JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.83.212.175

36.83.212.175 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 50%: ?

50%

ISP	PT TELKOM INDONESIA Menara Multimedia Lt.7 Jl. Kebon sirih No.12 JAKARTA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Ambon, Maluku

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.83.212.175

Whois 36.83.212.175

IP Abuse Reports for 36.83.212.175:

This IP address has been reported a total of 13 times from 9 distinct sources. 36.83.212.175 was first reported on June 14th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 09:14:14 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 05:14:02.405674 2026] [security2:error] [pid 26213:tid 26213] [client 36.83.212.175:49886] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.212.175 (+1 hits since last alert)\|holgerfeld.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "holgerfeld.com"] [uri "/xmlrpc.php"] [unique_id "ajj82r4f9LqqhuR43dNQLAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-22 09:12:24 (1 week ago)		Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-22 09:03:55 (1 week ago)	[MonJun2211:03:43.8751792026][security2:error][pid1827428:tid1827528][client36.83.212.175:0]ModSecur ... show more [MonJun2211:03:43.8751792026][security2:error][pid1827428:tid1827528][client36.83.212.175:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"spicydesign.ch\"][uri\"/xmlrpc.php\"][unique_id\"ajj6b2aBXNy9K58Gn-WfyAAAAIw\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-22 07:29:49 (1 week ago)	(wordpress) Failed wordpress login from 36.83.212.175 (ID/Indonesia/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 05:24:48 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 01:24:31.217380 2026] [security2:error] [pid 25022:tid 25022] [client 36.83.212.175:61142] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.212.175 (+1 hits since last alert)\|healthmarkcounseling.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "healthmarkcounseling.com"] [uri "/xmlrpc.php"] [unique_id "ajjHD6fjU16ocmyRFsOiMwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-22 01:37:12 (1 week ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-22 00:38:11 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 20:37:56.321407 2026] [security2:error] [pid 10114:tid 10114] [client 36.83.212.175:62024] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.212.175 (+1 hits since last alert)\|lightningbug.farm\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lightningbug.farm"] [uri "/xmlrpc.php"] [unique_id "ajiD5Cec52QL3hQPYYP_gwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Kenshin869	2026-06-19 05:34:08 (1 week ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-19 02:23:24 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 22:23:06.520071 2026] [security2:error] [pid 5027:tid 5027] [client 36.83.212.175:62047] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.212.175 (+1 hits since last alert)\|stoneybluff.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stoneybluff.com"] [uri "/xmlrpc.php"] [unique_id "ajSoCuHAaY6QmZLjgFNyRAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-18 04:51:38 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-18 00:23:44 (1 week ago)	[redacted] 36.83.212.175 - - [18/Jun/2026:02:23:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 36.83.212.175 - - [18/Jun/2026:02:23:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.4; http://site71540637.com" [redacted] 36.83.212.175 - - [18/Jun/2026:02:23:11 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 36.83.212.175 - - [18/Jun/2026:02:23:21 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)" [redacted] 36.83.212.175 - - [18/Jun/2026:02:23:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" [redacted] 36.83.212.175 - - [18/Jun/2026:02:23:42 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.2; http://site72687713.com" ... show less	Hacking Web App Attack
🇧🇪 cmbplf	2026-06-15 02:33:19 (2 weeks ago)	4.176 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-14 23:48:27 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.83.212.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 19:48:15.798020 2026] [security2:error] [pid 7869:tid 7869] [client 36.83.212.175:59569] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.83.212.175 (+1 hits since last alert)\|bosdkbook.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bosdkbook.com"] [uri "/xmlrpc.php"] [unique_id "ai89vyJRqYLH0wMY_EllyAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.255.41.183

🇺🇸 98.94.12.43

🇱🇹 81.30.98.62

🇨🇦 35.215.56.144

🇧🇷 177.84.249.174

🇮🇳 59.183.119.89

🇳🇱 193.176.31.155

🇻🇪 190.89.29.23

🇧🇷 160.238.110.243

🇮🇳 117.251.96.51

🇻🇳 113.160.142.119

🇮🇩 103.253.244.145

🇮🇳 103.189.217.194

🇱🇹 81.30.98.49

🇺🇦 31.42.184.185

🇸🇬 2a09:bac1:6540:8::3c1:3c

🇧🇷 205.210.31.183

🇳🇱 195.178.110.28

🇬🇧 195.96.139.181

🇮🇳 182.19.35.57