AbuseIPDB » 72.63.20.79
72.63.20.79 was found in our database!
This IP was reported 5 times. Confidence of
Abuse
is 4% : ?
ISP
UAB code200
Usage Type
Data Center/Web Hosting/Transit
ASN
AS30058
Domain Name
code200.global
Country
๐บ๐ธ
United States of America
City
Ashburn, Virginia
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 72.63.20.79 :
This IP address has been reported a total of
5
times from
1 distinct
source.
72.63.20.79 was first reported on
May 10th 2026 , and the most recent report was
1 day ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฎ๐ฉ
hermawan
2026-07-01 05:02:59
(1 day ago)
[Wed Jul 01 12:02:57.837088 2026] [security2:error] [pid 31080:tid 139637621200576] [client 72.63.20 ...
show more
[Wed Jul 01 12:02:57.837088 2026] [security2:error] [pid 31080:tid 139637621200576] [client 72.63.20.79:63816] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yandex.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "601"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yandex.go.id found within REQUEST_HEADERS:Referer: https://www.yandex.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-tahunan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-tahunan"] [unique_id "akSfgQPE-cxobWaYMBRIHAAAlA8"], referer https://www.yandex.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[31107] [gP7cmgXLfAk] [akSfgQPE-cxobWaYMBRIHAAAlA8] keep_alive=[1] [2026-07-01 12:02:57.837094] [R:akSfgQPE-cxobWaYMBRIHAAAlA8] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/5
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-27 20:46:38
(4 days ago)
[Sun Jun 28 03:46:33.253569 2026] [security2:error] [pid 327527:tid 139761619461824] [client 72.63.2 ...
show more
[Sun Jun 28 03:46:33.253569 2026] [security2:error] [pid 327527:tid 139761619461824] [client 72.63.20.79:9742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "601"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "akA2qTxoYgLpnvuC8ITK2wAAQRg"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[327552] [R00KUoJzCuo] [akA2qTxoYgLpnvuC8ITK2wAAQRg] keep_alive=[1] [2026-06-28 03:46:33.253574] [R:akA2qTxoYgLpnvuC8ITK2wAAQRg] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36 EdgA/122.0.0.0' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'text/html
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-15 21:07:35
(2 weeks ago)
[Tue Jun 16 04:07:31.782267 2026] [security2:error] [pid 204775:tid 139893134038720] [client 72.63.2 ...
show more
[Tue Jun 16 04:07:31.782267 2026] [security2:error] [pid 204775:tid 139893134038720] [client 72.63.20.79:11434] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story"] [unique_id "ajBpk0DBnVAjMp5PSjcqEwACRgY"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[204813] [SX/1NpFRjn0] [ajBpk0DBnVAjMp5PSjcqEwACRgY] keep_alive=[1] [2026-06-16 04:07:31.782273] [R:ajBpk0DBnVAjMp5PSjcqEwACRgY] UA:'Mozilla/5.0 (iPhone; CPU iPhone OS 18_5_
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-05-24 05:03:47
(1 month ago)
[Sun May 24 12:03:46.630395 2026] [security2:error] [pid 211571:tid 140343650518720] [client 72.63.2 ...
show more
[Sun May 24 12:03:46.630395 2026] [security2:error] [pid 211571:tid 140343650518720] [client 72.63.20.79:46650] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "857"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /index.php/profil/meteorologi/list-all-categories/113-meteorologi/prakiraan-meteorologi/555557336-prakiraan-harian-cuaca-wisata-di-jawa-timur-untuk-hari-ini-pada-pagi-siang-malam-dan-dini-hari-meliputi-tempat-wisata-antara-lain-kebun-binatang-surabaya-taman-safari-indonesia-prigen-pasuruan-dan-jawa-timur-jatim-park-batu HTTP/2.0 Request URI RAW =..."] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [ta
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-05-10 00:42:41
(1 month ago)
05/10/2026-04:04:21.617410 [Drop] [**] [1:2100001463:0] Suricata match TLS JA4 scan Uniq Zeek no 14 ...
show more
05/10/2026-04:04:21.617410 [Drop] [**] [1:2100001463:0] Suricata match TLS JA4 scan Uniq Zeek no 1463 with hash_t13d1713h2_5b57614c22b0_748f4c70de1c [**] [Classification: (null)] [Priority: 3] {TCP} 72.63.20.79:5078 -> 103.166.156.58:443
...
show less
Email Spam
Hacking
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: