JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.162.35.20

202.162.35.20 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 64%: ?

64%

ISP	DISHUBKOMINFO Kab Sleman
Usage Type	Fixed Line ISP
ASN	AS17996
Hostname(s)	202.162.35.20-static.reverse.uii.net.id
Domain Name	uii.net.id
Country	🇮🇩 Indonesia
City	Yogyakarta, Yogyakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.162.35.20

Whois 202.162.35.20

IP Abuse Reports for 202.162.35.20:

This IP address has been reported a total of 18 times from 10 distinct sources. 202.162.35.20 was first reported on June 11th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 03:45:35 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 23:45:27.762438 2026] [security2:error] [pid 4808:tid 4808] [client 202.162.35.20:60882] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.abneyfoundation.org"] [uri "/.env"] [unique_id "aizSV3gx2pFb0LZlVdFruwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nyt	2026-06-13 03:40:48 (1 hour ago)	Sensitive File Probe	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 03:19:46 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 23:19:40.587182 2026] [security2:error] [pid 9188:tid 9188] [client 202.162.35.20:53472] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.929.hongkonger.org"] [uri "/.env"] [unique_id "aizMTIiI70RYdRsrHLYPGgAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 dtorrer	2026-06-13 02:43:34 (2 hours ago)	General vulnerability scan.	Port Scan
🇺🇸 TPI-Abuse	2026-06-13 02:39:37 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:39:31.453070 2026] [security2:error] [pid 24379:tid 24379] [client 202.162.35.20:41648] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.34thprs.org"] [uri "/.env"] [unique_id "aizC47tkY7JkaukyA5oGSgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-12 21:59:21 (7 hours ago)	Auto-ban: >3000 req/min op 2026-06-12	Web App Attack SSH Hacking
🇳🇱 oisecnet	2026-06-12 21:02:00 (8 hours ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-12. 3 requests from this I ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-12. 3 requests from this IP. show less	Brute-Force Web App Attack SSH
🇺🇸 TPI-Abuse	2026-06-12 11:55:12 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:55:03.867915 2026] [security2:error] [pid 24295:tid 24295] [client 202.162.35.20:52738] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.microscope.modelengines.info"] [uri "/.env"] [unique_id "aivzl7svWsVljH4SlnZseQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 11:32:35 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:32:31.554324 2026] [security2:error] [pid 3208:tid 3208] [client 202.162.35.20:47412] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.maps.marat.info"] [uri "/.env"] [unique_id "aivuTwqdLxY4gkQLsYPK4wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 11:12:52 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:12:45.661316 2026] [security2:error] [pid 8241:tid 8241] [client 202.162.35.20:42508] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.livesteamtracks.info"] [uri "/.env"] [unique_id "aivprfQr3PzO_mHN6KB5gwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 10:59:17 (18 hours ago)	202.162.35.20 - - [12/Jun/2026:10:59:16 +0000] "GET /.env HTTP/1.1" 404 47043 "-" "Mozilla/5.0 (Wind ... show more 202.162.35.20 - - [12/Jun/2026:10:59:16 +0000] "GET /.env HTTP/1.1" 404 47043 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:32:32 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii ... show more (mod_security) mod_security (id:210492) triggered by 202.162.35.20 (202.162.35.20-static.reverse.uii.net.id): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:32:24.296229 2026] [security2:error] [pid 19297:tid 19297] [client 202.162.35.20:34760] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "overblijvers.nl"] [uri "/.env"] [unique_id "aivgOE4yCxATNVGVPkmDcAAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-12 09:39:04 (19 hours ago)	Try to access /.env	Web App Attack
🇫🇮 YF	2026-06-12 05:00:39 (1 day ago)	Environment file probe	Web App Attack
🇧🇪 cmbplf	2026-06-12 04:29:55 (1 day ago)	1.433 requests with url.path *.env	Brute-Force Bad Web Bot

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 185.231.64.253

🇧🇩 103.132.221.142

🇸🇪 90.230.115.5

🇫🇷 82.65.16.176

🇰🇿 79.140.224.10

🇳🇱 45.148.10.147

🇸🇬 8.219.2.243

🇬🇧 216.226.76.10

🇺🇸 209.74.86.86

🇧🇷 189.38.23.245

🇸🇬 167.172.79.7

🇺🇸 147.185.132.56

🇦🇺 120.157.214.175

🇮🇳 103.199.123.87

🇮🇳 103.54.101.216

🇷🇴 80.94.92.184

🇺🇸 66.228.40.98

🇺🇸 43.153.12.68

🇪🇬 41.32.224.10

🇺🇸 18.119.209.50