JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 72.63.18.35

72.63.18.35 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 4%: ?

ISP	UAB code200
Usage Type	Data Center/Web Hosting/Transit
ASN	AS30058
Domain Name	code200.global
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 72.63.18.35

Whois 72.63.18.35

IP Abuse Reports for 72.63.18.35:

This IP address has been reported a total of 3 times from 1 distinct source. 72.63.18.35 was first reported on May 21st 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-28 09:36:05 (2 days ago)	[Sun Jun 28 16:36:04.631847 2026] [security2:error] [pid 252220:tid 140332126672576] [client 72.63.1 ... show more [Sun Jun 28 16:36:04.631847 2026] [security2:error] [pid 252220:tid 140332126672576] [client 72.63.18.35:21454] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "601"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-dasarian/infografis-dasarian-iklim HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-dasarian/infografis-dasarian-iklim"] [unique_id "akDrBEcCmdSYoKTMr4cB5wAAkwY"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[252227] [QLsREg1v8Lg] [akDrBEcCmdSYoKTMr4cB5wAAkwY] keep_alive=[1] [2026-06-28 16:36:04.631851] [R:akDrBEcCmdSYoKTMr4cB5wAAkwY] ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-23 05:42:16 (1 month ago)	[Sat May 23 12:42:13.074794 2026] [security2:error] [pid 1092337:tid 140471251658432] [client 72.63. ... show more [Sat May 23 12:42:13.074794 2026] [security2:error] [pid 1092337:tid 140471251658432] [client 72.63.18.35:23582] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "624"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "ahE-NTdkRqHCtx8InBjTngACxRg"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1092362] [6WNqm7XhKzg] [ahE-NTdkRqHCtx8InBjTngACxRg] keep_alive=[1] [2026-05-23 12:42:13.074800] [R:ahE-NTdkRqHCtx8InBjTngACxRg] UA:'Mozilla/5.0 (Linux; Android 9; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id:443' A ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-21 12:04:45 (1 month ago)	[Thu May 21 19:04:40.238193 2026] [security2:error] [pid 1151518:tid 139813052176064] [client 72.63. ... show more [Thu May 21 19:04:40.238193 2026] [security2:error] [pid 1151518:tid 139813052176064] [client 72.63.18.35:51578] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "857"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /index.php/prediksi-iklim/prediksi-dasarian/probabilistik-curah-hujan-provinsi-jawa-timur HTTP/2.0 Request URI RAW = /index.php/prediksi-iklim/prediksi-dasarian/probabilistik-curah-hujan-provinsi-jawa-timur Request Basename = probabilistik-curah-hujan-provinsi-jawa-timur"] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "parano ... show less	Email Spam Hacking

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.13.24.118

🇨🇳 182.244.0.150

🇺🇸 136.66.105.47

🇰🇷 119.28.161.148

🇳🇵 103.86.57.79

🇫🇷 91.231.89.136

🇳🇱 91.92.40.5

🇺🇸 85.254.138.189

🇺🇸 71.6.134.235

🇨🇦 20.220.14.153

🇧🇷 201.86.46.145

🇺🇸 172.98.33.127

🇪🇸 158.158.43.25

🇺🇸 156.232.13.161

🇺🇸 147.185.132.59

🇮🇳 122.161.113.250

🇨🇳 111.178.118.83

🇺🇸 76.79.213.70

🇺🇸 44.56.121.233

🇦🇺 43.229.61.53