JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.85.108.214

36.85.108.214 was found in our database!

This IP was reported 68 times. Confidence of Abuse is 0%: ?

ISP	PT TELKOM INDONESIA STO Gambir 3rd Floor Jl. Medan Merdeka Selatan No. 12 Jakarta 10110
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.net.id
Country	🇮🇩 Indonesia
City	Langsa, Aceh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.85.108.214

Whois 36.85.108.214

IP Abuse Reports for 36.85.108.214:

This IP address has been reported a total of 68 times from 39 distinct sources. 36.85.108.214 was first reported on December 6th 2022, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇰🇪 Oste	2023-05-06 23:58:23 (3 years ago)	sshd: Attempt to login using a non-existent user	Brute-Force SSH
🇨🇳 ThreatBook.io	2023-05-02 03:03:50 (3 years ago)	ThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/36.85.108.214	SSH
🇺🇸 bigscoots.com	2023-05-01 19:44:58 (3 years ago)	(sshd) Failed SSH login from 36.85.108.214 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: ; Dire ... show more (sshd) Failed SSH login from 36.85.108.214 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: May 1 14:37:26 13480 sshd[23626]: Invalid user steam from 36.85.108.214 port 19121 May 1 14:37:28 13480 sshd[23626]: Failed password for invalid user steam from 36.85.108.214 port 19121 ssh2 May 1 14:43:11 13480 sshd[24068]: Invalid user xxx from 36.85.108.214 port 26595 May 1 14:43:13 13480 sshd[24068]: Failed password for invalid user xxx from 36.85.108.214 port 26595 ssh2 May 1 14:44:52 13480 sshd[24136]: Invalid user spooler from 36.85.108.214 port 28957 show less	Brute-Force SSH
🇩🇪 TayDex	2023-05-01 18:31:13 (3 years ago)	May 1 20:24:27 DiscordBot sshd[2408582]: Disconnected from authenticating user root 36.85.108.214 p ... show more May 1 20:24:27 DiscordBot sshd[2408582]: Disconnected from authenticating user root 36.85.108.214 port 1408 [preauth] May 1 20:29:06 DiscordBot sshd[2421188]: Invalid user ubuntu from 36.85.108.214 port 13838 May 1 20:29:06 DiscordBot sshd[2421188]: Disconnected from invalid user ubuntu 36.85.108.214 port 13838 [preauth] May 1 20:31:12 DiscordBot sshd[2426740]: Invalid user kt from 36.85.108.214 port 11082 ... show less	Brute-Force SSH
🇧🇪 sid3windr	2023-05-01 18:28:07 (3 years ago)	sshd[7080]: Failed password for root from 36.85.108.214 port 28570 ssh2 sshd[7536]: pam_unix(sshd:au ... show more sshd[7080]: Failed password for root from 36.85.108.214 port 28570 ssh2 sshd[7536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.85.108.214 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2023-05-01 17:27:40 (3 years ago)	36.85.108.214 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more 36.85.108.214 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 1 12:27:16 14287 sshd[28101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.210.165.26 user=root May 1 12:27:18 14287 sshd[28101]: Failed password for root from 192.210.165.26 port 54168 ssh2 May 1 11:30:24 14287 sshd[24073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.250.132.55 user=root May 1 12:24:12 14287 sshd[27913]: Failed password for root from 36.85.108.214 port 15475 ssh2 May 1 12:24:10 14287 sshd[27913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.85.108.214 user=root IP Addresses Blocked: 192.210.165.26 (US/United States/192-210-165-26-host.colocrossing.com) 47.250.132.55 (MY/Malaysia/-) show less	Brute-Force SSH
Anonymous	2023-05-01 16:17:05 (3 years ago)	2023-05-01T18:10:21.453751v22019037947384217 sshd[23773]: Disconnected from 36.85.108.214 port 12824 ... show more 2023-05-01T18:10:21.453751v22019037947384217 sshd[23773]: Disconnected from 36.85.108.214 port 12824 [preauth] 2023-05-01T18:14:58.609101v22019037947384217 sshd[23855]: Disconnected from 36.85.108.214 port 1716 [preauth] 2023-05-01T18:17:04.707810v22019037947384217 sshd[23882]: Disconnected from 36.85.108.214 port 21541 [preauth] ... show less	Brute-Force SSH
🇩🇪 koester-systems.eu	2023-05-01 16:16:45 (3 years ago)		Brute-Force SSH
🇨🇿 ICT KnTl	2023-05-01 16:16:04 (3 years ago)	May 1 18:06:35 proxy sshd[775621]: User root from 36.85.108.214 not allowed because not listed in A ... show more May 1 18:06:35 proxy sshd[775621]: User root from 36.85.108.214 not allowed because not listed in AllowUsers May 1 18:13:56 proxy sshd[775703]: User root from 36.85.108.214 not allowed because not listed in AllowUsers May 1 18:16:03 proxy sshd[775733]: User root from 36.85.108.214 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇦🇹 ranklord	2023-05-01 15:08:19 (3 years ago)	F2B blocked SSH BF	Brute-Force SSH
🇺🇸 bigscoots.com	2023-05-01 13:58:56 (3 years ago)	36.85.108.214 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more 36.85.108.214 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 1 08:55:32 21732 sshd[18752]: Failed password for root from 139.59.33.52 port 55512 ssh2 May 1 08:56:19 21732 sshd[18870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.85.108.214 user=root May 1 08:56:21 21732 sshd[18870]: Failed password for root from 36.85.108.214 port 14231 ssh2 May 1 08:58:34 21732 sshd[19053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.85.108.214 user=root May 1 08:58:36 21732 sshd[19053]: Failed password for root from 36.85.108.214 port 13935 ssh2 IP Addresses Blocked: 139.59.33.52 (IN/India/-) show less	Brute-Force SSH
🇺🇸 bigscoots.com	2023-05-01 12:47:16 (3 years ago)	36.85.108.214 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more 36.85.108.214 (ID/Indonesia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 1 06:57:16 14855 sshd[29762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.190.65.27 user=root May 1 06:57:19 14855 sshd[29762]: Failed password for root from 146.190.65.27 port 34490 ssh2 May 1 06:56:33 14855 sshd[29699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.154.162.100 user=root May 1 06:56:35 14855 sshd[29699]: Failed password for root from 43.154.162.100 port 51824 ssh2 May 1 07:46:54 14855 sshd[904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.85.108.214 user=root IP Addresses Blocked: 146.190.65.27 (US/United States/-) 43.154.162.100 (HK/Hong Kong/-) show less	Brute-Force SSH
🇪🇸 tg_de	2023-05-01 12:41:33 (3 years ago)	29 attempts since 01.05.2023 13:31:08 CEST - last one: May 1 14:41:33 beta sshd[2846556]: Invalid u ... show more 29 attempts since 01.05.2023 13:31:08 CEST - last one: May 1 14:41:33 beta sshd[2846556]: Invalid user root1 from 36.85.108.214 port 5119 show less	Brute-Force SSH
🇳🇱 bitosis	2023-05-01 12:17:55 (3 years ago)	May 1 14:13:17 jumphost sshd[31159]: User root from 36.85.108.214 not allowed because none of user' ... show more May 1 14:13:17 jumphost sshd[31159]: User root from 36.85.108.214 not allowed because none of user's groups are listed in AllowGroups May 1 14:15:37 jumphost sshd[31222]: User root from 36.85.108.214 not allowed because none of user's groups are listed in AllowGroups May 1 14:17:54 jumphost sshd[31264]: User root from 36.85.108.214 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH
🇳🇱 bitosis	2023-05-01 11:42:13 (3 years ago)	May 1 13:37:26 jumphost sshd[30054]: User root from 36.85.108.214 not allowed because none of user' ... show more May 1 13:37:26 jumphost sshd[30054]: User root from 36.85.108.214 not allowed because none of user's groups are listed in AllowGroups May 1 13:40:06 jumphost sshd[30149]: User root from 36.85.108.214 not allowed because none of user's groups are listed in AllowGroups May 1 13:42:11 jumphost sshd[30240]: User root from 36.85.108.214 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH

Showing 1 to 15 of 68 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 175.6.54.21

🇰🇭 110.235.246.64

🇿🇦 105.213.148.214

🇷🇺 95.215.108.47

🇦🇷 45.162.21.149

🇭🇰 45.142.154.98

🇰🇷 203.245.41.180

🇧🇷 177.89.26.44

🇺🇸 104.28.152.173

🇻🇳 103.75.183.177

🇸🇬 95.111.199.201

🇳🇱 45.198.224.92

🇬🇧 35.203.210.109

🇺🇸 17.253.31.135

🇺🇸 13.68.214.34

🇩🇪 2001:880:0:12::350

🇳🇱 185.242.226.91

🇮🇳 182.95.187.98

🇺🇸 118.26.109.7

🇨🇳 113.221.96.243