JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.81.237.254

36.81.237.254 was found in our database!

This IP was reported 105 times. Confidence of Abuse is 100%: ?

100%

ISP	PT TELKOM INDONESIA Menara Multimedia Lt.7 Jl. Kebon sirih No.12 JAKARTA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Wanaraja, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.81.237.254

Whois 36.81.237.254

IP Abuse Reports for 36.81.237.254:

This IP address has been reported a total of 105 times from 72 distinct sources. 36.81.237.254 was first reported on July 26th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇻🇪 LUISE	2026-06-01 00:25:23 (1 week ago)	Vulnerability scanning for Web/phpMyAdmin files on ULA server 72-23.	Hacking Bad Web Bot
Anonymous	2026-05-31 11:50:18 (1 week ago)	Web App Attack	Brute-Force Exploited Host Web App Attack
Anonymous	2026-05-31 11:18:29 (1 week ago)	Attempt to scan vulnerabilities	Hacking
🇬🇧 Axel	2026-05-31 09:50:02 (1 week ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env/.env.ba ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env/.env.bak Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇸🇬 serverutama	2026-05-31 06:50:01 (1 week ago)	Nginx scanner: 36.81.237.254 - - [31/May/2026:13:48:11 +0700] "GET /phpinfo.php HTTP/1.1" 301 162 "- ... show more Nginx scanner: 36.81.237.254 - - [31/May/2026:13:48:11 +0700] "GET /phpinfo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" "-" 36.81.237.254 - - [31/May/2026:13:48:11 +0700] "GET /phpinfo.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" "-" show less	Web App Attack Bad Web Bot
🇩🇪 todix	2026-05-31 06:15:56 (1 week ago)	WebAttack or semilar from 36.81.237.254	Web App Attack
🇧🇪 sid3windr	2026-05-31 05:14:47 (1 week ago)	GET /.env/.env.bak (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇬🇧 openstrike.co.uk	2026-05-31 05:13:01 (1 week ago)	5 attacks on password grabbing URLs, env grabbing URLs, PHP URLs: GET /.aws/credentials HTTP/1.1 GET ... show more 5 attacks on password grabbing URLs, env grabbing URLs, PHP URLs: GET /.aws/credentials HTTP/1.1 GET /.env/.env.bak HTTP/1.1 GET /index.php HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 todix	2026-05-31 05:10:57 (1 week ago)	Web App Attack Exploid from 36.81.237.254	Web App Attack
🇩🇪 raph	2026-05-31 00:17:43 (1 week ago)	[PROTECTED PATHS] crawler credentials.ini, aws.ini, aws.yml, etc.	Bad Web Bot Web App Attack
🇫🇷 tecnicorioja	2026-05-30 22:01:11 (1 week ago)	(Mod_security)	Web App Attack Brute-Force Bad Web Bot
🇭🇷 IgorS.zg.hr	2026-05-30 16:57:13 (1 week ago)	Web application attack detected by fail2ban	Hacking Web App Attack
🇺🇸 LSPCCU	2026-05-30 11:07:01 (1 week ago)	TSEC Honeypot Network report. Threat score: 100/100. Categories: Port Scan, Hacking, Brute-Force, We ... show more TSEC Honeypot Network report. Threat score: 100/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: cowrie, ssh-telnet. Context: Attacker IP 36. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇩🇪 Aufpasser_1973	2026-05-30 10:09:24 (1 week ago)	Fail2Ban: Attack from 36.81.237.254 with <uri>	Port Scan Bad Web Bot SSH
🇬🇧 consul.to	2026-05-30 10:04:37 (1 week ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 105 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 14.177.234.24

🇦🇷 190.181.101.182

🇲🇽 187.212.10.12

🇺🇸 172.253.218.221

🇨🇳 111.26.67.36

🇱🇹 77.90.185.238

🇨🇳 39.144.229.133

🇧🇷 177.159.150.111

🇨🇳 117.62.22.127

🇺🇸 107.167.34.125

🇺🇸 104.168.133.168

🇺🇸 71.229.1.186

🇺🇸 43.130.16.140

🇦🇪 5.38.44.123

🇨🇳 218.29.196.162

🇪🇹 196.189.51.64

🇮🇳 182.95.217.202

🇸🇪 146.247.233.62

🇳🇱 85.11.167.49

🇨🇳 58.247.139.54