%: ?

ISP	FIBER KERUMAH INDONESIA
Usage Type	Fixed Line ISP
ASN	AS38511
Domain Name	tachyon.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.255.137.149

Whois 101.255.137.149

IP Abuse Reports for 101.255.137.149:

This IP address has been reported a total of 28 times from 21 distinct sources. 101.255.137.149 was first reported on March 4th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 EGP Abuse Dept	2026-03-15 02:39:03 (3 months ago)	Scanning for port/service exploits on tpc-036.mach3builders.nl	Port Scan Hacking
🇮🇹 A000Z	2026-03-12 21:01:53 (3 months ago)	Fail2Ban: 101.255.137.149 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/ ... show more Fail2Ban: 101.255.137.149 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 matt	2026-03-03 23:46:46 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack
🇺🇸 matt	2026-03-02 21:51:20 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack
🇵🇹 fume	2026-02-28 07:18:00 (4 months ago)		Hacking SQL Injection
Anonymous	2026-01-27 05:32:03 (5 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-skip.asp show less	Bad Web Bot Exploited Host
🇺🇸 xmission.com	2026-01-17 13:44:25 (5 months ago)	Blocked by UFW (TCP on 23) Source port: 41450 TTL: 47 Packet length: 60 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 41450 TTL: 47 Packet length: 60 TOS: 0x08 This report (for 101.255.137.149) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇮🇹 VHosting	2025-12-23 11:22:53 (6 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-11-27 18:21:57 (7 months ago)	botnet	DDoS Attack
🇮🇩 hermawan	2025-11-16 01:03:22 (7 months ago)	[Sun Nov 16 08:00:54.184541 2025] [security2:error] [pid 1400296:tid 140213021030080] [client 101.25 ... show more [Sun Nov 16 08:00:54.184541 2025] [security2:error] [pid 1400296:tid 140213021030080] [client 101.255.137.149:43313] ModSecurity: Access denied with code 403 (phase 2). Pattern match "." at ARGS_NAMES:start. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-921-PROTOCOL-ATTACK.conf"] [line "728"] [id "921170"] [msg "deny 921170"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: s found within ARGS_NAMES:start: start request_line = GET /index.php/profil/meteorologi/prakiraan-meteorologi/3914-prakiraan-cuaca-jawa-timur-hari-ini?start=30 HTTP/2.0 Request URI RAW = /index.php/profil/meteorologi/prakiraan-meteorologi/3914-prakiraan-cuaca-jawa-timur-hari-ini?start=30 Request Basename = 3914-prakiraan-cuaca-jawa-timur-hari-ini"] [ver "OWASP_CRS/4.20.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ATTACK"] [tag "capec/1000/152/137 ... show less	Hacking Web App Attack
🇩🇪 pressler.pro	2025-09-24 04:30:17 (9 months ago)	Fail2ban - DDoS attack on woocommerce shop ...	DDoS Attack
🇩🇪 pressler.pro	2025-09-22 16:55:28 (9 months ago)	Fail2ban - DDoS attack on woocommerce shop ...	DDoS Attack
Anonymous	2025-09-10 07:12:03 (9 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 ᴀʀᴛ	2025-07-28 10:41:31 (11 months ago)	Triggered Cloudflare WAF (firewallCustom) from ID. ASN: 38511 (TACHYON-AS-ID PT Remala Abadi) Protoc ... show more Triggered Cloudflare WAF (firewallCustom) from ID. ASN: 38511 (TACHYON-AS-ID PT Remala Abadi) Protocol: HTTP/2 (GET method) UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.245.71.147

🇩🇪 216.162.44.81

🇺🇸 216.25.89.119

🇺🇸 206.189.162.157

🇺🇸 173.0.84.2

🇻🇳 160.187.147.124

🇭🇰 156.251.179.157

🇺🇦 95.164.54.75

🇺🇸 69.10.63.170

🇷🇺 46.39.239.86

🇧🇷 45.71.28.80

🇻🇳 42.116.197.47

🇺🇸 35.163.81.89

🇨🇳 27.24.141.119

🇺🇸 20.169.107.113

🇺🇸 20.168.0.84

🇸🇬 4.194.19.2

🇰🇪 197.232.113.7

🇳🇱 195.178.110.228

🇺🇸 184.105.247.196