JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.68.55.150

36.68.55.150 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 30%: ?

30%

ISP	PT TELKOM INDONESIA
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Pekalongan, Central Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.68.55.150

Whois 36.68.55.150

IP Abuse Reports for 36.68.55.150:

This IP address has been reported a total of 10 times from 10 distinct sources. 36.68.55.150 was first reported on May 15th 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 rh24	2026-06-21 02:27:25 (2 days ago)	(xmlrpc_405) XMLRPC-Bot 405 36.68.55.150 (ID/Indonesia/-)	Hacking
🇹🇷 ycoskun41	2026-06-21 00:46:49 (2 days ago)	fail2ban: plesk-modsecurity jail on genckocaeli.com	Web App Attack
Anonymous	2026-06-21 00:16:49 (2 days ago)	[redacted] 36.68.55.150 - - [21/Jun/2026:02:16:06 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Wo ... show more [redacted] 36.68.55.150 - - [21/Jun/2026:02:16:06 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 36.68.55.150 - - [21/Jun/2026:02:16:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 36.68.55.150 - - [21/Jun/2026:02:16:27 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.1; http://site71004262.com" [redacted] 36.68.55.150 - - [21/Jun/2026:02:16:37 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 36.68.55.150 - - [21/Jun/2026:02:16:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" ... show less	Hacking Web App Attack
🇺🇸 TAY	2026-06-20 12:09:42 (2 days ago)	36.68.55.150 - - [20/Jun/2026:20:09:20 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5867 "-" "WordPress.co ... show more 36.68.55.150 - - [20/Jun/2026:20:09:20 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5867 "-" "WordPress.com; https://wordpress.com" 36.68.55.150 - - [20/Jun/2026:20:09:31 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5867 "-" "WordPress.com; https://wordpress.com" 36.68.55.150 - - [20/Jun/2026:20:09:41 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5867 "-" "Jetpack/12.1; WordPress/6.3; http://site98205949.com" ... show less	Brute-Force
Anonymous	2026-06-20 09:37:50 (2 days ago)	36.68.55.150 - - [20/Jun/2026:11:37:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 767 "-" "Jetpack by Wo ... show more 36.68.55.150 - - [20/Jun/2026:11:37:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 767 "-" "Jetpack by WordPress.com" 36.68.55.150 - - [20/Jun/2026:11:37:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 767 "-" "Jetpack by WordPress.com" 36.68.55.150 - - [20/Jun/2026:11:37:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 767 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 36.68.55.150 - - [20/Jun/2026:11:37:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 767 "-" "WordPress.com; https://wordpress.com" 36.68.55.150 - - [20/Jun/2026:11:37:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 767 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
🇩🇪 filstal.org	2026-02-26 19:23:54 (3 months ago)	Dovecot Brute-Force: Targeted User-Enumeration (Honey-Accounts)	Email Spam Brute-Force
🇮🇩 hermawan	2025-12-02 20:16:21 (6 months ago)	[Wed Dec 03 03:15:50.978088 2025] [security2:error] [pid 494915:tid 140358151710400] [client 36.68.5 ... show more [Wed Dec 03 03:15:50.978088 2025] [security2:error] [pid 494915:tid 140358151710400] [client 36.68.55.150:18978] ModSecurity: Access denied with code 403 (phase 2). Pattern match "." at ARGS_NAMES:catid. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-921-PROTOCOL-ATTACK.conf"] [line "730"] [id "921170"] [msg "deny 921170"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: c found within ARGS_NAMES:catid: catid request_line = GET /index.php/profil/arsip-artikel?catid=474&id=539:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-19-mei-25-mei-2015&start=80 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=474&id=539:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-19-mei-25-mei-2015&start=80 Request Basename =..."] [ver "OWASP_CRS/4.20.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag ... show less	Hacking Web App Attack
🇮🇩 RasyiidWho	2023-02-19 06:04:01 (3 years ago)	ip112.20 . 2023-02-19 13:04:00 91628 [Warning] Access denied for user 'root'@'36.68.55.150' (using p ... show more ip112.20 . 2023-02-19 13:04:00 91628 [Warning] Access denied for user 'root'@'36.68.55.150' (using password: NO) ... show less	DDoS Attack Port Scan Brute-Force Bad Web Bot Web App Attack SSH
🇫🇷 security.rdmc.fr	2021-05-15 12:06:06 (5 years ago)	Automatic report - Port Scan Attack	Port Scan
🇳🇱 EGP Abuse Dept	2021-05-15 10:31:06 (5 years ago)	Unauthorized connection to proxy port 8080	Port Scan Hacking

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 31.12.80.206

🇹🇼 198.235.24.48

🇯🇴 176.29.159.102

🇫🇮 147.185.133.140

🇺🇸 147.185.132.242

🇨🇳 101.126.64.76

🇫🇷 91.231.89.71

🇺🇸 54.215.162.225

🇻🇳 45.119.212.99

🇷🇺 178.65.40.237

🇫🇮 178.20.210.208

🇩🇪 172.70.246.88

🇺🇸 147.203.255.20

🇺🇸 137.184.13.144

🇵🇰 137.59.218.201

🇨🇳 122.114.8.57

🇨🇳 118.196.64.77

🇨🇳 117.14.51.58

🇨🇳 112.31.167.120

🇺🇸 109.105.209.7