JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.155.143.247

202.155.143.247 was found in our database!

This IP was reported 233 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Awan Data Teknologi
Usage Type	Data Center/Web Hosting/Transit
ASN	AS151592
Domain Name	awandata.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.155.143.247

Whois 202.155.143.247

IP Abuse Reports for 202.155.143.247:

This IP address has been reported a total of 233 times from 153 distinct sources. 202.155.143.247 was first reported on January 11th 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-05-30 01:02:17 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
Anonymous	2026-05-30 00:35:21 (5 days ago)	202.155.143.247 - - [30/May/2026:08:35:21 +0800] "GET /.env HTTP/1.1" 404 196 "-" "Go-http-client/1. ... show more 202.155.143.247 - - [30/May/2026:08:35:21 +0800] "GET /.env HTTP/1.1" 404 196 "-" "Go-http-client/1.1" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-30 00:32:26 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 20:32:22.980576 2026] [security2:error] [pid 6900:tid 6900] [client 202.155.143.247:53784] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|printorganic.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "printorganic.com"] [uri "/s3cmd.ini"] [unique_id "ahowFshPhz1rIbgyHlhpDgAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-05-30 00:29:53 (5 days ago)	202.155.143.247 - - [30/May/2026:03:29:52 +0300] "GET /.env HTTP/1.1" 404 730 "-" "Go-http-client/1. ... show more 202.155.143.247 - - [30/May/2026:03:29:52 +0300] "GET /.env HTTP/1.1" 404 730 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇩🇪 Philister11	2026-05-30 00:12:08 (5 days ago)	CrowdSec: crowdsecurity/http-admin-interface-probing (ID/AS151592)	Web App Attack Hacking
🇦🇹 penguin-solutions.at	2026-05-29 23:48:42 (5 days ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇳🇱 ConsulHosting	2026-05-29 23:47:11 (5 days ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇦🇺 aranguren.org	2026-05-29 23:42:09 (5 days ago)	202.155.143.247 - - [30/May/2026:09:42:00 +1000] "GET /.aws/credentials HTTP/2.0" 404 999 "-" "Go-ht ... show more 202.155.143.247 - - [30/May/2026:09:42:00 +1000] "GET /.aws/credentials HTTP/2.0" 404 999 "-" "Go-http-client/2.0" 202.155.143.247 - - [30/May/2026:09:42:02 +1000] "GET /.aws/credentials.gpg HTTP/2.0" 404 999 "-" "Go-http-client/2.0" 202.155.143.247 - - [30/May/2026:09:42:03 +1000] "GET /.s3cfg HTTP/2.0" 404 999 "-" "Go-http-client/2.0" 202.155.143.247 - - [30/May/2026:09:42:05 +1000] "GET /.passwd-s3fs HTTP/2.0" 404 999 "-" "Go-http-client/2.0" 202.155.143.247 - - [30/May/2026:09:42:07 +1000] "GET /s3cmd.ini HTTP/2.0" 404 999 "-" "Go-http-client/2.0" 202.155.143.247 - - [30/May/2026:09:42:08 +1000] "GET /.env HTTP/2.0" 404 999 "-" "Go-http-client/2.0" ... show less	Bad Web Bot
🇺🇸 conrad10781	2026-05-29 23:31:56 (5 days ago)	nginx-4xx	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-29 23:23:27 (5 days ago)	202.155.143.247 - - [30/May/2026:02:23:24 +0300] "GET /api/.env HTTP/1.1" 404 273 "-" "Go-http-clien ... show more 202.155.143.247 - - [30/May/2026:02:23:24 +0300] "GET /api/.env HTTP/1.1" 404 273 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 23:09:00 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 19:08:57.194031 2026] [security2:error] [pid 12015:tid 12092] [client 202.155.143.247:56364] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kyrameadows.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kyrameadows.com"] [uri "/s3cmd.ini"] [unique_id "ahocidMN7NJUTf18aUJRmgAAAMA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 22:48:44 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 18:48:38.135650 2026] [security2:error] [pid 13758:tid 13758] [client 202.155.143.247:40356] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.register-yacht-cook-islands.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.register-yacht-cook-islands.com"] [uri "/s3cmd.ini"] [unique_id "ahoXxkYvkUDi_txGW6qSHQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TAY	2026-05-29 22:43:50 (5 days ago)	202.155.143.247 - - [30/May/2026:06:42:10 +0800] "GET /wp-config.php.bak HTTP/1.1" 404 2049 "-" "Go- ... show more 202.155.143.247 - - [30/May/2026:06:42:10 +0800] "GET /wp-config.php.bak HTTP/1.1" 404 2049 "-" "Go-http-client/1.1" 202.155.143.247 - - [30/May/2026:06:43:48 +0800] "GET /wp-config.php.orig HTTP/1.1" 404 2049 "-" "Go-http-client/1.1" 202.155.143.247 - - [30/May/2026:06:43:49 +0800] "GET /wp-config.php HTTP/1.1" 404 2049 "-" "Go-http-client/1.1" ... show less	Brute-Force
Anonymous	2026-05-29 22:34:01 (5 days ago)	"GET /.aws/credentials HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 22:21:10 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 202.155.143.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 18:21:08.182368 2026] [security2:error] [pid 27132:tid 27132] [client 202.155.143.247:44920] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohioaci.org"] [uri "/.env"] [unique_id "ahoRVNaSz7bmo6TGGpiivgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 151 to 165 of 233 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.226

🇹🇼 198.235.24.53

🇺🇿 185.203.236.212

🇭🇰 150.5.169.176

🇺🇸 135.237.122.43

🇨🇳 116.178.128.204

🇳🇵 113.199.249.60

🇺🇸 107.175.156.160

🇻🇳 103.166.184.148

🇧🇩 103.86.108.224

🇫🇷 92.103.134.183

🇬🇧 80.43.219.118

🇺🇸 45.33.69.253

🇺🇸 40.124.173.224

🇺🇸 20.163.15.20

🇺🇸 216.73.160.185

🇺🇸 216.73.160.21

🇳🇱 195.178.110.30

🇬🇧 188.240.59.7

🇧🇷 186.26.82.195