JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.62.39.72

202.62.39.72 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 15%: ?

15%

ISP	Cogetel Ltd, Online ISP, Cambodia
Usage Type	Fixed Line ISP
ASN	AS23673
Hostname(s)	cogetel-72-39-62-202.online.com.kh
Domain Name	cogetel.com.kh
Country	🇰🇭 Cambodia
City	Phnom Penh, Phnom Penh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.62.39.72

Whois 202.62.39.72

IP Abuse Reports for 202.62.39.72:

This IP address has been reported a total of 43 times from 24 distinct sources. 202.62.39.72 was first reported on March 20th 2023, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-25 02:25:47 (3 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇹🇷 Threat.live	2026-06-24 16:20:03 (4 days ago)	Threat.live: Web Scan	Web App Attack
Anonymous	2025-09-10 06:51:18 (9 months ago)	Spamming registration page	Web Spam
🇮🇹 VHosting	2025-07-25 05:10:48 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇩🇪 Savvii	2025-07-16 03:32:24 (11 months ago)	10 attempts against mh-mag-customerspam-ban on web	Web App Attack
Anonymous	2025-07-14 15:23:55 (11 months ago)	Spamming registration page	Web Spam
🇺🇸 TPI-Abuse	2025-07-09 05:00:08 (11 months ago)	(mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 09 00:59:56.779914 2025] [security2:error] [pid 4928:tid 4928] [client 202.62.39.72:42337] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kellenbarger.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kellenbarger.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aG33TLbf9gAKC1j1hnO_mAAAAAc"], referer: https://kellenbarger.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-08 05:01:55 (11 months ago)	ZUOBDE WEBFORM SPAM 202.62.39.72 (headquarter.online.com.kh)	Web Spam
Anonymous	2025-07-03 21:30:13 (11 months ago)		Web Spam
🇺🇸 TPI-Abuse	2025-06-22 06:50:38 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 22 02:50:33.059225 2025] [security2:error] [pid 3926432:tid 3926541] [client 202.62.39.72:50833] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|guitarprimer.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "guitarprimer.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aFenuf2GmgrIwAdGnsRGawAAARI"], referer: https://guitarprimer.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-21 04:20:50 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 21 00:20:44.093455 2025] [security2:error] [pid 2941265:tid 2941265] [client 202.62.39.72:37151] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|grandpont-house.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grandpont-house.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "aFYzHPsXRcZbdHAYBSG8_wAAABA"], referer: https://grandpont-house.org/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-20 12:02:41 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 08:02:32.995099 2025] [security2:error] [pid 2701120:tid 2701120] [client 202.62.39.72:36164] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aemcmullin.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aemcmullin.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aFVN2J3i7lXDXM1Ykqb2KAAAABk"], referer: https://aemcmullin.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 GabrielJST	2025-06-16 09:43:18 (1 year ago)	(wordpress) Failed wordpress login from 202.62.39.72 (KH/Cambodia/headquarter.online.com.kh)	Brute-Force
🇺🇸 TPI-Abuse	2025-05-30 05:10:16 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 202.62.39.72 (headquarter.online.com.kh): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 30 01:10:10.624700 2025] [security2:error] [pid 3911018:tid 3911041] [client 202.62.39.72:60908] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|munatseng.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "munatseng.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "aDk9sndxy7TEqk7VdlH_5AAAANU"], referer: https://munatseng.org/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 nyuuzyou	2025-05-17 07:14:55 (1 year ago)	{"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "22", "server": "ssh_server", "src_ip": ... show more {"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "22", "server": "ssh_server", "src_ip": "202.62.39.72", "src_port": "42084", "timestamp": "2025-05-17T07:14:14.417823"} show less	Brute-Force SSH

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a09:bac5:9444:4e6::7d:44

🇧🇪 198.235.24.206

🇺🇸 104.28.251.194

🇮🇩 103.39.51.102

🇺🇸 52.161.50.33

🇺🇸 45.61.97.121

🇩🇪 43.228.157.10

🇳🇱 204.76.203.219

🇧🇪 198.235.24.219

🇧🇷 172.111.13.91

🇺🇸 167.99.148.102

🇺🇸 165.22.183.196

🇧🇷 160.20.201.14

🇮🇳 152.52.192.162

🇻🇳 117.2.22.68

🇨🇳 116.16.205.209

🇹🇼 111.70.32.52

🇺🇸 107.150.103.155

🇺🇦 94.45.121.136

🇳🇱 86.54.31.44