JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.64.1.29

36.64.1.29 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 100%: ?

100%

ISP	PT TELKOM INDONESIA STO Gambir Lantai 3 Jalan Medan Merdeka Selatan 12 JAKARTA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Bekasi, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.64.1.29

Whois 36.64.1.29

IP Abuse Reports for 36.64.1.29:

This IP address has been reported a total of 75 times from 48 distinct sources. 36.64.1.29 was first reported on February 24th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 applemooz	2026-06-07 12:58:45 (7 hours ago)	<abuseipdb_matches> ...	Brute-Force Web App Attack
Anonymous	2026-06-07 10:55:06 (9 hours ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇦🇺 AWW-Admin	2026-06-07 02:22:48 (18 hours ago)	(wordpress) Failed wordpress login from 36.64.1.29 (ID/Indonesia/-)	Brute-Force
🇩🇪 dbmwebdesign	2026-06-07 00:00:18 (20 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 23:54:54 (20 hours ago)	(mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 19:54:38.413962 2026] [security2:error] [pid 30766:tid 30766] [client 36.64.1.29:59537] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|solporpoise.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "solporpoise.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiSzProRR_vq7WL79uuOtAAAAAc"], referer: https://www.google.com/search?q=wordpress show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-06 22:55:40 (21 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 22:27:57 (22 hours ago)	(mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 18:27:46.885341 2026] [security2:error] [pid 11224:tid 11224] [client 36.64.1.29:55410] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wurkroom.biz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wurkroom.biz"] [uri "/wp-json/wp/v2/users"] [unique_id "aiSe4hNNwXAqm4CiTOIZOQAAAA0"], referer: https://www.bing.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-06 13:03:08 (1 day ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇨🇦 Dolphi	2026-06-06 13:00:03 (1 day ago)	Excessive POST /1/wp-login.php requests	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 11:56:21 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 07:56:11.355223 2026] [security2:error] [pid 26018:tid 26018] [client 36.64.1.29:62536] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|carolinafootprints.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "carolinafootprints.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiQK213JCu4Otv0tniW-cAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 YF	2026-06-06 11:00:23 (1 day ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 02:46:39 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 22:46:21.779732 2026] [security2:error] [pid 7188:tid 7188] [client 36.64.1.29:51454] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.tcit.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.tcit.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aiOJ_SNz5xemRiHy-y8t8AAAAAw"], referer: https://wordpress.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 02:05:37 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 22:05:21.049602 2026] [security2:error] [pid 23193:tid 23193] [client 36.64.1.29:65290] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.williams-rodriguez.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.williams-rodriguez.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aiOAYbC5HGYYVZD1U_8-YgAAABM"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 00:15:31 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 36.64.1.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 20:15:20.522660 2026] [security2:error] [pid 20414:tid 20435] [client 36.64.1.29:50113] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aafm.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aafm.us"] [uri "/wp-json/wp/v2/users"] [unique_id "aiNmmNTfjs2OJRSCTFhX4QAAAZM"], referer: https://www.google.com/search?q=wordpress show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 14:29:13 (2 days ago)	[osotir.org] httpd-login-post: sites=vivliopoleio-lyxnos.gr; logs=/var/log/httpd/domains/vivliopolei ... show more [osotir.org] httpd-login-post: sites=vivliopoleio-lyxnos.gr; logs=/var/log/httpd/domains/vivliopoleio-lyxnos.gr.log; samples=/wp-login.php?redirect_to=https%3A%2F%2Fvivliopoleio-lyxnos.gr%2Fwp-admin%2Findex.php&reauth=1 \| /wp-login.php \| /wp-admin/index.php show less	Brute-Force Web App Attack

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.217.46.18

🇨🇳 116.207.109.187

🇦🇩 93.123.109.101

🇺🇸 44.220.185.181

🇺🇸 44.220.185.174

🇺🇸 24.45.233.231

🇭🇰 13.70.2.225

🇳🇱 5.129.216.23

🇰🇷 220.127.148.6

🇩🇪 178.105.210.107

🇳🇱 159.223.213.49

🇧🇷 144.22.238.238

🇨🇳 111.113.88.238

🇺🇸 107.172.157.247

🇫🇷 83.171.226.124

🇱🇻 62.205.217.8

🇯🇵 54.248.17.61

🇳🇱 45.148.10.151

🇺🇸 44.220.185.166

🇺🇸 44.220.185.164