JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.83.132.158

36.83.132.158 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 68%: ?

68%

ISP	PT TELKOM INDONESIA Menara Multimedia Lt.7 Jl. Kebon sirih No.12 JAKARTA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Cirebon, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.83.132.158

Whois 36.83.132.158

IP Abuse Reports for 36.83.132.158:

This IP address has been reported a total of 13 times from 12 distinct sources. 36.83.132.158 was first reported on November 15th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 03:00:32 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 36.83.132.158 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.132.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:00:15.826581 2026] [security2:error] [pid 17465:tid 17465] [client 36.83.132.158:62057] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.132.158 (+1 hits since last alert)\|circleinthesquare.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "circleinthesquare.org"] [uri "/xmlrpc.php"] [unique_id "ai9qv1dAkfENfcZKPNVJugAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:58:42 (9 hours ago)	(mod_security) mod_security (id:240335) triggered by 36.83.132.158 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.132.158 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:58:29.167304 2026] [security2:error] [pid 1779:tid 1779] [client 36.83.132.158:51676] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.132.158 (+1 hits since last alert)\|adonamusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "adonamusic.com"] [uri "/xmlrpc.php"] [unique_id "ai9cRawv6uW99R4k-irM5QAAADg"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Birdo	2026-06-15 01:56:57 (9 hours ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
Anonymous	2026-06-14 10:10:00 (1 day ago)	Unauthorized access (tcp/445/smb)	Port Scan
🇧🇷 Host One	2026-06-14 09:40:04 (1 day ago)	Detected by T-Pot honeypot: behavioral attack detected	Port Scan SSH
Anonymous	2026-06-14 09:10:35 (1 day ago)	Unauthorized connection to SMB port 445	Port Scan
🇺🇸 NetGuard	2026-06-14 02:39:36 (1 day ago)	#honeypot #netguard247 #dionaea #networkexploit Captured by NetGuard 24/7 T-Pot honeypot (netguard24 ... show more #honeypot #netguard247 #dionaea #networkexploit Captured by NetGuard 24/7 T-Pot honeypot (netguard24-7.com). Timestamp: 2026-06-14T02:39:36.615+00:00 Attacker IP: 36.83.132.158 \| Port: 445 \| Country: Indonesia Honeypot: dionaea \| Attack: network_exploit Source: NetGuard 24/7 (netguard24-7.com) \| PhantomGrid Defense show less	Hacking SQL Injection Web App Attack
🇳🇱 Yachiyo Runami	2026-06-13 03:23:19 (2 days ago)	Port Scan on Honeypot \| Ports: 445/SMB \| Proto: TCP(1) \| Flags: all SYN \| TTL: 247 \| Len: 52B \| Win: ... show more Port Scan on Honeypot \| Ports: 445/SMB \| Proto: TCP(1) \| Flags: all SYN \| TTL: 247 \| Len: 52B \| Win: 8192(1) \| F2B/ufw-honeypot@2026-06-13T03:23:18Z show less	Port Scan Hacking
🇩🇪 kexol	2026-06-12 08:49:33 (3 days ago)	445 port scanned	Port Scan
🇩🇪 check-the-sum.fr	2026-06-11 09:53:58 (4 days ago)	Port Scanning	Port Scan
🇩🇪 IP Analyzer	2026-06-11 09:30:19 (4 days ago)	Unauthorized connection attempt from IP address 36.83.132.158 on Port 445(SMB)	Port Scan
🇫🇷 zulzeen	2026-06-11 04:16:48 (4 days ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇫🇮 Shaik Sai Meera	2025-11-15 18:55:11 (6 months ago)	IM360 WAF: Block Drupal/Joomla spammers	Brute-Force Bad Web Bot

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.216.214.42

🇮🇩 182.10.130.201

🇻🇳 171.225.248.177

🇺🇸 98.82.214.73

🇫🇷 51.15.149.97

🇳🇵 49.244.174.166

🇻🇳 42.112.229.181

🇪🇸 2.136.5.164

🇸🇬 159.223.32.146

🇷🇴 92.118.39.62

🇲🇩 91.211.49.62

🇮🇷 78.39.48.166

🇺🇸 3.139.236.75

🇨🇳 183.131.109.166

🇻🇳 171.231.181.15

🇹🇭 118.194.251.101

🇨🇳 114.220.238.224

🇫🇷 88.142.46.185

🇦🇹 86.56.243.203

🇮🇳 59.95.247.158