JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.154.18.56

202.154.18.56 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 18%: ?

18%

ISP	PT Digital Media Telematika
Usage Type	Fixed Line ISP
ASN	AS136121
Domain Name	dmtnet.id
Country	🇮🇩 Indonesia
City	Jombang, East Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.154.18.56

Whois 202.154.18.56

IP Abuse Reports for 202.154.18.56:

This IP address has been reported a total of 15 times from 15 distinct sources. 202.154.18.56 was first reported on March 12th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 ByeByte API	2026-05-19 08:11:36 (2 weeks ago)	byebyte.space auth: Rate-limit escalation at 2026-05-19T08:11:36Z: 5 rejections in 300s. Firewall au ... show more byebyte.space auth: Rate-limit escalation at 2026-05-19T08:11:36Z: 5 rejections in 300s. Firewall auto-banned IP for 900s. UA: 'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/605.1.33 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/17.2'. Accept-Language: 'en,es;q=0.9,zh-CN;q=0.8,zh;q=0.7,pt;q=0.6'. Accept-Encoding: 'gzip, br'. Sec-Ch-Ua: '"Google Chrome";v="120", "Chromium";v="120", "Not.A/Brand";v="24"'. Platform: "Linux" (mobile=?0). Country (CF): ID. TLS info: {"scheme":"https"}. show less	Web App Attack DDoS Attack
🇷🇴 Fn4ticHz	2026-05-09 14:02:09 (3 weeks ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇨🇭 cybsecaoccol	2026-05-05 13:32:55 (4 weeks ago)	unauthorized connection or malicious port scan attempted on tcp port 23 - sch	Port Scan Hacking
🇮🇹 VHosting	2026-04-26 08:49:48 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇺🇸 gui-ying233	2026-03-28 00:11:06 (2 months ago)	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.1 ... show more Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.119 Safari/537.36 show less	Bad Web Bot
🇫🇷 Sklurk	2026-03-24 02:28:34 (2 months ago)	Web App Attack	Web App Attack
🇺🇸 COMPLEX	2026-03-17 18:26:59 (2 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: MANAGED_CHALLENGE ASN: undefined (undefined ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: MANAGED_CHALLENGE ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Android 12; Mobile; rv:146.0) Gecko/146.0 Firefox/146.0 show less	DDoS Attack Bad Web Bot
Anonymous	2026-03-02 15:50:03 (3 months ago)	\| [Dangerous/Indonesia] Agressive IP 202.154.18.56 (~30 hits). Type: DoS Defender- Web server 400 er ... show more \| [Dangerous/Indonesia] Agressive IP 202.154.18.56 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇧🇪 cmbplf	2026-02-27 21:50:02 (3 months ago)	2769 limiting connections by zone (13m59s)	DDoS Attack
🇧🇬 cheatmaster.store	2026-02-26 05:45:50 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Indonesia Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇺🇸 Vano Ganzzz	2026-01-14 06:20:51 (4 months ago)	Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 136121 (DIGITNET-AS-ID PT Digita ... show more Triggered Cloudflare WAF (l7ddos) from ID. Action taken: BLOCK ASN: 136121 (DIGITNET-AS-ID PT Digital Media Telematika) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2026-01-14T06:20:51Z Ray ID: 9bdb07a31daf8e13 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79) Gecko/20100101 Firefox/71.0 show less	DDoS Attack Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2026-01-12 22:17:25 (4 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇬🇧 Silly Development	2025-12-25 21:03:46 (5 months ago)	Malicious activity detected from 136121 DIGITNET-AS-ID PT Digital Media Telematika towards host sill ... show more Malicious activity detected from 136121 DIGITNET-AS-ID PT Digital Media Telematika towards host sillydev.co.uk (GET HTTP/2) @ 2025-12-25T21:03:46Z (4 occurrences) show less	DDoS Attack Exploited Host
🇨🇭 Modules	2025-12-14 04:04:38 (5 months ago)	Open proxy http://202.154.18.56:8080 (RT:9295ms,Loc:Indonesia,ASN:AS136121)	Open Proxy
🇮🇩 hermawan	2024-03-12 23:59:27 (2 years ago)	[Wed Mar 13 06:56:24.621186 2024] [security2:error] [pid 556726:tid 131611985184320] [client 202.154 ... show more [Wed Mar 13 06:56:24.621186 2024] [security2:error] [pid 556726:tid 131611985184320] [client 202.154.18.56:59036] [client 202.154.18.56] ModSecurity: Access denied with code 403 (phase 1). Match of "pm https://web.telegram.org/ www.google.com https://www.google.fi/ android-app://com.google.android.gm https://homepage.miui.com/ myactivity.google.com applebot iPhone bingbot https://yandex.com/ https://www.google.com.tw sih3.dpuair.jatimprov.go.id duck ..." against "REQUEST_HEADERS:Referer" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "159"] [id "440067"] [msg "BAD Referer"] [data "Matched Data: staklim-jatim.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.google.it/ request_line = GET /index.php/profil/meteorologi/list-of-all-tags/prakiraan-cuaca-lamongan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/prakiraan-cuaca-lamongan"] [unique_id "Zf ... show less	Hacking Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.250.232.120

🇵🇰 153.117.8.143

🇫🇮 147.185.133.69

🇰🇷 112.216.108.62

🇺🇸 98.127.109.103

🇩🇪 94.31.110.19

🇧🇪 34.78.26.73

🇹🇼 218.161.25.7

🇲🇾 183.171.191.175

🇰🇷 175.195.192.197

🇨🇦 99.245.20.104

🇺🇸 99.92.218.40

🇲🇩 185.162.141.34

🇦🇹 178.115.82.141

🇮🇳 122.164.127.47

🇮🇳 103.127.170.128

🇳🇱 45.87.249.200

🇬🇧 35.203.210.172

🇸🇦 5.245.153.9

🇨🇳 183.150.201.170