AbuseIPDB » 36.85.217.252
36.85.217.252 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 15% : ?
ISP
PT TELKOM INDONESIA STO Gambir 3rd Floor Jl. Medan Merdeka Selatan No. 12 Jakarta 10110
Usage Type
Fixed Line ISP
ASN
AS7713
Domain Name
telkom.net.id
Country
๐ฎ๐ฉ
Indonesia
City
Manado, North Sulawesi
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 36.85.217.252 :
This IP address has been reported a total of
7
times from
6 distinct
sources.
36.85.217.252 was first reported on
May 20th 2021 , and the most recent report was
2 days ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
stechusa
2026-07-17 13:04:22
(2 days ago)
[Askari] | Behavior: HTTP/1.1 over TLS, Outdated browser, Concurrent page load during attack, Slow-r ...
show more
[Askari] | Behavior: HTTP/1.1 over TLS, Outdated browser, Concurrent page load during attack, Slow-read attack, Targeting specific pages
show less
Bad Web Bot
DDoS Attack
๐บ๐ธ
stechusa
2026-07-17 13:04:22
(2 days ago)
ELEVATED_THREAT | 475 IPs targeting /brand.html | URL template shared by 172 IPs: /brand.html?bulb_s ...
show more
ELEVATED_THREAT | 475 IPs targeting /brand.html | URL template shared by 172 IPs: /brand.html?bulb_shape_type=*&bulb_shape=*&bulb_type=*&mode=list&p=* | Facet request during elevated threat (facet_ratio=0.98, unique_ips=673)
show less
Bad Web Bot
DDoS Attack
๐บ๐ธ
kosada.com
2026-07-14 04:28:03
(5 days ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
sumnone
2026-01-01 13:05:57
(6 months ago)
Port probing on unauthorized port 8080
Port Scan
Hacking
Exploited Host
๐ฎ๐ฉ
hermawan
2025-10-05 06:29:33
(9 months ago)
[Sun Oct 05 13:27:34.977341 2025] [security2:error] [pid 1851378:tid 140074395002560] [client 36.85. ...
show more
[Sun Oct 05 13:27:34.977341 2025] [security2:error] [pid 1851378:tid 140074395002560] [client 36.85.217.252:29428] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "164"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-malang.info request_line = GET /index.php/profil/arsip-artikel?catid=472&id=82%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan&start=60 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=472&id=82%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan&start=60 Request Basename = arsip-artikel"] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aOIP1osIb60x4tSu4JzQfgABQRg"] [staklim-malang.info] [stakl
...
show less
Hacking
Web App Attack
๐ฟ๐ฆ
IrisFlower
2022-11-23 02:40:38
(3 years ago)
Unauthorized connection attempt detected from IP address 36.85.217.252 to port 23 [J]
Port Scan
Hacking
๐น๐ผ
kk_it_man
2021-05-20 22:13:10
(5 years ago)
ET SCAN Suspicious inbound to MSSQL port 1433
Port Scan
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: