JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.84.113.30

36.84.113.30 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 100%: ?

100%

ISP	PT TELKOM INDONESIA STO Gambir 3rd Floor Jl. Medan Merdeka Selatan No. 12 Jakarta 10110
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.net.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.84.113.30

Whois 36.84.113.30

IP Abuse Reports for 36.84.113.30:

This IP address has been reported a total of 36 times from 23 distinct sources. 36.84.113.30 was first reported on November 17th 2025, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Peregrine	2026-06-04 03:10:23 (16 hours ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 36.84.113.30 - - [02/Jun/2026:14:07:01 -0300] "GET /.gi ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 36.84.113.30 - - [02/Jun/2026:14:07:01 -0300] "GET /.git/ HTTP/1.1" 404 414 show less	Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-06-03 22:03:04 (21 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-02. show less	Web App Attack SSH Hacking
🇫🇷 SpaceHost-Server	2026-06-02 22:33:51 (1 day ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-02 22:01:01 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-02	Web App Attack SSH Hacking
🇫🇷 Baking333	2026-06-02 19:41:34 (1 day ago)	[redacted] 36.84.113.30 - - [02/Jun/2026:20:41:32 +0100] "GET /.git/ HTTP/1.1" 301 4324 0/282 "-" "M ... show more [redacted] 36.84.113.30 - - [02/Jun/2026:20:41:32 +0100] "GET /.git/ HTTP/1.1" 301 4324 0/282 "-" "Mozilla/5.0 (X11; Linux x86_64)" [redacted] 36.84.113.30 - - [02/Jun/2026:20:41:33 +0100] "GET /.git HTTP/1.1" 302 5268 0/72759 "https://[redacted]/.git/" "Mozilla/5.0 (X11; Linux x86_64)" show less	Bad Web Bot Web App Attack
🇩🇪 raph	2026-06-02 18:46:19 (2 days ago)	[DOT FILES] crawler .env, .git, .config, etc.	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 18:01:21 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 36.84.113.30 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 36.84.113.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 14:01:09.007985 2026] [security2:error] [pid 9782:tid 9782] [client 36.84.113.30:53784] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3dsportschannel.com"] [uri "/.git/"] [unique_id "ah8aZYlSCxp2HkBHE-aEwwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 17:24:16 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 36.84.113.30 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 36.84.113.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 13:24:05.650371 2026] [security2:error] [pid 25322:tid 25322] [client 36.84.113.30:59196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "azfilmguild.org"] [uri "/.git/"] [unique_id "ah8RtZncBJouEa943EeZ-AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 cwytech	2026-06-02 17:19:51 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wordpress-geofence-sus.	Bad Web Bot Web App Attack
🇺🇸 juguemosalacarioca.com	2026-06-02 17:17:07 (2 days ago)	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	Web App Attack
🇫🇮 6kilowatti	2026-06-02 17:07:11 (2 days ago)	36.84.113.30 - - [02/Jun/2026:20:07:10 +0300] "GET /.git/ HTTP/1.1" 404 12994 "-" "Mozilla/5.0 (X11; ... show more 36.84.113.30 - - [02/Jun/2026:20:07:10 +0300] "GET /.git/ HTTP/1.1" 404 12994 "-" "Mozilla/5.0 (X11; Linux x86_64)" ... show less	Web App Attack
🇧🇷 Peregrine	2026-06-02 17:07:07 (2 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: - 36.84.113.30 - - [02/Jun/2026:14:07:01 -0300] "GET /.gi ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: - 36.84.113.30 - - [02/Jun/2026:14:07:01 -0300] "GET /.git/ HTTP/1.1" 404 414 show less	Bad Web Bot
🇩🇪 Martin Lundstrom	2026-06-02 15:58:27 (2 days ago)	https://www.eagleeye-intelligence.com — WordPress attack. Automatically detected and blocked.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 15:18:38 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 36.84.113.30 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 36.84.113.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 11:18:28.135149 2026] [security2:error] [pid 27204:tid 27204] [client 36.84.113.30:57013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "proprocessor.com"] [uri "/.git/"] [unique_id "ah70RH0gP_SEDoGGTfkafwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BIV	2026-06-02 15:17:27 (2 days ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 81. Automated tiered ( ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 81. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇪🇸 139.47.25.61

🇭🇰 47.83.241.136

🇨🇦 192.95.10.204

🇺🇸 168.62.199.219

🇨🇳 114.103.56.95

🇭🇰 103.210.237.224

🇳🇱 88.151.32.194

🇳🇱 45.148.10.151

🇺🇸 43.162.112.238

🇪🇸 172.233.117.97

🇨🇳 120.230.23.157

🇨🇳 101.96.197.182

🇷🇴 80.94.92.182

🇺🇸 74.208.177.56

🇮🇳 45.40.57.172

🇧🇷 20.197.238.250

🇮🇳 4.247.141.61

🇷🇴 2.57.122.177

🇫🇷 194.163.174.214