AbuseIPDB » 202.169.239.162
202.169.239.162 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 3% : ?
ISP
LIFEMEDIA
Usage Type
Fixed Line ISP
ASN
AS23671
Hostname(s)
host-202-169-239-162.lifemedia.id
Domain Name
lifemedia.id
Country
๐ฎ๐ฉ
Indonesia
City
Yogyakarta, Yogyakarta
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 202.169.239.162 :
This IP address has been reported a total of
7
times from
5 distinct
sources.
202.169.239.162 was first reported on
August 4th 2024 , and the most recent report was
1 week ago .
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐จ๐ญ
backslash
2026-07-06 10:21:14
(1 week ago)
block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803
Bad Web Bot
๐ฎ๐น
VHosting
2025-11-30 23:22:45
(7 months ago)
Detected mail brute force attack from 4 different servers
Brute-Force
๐ฎ๐ฉ
hermawan
2025-04-27 09:01:38
(1 year ago)
[Sun Apr 27 16:01:37.956261 2025] [security2:error] [pid 930395:tid 140550728476352] [client 202.169 ...
show more
[Sun Apr 27 16:01:37.956261 2025] [security2:error] [pid 930395:tid 140550728476352] [client 202.169.239.162:64563] ModSecurity: Access denied with code 403 (phase 1). Match of "pm www.office.com powerpoint.officeapps.live.com /offline-service-worker-27-01-2024-v5-0-1.js /offline-service-worker-01-08-2023-v4-5-1.js /OneSignalSDKWorker.js /worker-analytic-helper-27-11-2022.js/ /worker-analytic-helper-29-11-2022.js/ /worker-analyt ..." against "REQUEST_HEADERS:Referer" required. [file "/etc/modsecurity/coreruleset-4.13.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "433"] [id "440067"] [msg "BAD Referer"] [data "Matched Data: matomo.staklim-malang.info found within REQUEST_HEADERS:Referer: request_line = GET /offline-service-worker-19-02-2025.js HTTP/2.0"] [severity "NOTICE"] [hostname "matomo.staklim-malang.info"] [uri "/offline-service-worker-19-02-2025.js"] [unique_id "aA3ycQGSeFnBJxyLvsnSwQAAqBc"] [matomo.staklim-malang.info] [matomo.staklim-malang.info] top=[930419] [aheq0O
...
show less
Hacking
Web App Attack
๐น๐ท
pamircil
2025-03-14 00:03:18
(1 year ago)
๐ฏ WinnieThePooh Honeypot : Detected (smbd/445) source:202.169.239.162:57005 on 2025-03-12T01:09:32.8 ...
show more
๐ฏ WinnieThePooh Honeypot : Detected (smbd/445) source:202.169.239.162:57005 on 2025-03-12T01:09:32.891647 ๐
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
2024-11-14 07:28:43
(1 year ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
Anonymous
2024-09-03 05:31:39
(1 year ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ฎ๐ฉ
hermawan
2024-08-04 06:57:00
(1 year ago)
[Sun Aug 04 13:46:44.810718 2024] [security2:error] [pid 93077:tid 138154698868288] [client 202.169. ...
show more
[Sun Aug 04 13:46:44.810718 2024] [security2:error] [pid 93077:tid 138154698868288] [client 202.169.239.162:50299] [client 202.169.239.162] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\s" at MATCHED_VAR. [file "/etc/modsecurity/coreruleset-4.3.0/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "1410"] [id "932200"] [msg "RCE Bypass Technique"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: $d found within MATCHED_VAR: {\\x22distinct_id\\x22: \\x22$device:1911c22051e1b7e-004f3ad1f4eaa9-26001e51-144000-1911c22051e1b7e\\x22,\\x22$device_id\\x22: \\x221911c22051e1b7e-004f3ad1f4eaa9-26001e51-144000-1911c22051e1b7e\\x22,\\x22$search_engine\\x22: \\x22google\\x22,\\x22$initial_referrer\\x22: \\x22https://www.google.com/\\x22,\\x22$initial_referring_domain\\x22: \\x22www.google.com\\x22} request_line = GET /index..."] [severity "CRITICAL"] [ver "OWASP_CRS/4.3.0"] [tag "application-multi"] [tag "lan
...
show less
Hacking
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: