JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.85.216.240

36.85.216.240 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 47%: ?

47%

ISP	PT TELKOM INDONESIA STO Gambir 3rd Floor Jl. Medan Merdeka Selatan No. 12 Jakarta 10110
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.net.id
Country	🇮🇩 Indonesia
City	Manado, North Sulawesi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.85.216.240

Whois 36.85.216.240

IP Abuse Reports for 36.85.216.240:

This IP address has been reported a total of 14 times from 13 distinct sources. 36.85.216.240 was first reported on December 13th 2020, and the most recent report was 47 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-24 07:52:35 (47 minutes ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 10:32:53 (22 hours ago)	(mod_security) mod_security (id:240335) triggered by 36.85.216.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 36.85.216.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 06:32:38.064768 2026] [security2:error] [pid 13906:tid 13906] [client 36.85.216.240:26027] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 36.85.216.240 (+1 hits since last alert)\|hydrusdetergents.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hydrusdetergents.com"] [uri "/xmlrpc.php"] [unique_id "ajpgxmeqoq-Frg77va6qPAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-23 10:29:37 (22 hours ago)	Blocked by CSF 13 firewall - Rule: XMLRPC ID/Indonesia/-	Web App Attack
🇺🇸 WeekendWeb	2026-06-22 11:09:55 (1 day ago)	Wordpress Vunerability attack	Web App Attack
🇫🇷 masterguru	2026-06-22 08:17:39 (2 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-22 06:37:18 (2 days ago)	[ns31.kdns.gr] httpd-xmlrpc-post: sites=bedeniti.gr; logs=/var/log/httpd/domains/bedeniti.gr.log; sa ... show more [ns31.kdns.gr] httpd-xmlrpc-post: sites=bedeniti.gr; logs=/var/log/httpd/domains/bedeniti.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇩🇪 konseptit	2026-06-22 06:18:31 (2 days ago)	(wordpress) Failed wordpress login from 36.85.216.240 (ID/Indonesia/-)	Brute-Force
🇳🇱 EGP Abuse Dept	2025-11-20 12:46:49 (7 months ago)	Unauthorized connection to Telnet port 23	Port Scan Hacking
Anonymous	2025-11-17 14:05:25 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇦🇷 NotMarco	2022-12-30 22:04:59 (3 years ago)	Unauthorized connection attempt from 36.85.216.240 to port 3306/TCP	Port Scan Hacking
🇿🇦 IrisFlower	2022-08-19 00:30:08 (3 years ago)	Unauthorized connection attempt detected from IP address 36.85.216.240 to port 80 [J]	Port Scan Hacking
🇳🇱 EGP Abuse Dept	2022-08-15 16:31:48 (3 years ago)	Unauthorized connection to Telnet port 23	Port Scan Hacking
🇩🇪 ps-center	2022-08-15 08:16:24 (3 years ago)	C2-W: TCP-Scanner. Port: 23	Port Scan
🇫🇷 security.rdmc.fr	2020-12-13 18:58:00 (5 years ago)	Automatic report - Port Scan Attack	Port Scan

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 104.207.53.144

🇫🇷 85.217.140.29

🇭🇰 199.45.154.123

🇫🇷 185.182.186.243

🇳🇱 176.65.132.22

🇮🇳 125.20.210.182

🇳🇱 45.142.193.53

🇭🇰 42.200.60.186

🇨🇳 36.111.82.67

🇮🇳 2406:7400:ff03:c7c9:381b:32f8:76cd:c339

🇪🇨 200.107.24.118

🇩🇪 194.187.176.88

🇸🇬 168.144.42.72

🇭🇰 150.5.154.160

🇺🇸 148.153.193.63

🇰🇷 125.137.115.145

🇮🇩 103.186.31.66

🇭🇰 101.36.122.186

🇵🇹 85.243.135.113

🇮🇹 83.224.186.227