JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.92.109.147

36.92.109.147 was found in our database!

This IP was reported 4,261 times. Confidence of Abuse is 3%: ?

ISP	PT Telekomunikasi Indonesia
Usage Type	Fixed Line ISP
ASN	AS7713
Domain Name	telkom.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.92.109.147

Whois 36.92.109.147

IP Abuse Reports for 36.92.109.147:

This IP address has been reported a total of 4,261 times from 554 distinct sources. 36.92.109.147 was first reported on November 21st 2020, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-04 17:38:35 (4 days ago)	ICS Labs identified 36.92.109.147 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
Anonymous	2022-12-06 19:24:58 (3 years ago)	fail2ban detected bruce force on ssh iptables	Brute-Force SSH
Anonymous	2022-12-06 19:09:54 (3 years ago)	fail2ban detected brute force on sshd	Brute-Force SSH
Anonymous	2022-10-04 18:51:13 (3 years ago)	fail2ban detected brute force on sshd	Brute-Force SSH
🇺🇸 BridgeBurner	2022-08-04 16:12:17 (3 years ago)	SSH bruteforce	SSH
🇬🇧 lgirvin	2022-07-26 01:38:47 (3 years ago)	Jul 26 06:38:05 mercury wordpress(lukegirvin.co.uk)[2129173]: XML-RPC authentication failure for luk ... show more Jul 26 06:38:05 mercury wordpress(lukegirvin.co.uk)[2129173]: XML-RPC authentication failure for luke from 36.92.109.147 ... show less	Hacking Web App Attack
🇩🇪 Hobby Bob	2022-06-28 23:13:52 (3 years ago)	Jun 29 05:13:52 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=, rip=36.9 ... show more Jun 29 05:13:52 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=, rip=36.92.109.147, lip=X.X.X.X session= show less	Port Scan Hacking
🇳🇱 EGP Abuse Dept	2022-06-28 22:28:40 (3 years ago)	Unauthorized connection to IMAP port 993	Port Scan Hacking
🇺🇸 Blue Pumpkin	2022-05-04 11:11:05 (4 years ago)	[Wed May 04 15:09:54.584141 2022] [:error] [pid 2983298] [client 36.92.109.147:0] [client 36.92.109. ... show more [Wed May 04 15:09:54.584141 2022] [:error] [pid 2983298] [client 36.92.109.147:0] [client 36.92.109.147] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation"] [hostname "www.hey-ai.com"] [uri "/index.php"] [unique_id "YnKXQAX2AHmUSBcR6afKjAAAAIs"] [Wed May 04 15:10:52.345364 2022] [:error] [pid 2985137] [client 36.92.109.147:0] [client 36.92.109.147] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation"] [hostname "www.hey-ai.com ... show less	Brute-Force
🇺🇸 Blue Pumpkin	2022-05-04 07:34:25 (4 years ago)	[Wed May 04 11:33:49.543101 2022] [:error] [pid 2881208] [client 36.92.109.147:0] [client 36.92.109. ... show more [Wed May 04 11:33:49.543101 2022] [:error] [pid 2881208] [client 36.92.109.147:0] [client 36.92.109.147] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation"] [hostname "www.hey-ai.com"] [uri "/index.php"] [unique_id "YnJknUwTNRtts2xIBzy1owAAAFI"] [Wed May 04 11:33:50.901144 2022] [:error] [pid 2881240] [client 36.92.109.147:0] [client 36.92.109.147] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation"] [hostname "www.hey-ai.com ... show less	Brute-Force
🇪🇸 10dencehispahard SL	2022-02-10 20:40:44 (4 years ago)	Multiple failed login attempts on various servers [wordpress-xmlrpc]	Brute-Force Web App Attack
🇺🇸 mnsf	2022-01-11 19:01:19 (4 years ago)	Xmlrpc Caught (7)	Brute-Force Web App Attack
FherdezSoft-TechMX	2021-12-31 18:00:00 (4 years ago)	Invalid user user from 36.92.109.147 port 36120	Brute-Force SSH
FherdezSoft-TechMX	2021-12-31 18:00:00 (4 years ago)	Invalid user user from 36.92.109.147 port 36120	Brute-Force SSH
FherdezSoft-TechMX	2021-12-31 18:00:00 (4 years ago)	Invalid user user from 36.92.109.147 port 36120	Brute-Force SSH

Showing 1 to 15 of 4261 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.100

🇺🇦 159.26.120.25

🇧🇪 35.241.173.5

🇫🇷 207.180.204.120

🇷🇴 193.32.162.16

🇨🇳 183.66.149.42

🇦🇪 132.243.121.237

🇻🇳 125.212.221.88

🇲🇾 47.250.114.217

🇸🇬 43.134.42.6

🇳🇱 178.16.53.13

🇫🇷 91.231.89.71

🇨🇦 85.217.149.60

🇺🇸 32.197.57.71

🇺🇸 192.220.50.121

🇮🇳 120.57.116.168

🇮🇳 103.207.4.41

🇮🇹 95.240.192.149

🇮🇷 95.38.235.47

🇫🇷 38.242.131.164