JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.70.237.80

36.70.237.80 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 100%: ?

100%

ISP	PT TELKOM INDONESIA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.70.237.80

Whois 36.70.237.80

IP Abuse Reports for 36.70.237.80:

This IP address has been reported a total of 31 times from 18 distinct sources. 36.70.237.80 was first reported on June 19th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-22 21:07:49 (4 hours ago)	2.436 requests from abuseipdb.com blacklisted IP (3w3d14h)	Brute-Force Bad Web Bot
🇫🇮 YF	2026-06-22 16:01:07 (9 hours ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇬🇧 noise.agency	2026-06-22 15:03:54 (10 hours ago)	(wordpress) Failed wordpress login from 36.70.237.80 (ID/Indonesia/-)	Brute-Force
🇩🇪 rh24	2026-06-22 11:30:34 (14 hours ago)	(wordpress) Failed wordpress login from 36.70.237.80 (ID/Indonesia/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 05:15:57 (20 hours ago)	(mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 01:15:39.962357 2026] [security2:error] [pid 24204:tid 24204] [client 36.70.237.80:64839] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.70.237.80 (+1 hits since last alert)\|jellisonrepair.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jellisonrepair.com"] [uri "/xmlrpc.php"] [unique_id "ajjE-3BDJIE12bK8NGvPCgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 03:16:18 (22 hours ago)	(mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 23:16:08.717596 2026] [security2:error] [pid 27922:tid 27922] [client 36.70.237.80:53269] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.70.237.80 (+1 hits since last alert)\|solporpoise.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "solporpoise.com"] [uri "/xmlrpc.php"] [unique_id "ajio-H_LSQ6LhNH0PwxEbgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-22 03:15:40 (22 hours ago)	(wordpress) Failed wordpress login from 36.70.237.80 (ID/Indonesia/-)	Brute-Force
Anonymous	2026-06-22 02:59:02 (22 hours ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 02:28:30 (23 hours ago)	(mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 22:28:16.489759 2026] [security2:error] [pid 4168:tid 4168] [client 36.70.237.80:56922] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.70.237.80 (+1 hits since last alert)\|americanureport.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "americanureport.com"] [uri "/xmlrpc.php"] [unique_id "ajidwBtTlduqYrQ568tlvQAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-21 22:38:18 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-21 18:52:02 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-21 18:06:05 (1 day ago)	Trying to access config files	Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 17:53:41 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 13:53:29.206490 2026] [security2:error] [pid 614:tid 614] [client 36.70.237.80:50788] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.70.237.80 (+1 hits since last alert)\|whodatnation.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whodatnation.com"] [uri "/xmlrpc.php"] [unique_id "ajglGYXwMzPdQ8VrfpItVQAAAFY"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-21 16:22:29 (1 day ago)	(xmlrpc) Failed xmlrpc access from 36.70.237.80 (ID/Indonesia/-): 5 in the last 3600 secs (0-122)	Hacking
🇺🇸 TPI-Abuse	2026-06-21 08:23:37 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 36.70.237.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 04:23:22.833883 2026] [security2:error] [pid 5813:tid 5813] [client 36.70.237.80:53658] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.70.237.80 (+1 hits since last alert)\|barigby.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "barigby.com"] [uri "/xmlrpc.php"] [unique_id "ajefejpE0LOzfHXYDsWgGQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.233.19.194

🇬🇧 193.163.125.246

🇷🇺 185.94.111.1

🇭🇺 80.98.155.175

🇰🇷 59.8.7.253

🇵🇰 223.123.71.110

🇧🇪 198.235.24.232

🇺🇸 165.232.131.34

🇺🇸 162.216.149.152

🇧🇷 152.67.46.203

🇫🇮 147.185.133.17

🇮🇩 103.169.72.194

🇺🇸 91.230.168.120

🇮🇹 81.57.15.243

🇺🇸 75.3.252.21

🇺🇸 65.49.1.12

🇺🇸 3.231.95.64

🇳🇱 195.178.110.30

🇺🇸 173.255.210.89

🇺🇸 172.236.111.197