AbuseIPDB » 147.136.65.213
147.136.65.213 was found in our database!
This IP was reported 6 times. Confidence of
Abuse
is 4% : ?
ISP
Darkness Reigns (Holding) B.V.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS212238
Domain Name
darkness-reigns.net
Country
๐ฟ๐ฆ
South Africa
City
Johannesburg, Gauteng
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 147.136.65.213 :
This IP address has been reported a total of
6
times from
1 distinct
source.
147.136.65.213 was first reported on
March 25th 2026 , and the most recent report was
2 days ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฎ๐ฉ
hermawan
2026-06-28 16:11:31
(2 days ago)
[Sun Jun 28 23:11:31.049214 2026] [security2:error] [pid 533416:tid 140332021835456] [client 147.136 ...
show more
[Sun Jun 28 23:11:31.049214 2026] [security2:error] [pid 533416:tid 140332021835456] [client 147.136.65.213:40520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "601"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561307-infografis-perubahan-iklim-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561307-infografis-perubahan-iklim-jawa-timur"] [unique_id "akFHsydrIz4fa_xMjsLYswABQgA"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[533417] [byxDmFI/x7A] [akFHsydrIz4fa_xMjsLYswABQgA] keep_alive=[1] [2026-06
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-18 22:17:43
(1 week ago)
[Fri Jun 19 05:17:35.920422 2026] [security2:error] [pid 958070:tid 140710968796864] [client 147.136 ...
show more
[Fri Jun 19 05:17:35.920422 2026] [security2:error] [pid 958070:tid 140710968796864] [client 147.136.65.213:49420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/analisis-iklim/analisis-musim/perbandingan-musim-kemarau/perbandingan-awal-musim-kemarau-dengan-normalnya HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-musim/perbandingan-musim-kemarau/perbandingan-awal-musim-kemarau-dengan-normalnya"] [unique_id "ajRuf5Mb4S2lEJgWEQriPwAGlgQ"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[958091] [aSoQiw4XzPM] [ajRuf5Mb4S2lEJgWEQriPwAGlgQ] keep_alive=[1] [2026-06
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-14 16:54:32
(2 weeks ago)
[Sun Jun 14 23:54:28.346888 2026] [security2:error] [pid 262201:tid 139672916268736] [client 147.136 ...
show more
[Sun Jun 14 23:54:28.346888 2026] [security2:error] [pid 262201:tid 139672916268736] [client 147.136.65.213:43266] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Log" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Log found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 18_6_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.6.2 Mobile/15E148 Safari/604.1 musical_ly_41.5.0 JsSdk/2.0 NetType/WIFI Channel/App Store ByteLocale/en Region/US isDarkMode/0 WKWebView/1 RevealType/Dialog request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "ai7cxOXBnK5Op313Fp6sEgAAGA0"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[262215] [FCwRkHm6Q0A] [ai7cxOXBnK5Op313Fp6sEgAAGA0] keep_alive=[1] [2026-06-14 23:54:28.34689
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-10 11:43:36
(2 weeks ago)
[Wed Jun 10 18:43:35.601763 2026] [security2:error] [pid 480115:tid 139786466592448] [client 147.136 ...
show more
[Wed Jun 10 18:43:35.601763 2026] [security2:error] [pid 480115:tid 139786466592448] [client 147.136.65.213:12632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/profil/meteorologi/list-all-categories/551-klimatologi/prakiraan-klimatologi/peringatan-dini/555562843-press-release-kewaspadaan-cuaca-ekstrim-di-jawa-timur-11-20-maret-2026 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/551-klimatologi/prakiraan-klimatologi/peringatan-dini/555562843-press-release-kewaspadaan-cuaca-ekstrim-di-jawa-timur-11-20-maret-2026"] [unique_id "ailN53f3g-2D-4SkEbmQVQABxwk"], referer https://www.bmkg.go.id
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-05-27 06:57:47
(1 month ago)
[Wed May 27 13:57:47.066024 2026] [security2:error] [pid 639567:tid 139875673167552] [client 147.136 ...
show more
[Wed May 27 13:57:47.066024 2026] [security2:error] [pid 639567:tid 139875673167552] [client 147.136.65.213:57984] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "815"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /matomo.php?idsite=2&rec=1&cookie=1 HTTP/2.0 Request URI RAW = /matomo.php?idsite=2&rec=1&cookie=1 Request Basename = matomo.php"] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ENFORCEMENT"] [tag "capec/1000/210/272"] [hostname "matomo.staklim-malang.info"] [uri
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-03-25 01:47:31
(3 months ago)
1774403244.201869 CFXMSj4Z2W4i7za4wi 147.136.65.213 58486 103.166.156.58 443 tcp - 3.037715 0 0 S0 F ...
show more
1774403244.201869 CFXMSj4Z2W4i7za4wi 147.136.65.213 58486 103.166.156.58 443 tcp - 3.037715 0 0 S0 F F 0 S 3 180 0 0 - 6 887201622611795_53 (empty) 64240_2-4-8-1-3_1460_7 (empty) 03/25/2026-08:47:24.201869
...
show less
Email Spam
Hacking
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: