JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.68.54.5

36.68.54.5 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 13%: ?

13%

ISP	PT TELKOM INDONESIA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Pekalongan, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.68.54.5

Whois 36.68.54.5

IP Abuse Reports for 36.68.54.5:

This IP address has been reported a total of 19 times from 14 distinct sources. 36.68.54.5 was first reported on February 20th 2021, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-05-31 18:03:25 (3 weeks ago)	[Mon Jun 01 01:03:21.203041 2026] [security2:error] [pid 1306588:tid 140573552391872] [client 36.68. ... show more [Mon Jun 01 01:03:21.203041 2026] [security2:error] [pid 1306588:tid 140573552391872] [client 36.68.54.5:11090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/profil/meteorologi/geofisika/555558584-poster-skala-gempa-mmi HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/geofisika/555558584-poster-skala-gempa-mmi"] [unique_id "ahx36eYbucu6uv3aIrV_rgAAVQI"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1306591] [6Qmu5KBJfOY] [ahx36eYbucu6uv3aIrV_rgAAVQI] keep_alive=[1] [2026-06-01 01:03:21.203047] [R:ahx36eYbucu6uv3aIrV_rgAAVQI] UA:'Mozilla/5.0 (Linux; Android 8.0.0 ... show less	Email Spam Hacking
🇳🇵 radheykrishna.com.np	2026-05-04 16:26:48 (1 month ago)	May 4 22:11:47 kernel: [1401740.040341] [UFW BLOCK] IN=ens160 OUT= SRC=36.68.54.5 LEN=60 TOS=0x00 P ... show more May 4 22:11:47 kernel: [1401740.040341] [UFW BLOCK] IN=ens160 OUT= SRC=36.68.54.5 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=8403 DF PROTO=TCP SPT=5546 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 zupan	2026-05-04 15:21:20 (1 month ago)	Blocked by UFW on vps [23/tcp] \| SPT: 10697 \| TTL: 52 \| LEN: 60 \| TOS: 0x00 • Reported by: github.co ... show more Blocked by UFW on vps [23/tcp] \| SPT: 10697 \| TTL: 52 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇷🇸 Scan	2025-09-30 12:01:17 (8 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇮🇳 Mr.Singh	2025-09-30 06:30:39 (8 months ago)	NFT blocked 36.68.54.5 after 3 rejections on 30-Sep-2025.	Port Scan Brute-Force
🇷🇸 Scan	2025-09-29 02:31:12 (8 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Scan	2025-09-28 01:30:01 (8 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇮🇩 BPS-StatisticsIndonesia	2025-01-11 01:45:30 (1 year ago)	TinyMCE Scan Activities	Web App Attack
🇧🇷 LuizNeto	2025-01-10 22:41:00 (1 year ago)	PHPUnit Remote Code Execution (CVE-2017-9841)	Web App Attack
🇮🇩 penjaga BRIN	2025-01-10 22:04:20 (1 year ago)	Multiple web server 400 error codes from same source ip.-111	Web App Attack
Anonymous	2024-09-20 15:45:54 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇿🇦 IrisFlower	2022-12-06 20:20:10 (3 years ago)	Unauthorized connection attempt detected from IP address 36.68.54.5 to port 8080 [J]	Port Scan Hacking
🇺🇸 MPL	2022-12-01 14:58:19 (3 years ago)	tcp/23	Port Scan
🇿🇦 IrisFlower	2022-12-01 08:36:52 (3 years ago)	Unauthorized connection attempt detected from IP address 36.68.54.5 to port 8080 [J]	Port Scan Hacking
Anonymous	2021-06-05 14:03:57 (5 years ago)	DDoS Attack to our network	DDoS Attack Web Spam

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.90.187.23

🇨🇳 110.249.202.201

🇨🇳 110.249.202.2

🇺🇸 66.132.224.236

🇺🇸 4.246.117.137

🇷🇴 2.57.121.25

🇳🇱 204.76.203.30

🇱🇻 185.113.139.84

🇨🇦 168.138.90.7

🇩🇪 165.227.159.13

🇨🇳 110.249.202.190

🇫🇷 85.217.140.19

🇧🇬 79.124.62.134

🇧🇬 79.124.59.78

🇱🇹 62.60.130.31

🇳🇱 45.140.222.123

🇬🇧 195.206.182.219

🇩🇪 194.88.98.86

🇸🇬 165.154.29.144

🇹🇬 156.38.73.89