JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 147.136.66.100

147.136.66.100 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 13%: ?

13%

ISP	Darkness Reigns (Holding) B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	darkness-reigns.net
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 147.136.66.100

Whois 147.136.66.100

IP Abuse Reports for 147.136.66.100:

This IP address has been reported a total of 13 times from 2 distinct sources. 147.136.66.100 was first reported on April 12th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-23 09:59:36 (3 hours ago)	[Tue Jun 23 16:59:33.673275 2026] [security2:error] [pid 357441:tid 140409171863232] [client 147.136 ... show more [Tue Jun 23 16:59:33.673275 2026] [security2:error] [pid 357441:tid 140409171863232] [client 147.136.66.100:43930] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yandex.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yandex.go.id found within REQUEST_HEADERS:Referer: https://www.yandex.go.id/ request_line = GET /index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer"] [unique_id "ajpZBb-5Alox7mwEBF_NygAAggA"], referer https://www.yandex ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-08 12:48:59 (2 weeks ago)	[Mon Jun 08 19:48:59.143747 2026] [security2:error] [pid 1075717:tid 140662016157376] [client 147.13 ... show more [Mon Jun 08 19:48:59.143747 2026] [security2:error] [pid 1075717:tid 140662016157376] [client 147.136.66.100:21088] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /timeout-worker-v3.js HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/timeout-worker-v3.js"] [unique_id "aia6OxI4Q_O4nwH4anhqkwAAQQc"], referer https://www.bing.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1075725] [VNohb30HoYg] [aia6OxI4Q_O4nwH4anhqkwAAQQc] keep_alive=[1] [2026-06-08 19:48:59.143751] [R:aia6OxI4Q_O4nwH4anhqkwAAQQc] UA:'Mozilla/5.0 (Linux; Android 13; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36' Host:'stakl ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-07 17:48:55 (2 weeks ago)	[Mon Jun 08 00:48:49.981536 2026] [security2:error] [pid 222219:tid 140410096707264] [client 147.136 ... show more [Mon Jun 08 00:48:49.981536 2026] [security2:error] [pid 222219:tid 140410096707264] [client 147.136.66.100:50270] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-buletin HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-bulanan/infografis-bulanan-buletin"] [unique_id "aiWvAQD4Nj8lLoOOd8GCbwAAQQA"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[222220] [YX+ggW1pEd8] [aiWvAQD4Nj8lLoOOd8GCbwAAQQA] keep_alive=[1] [2026-06-08 00:48:49.981541] [R:aiWvAQD4Nj8lLoOOd8GCbwAAQQA] U ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-04 19:27:29 (2 weeks ago)	[Fri Jun 05 02:27:28.783529 2026] [security2:error] [pid 446736:tid 139764545083072] [client 147.136 ... show more [Fri Jun 05 02:27:28.783529 2026] [security2:error] [pid 446736:tid 139764545083072] [client 147.136.66.100:22428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-curah-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-curah-hujan"] [unique_id "aiHRoI0nE9Vn45eWLG7EcAAADgI"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[446779] [jXbkiHKmko0] [aiHRoI0nE9Vn45eWLG7EcAAADgI] keep_alive=[1] [2026-06-05 02:27:28.783535] [R:aiHRoI0n ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-29 07:06:09 (3 weeks ago)	[Fri May 29 14:06:08.031956 2026] [security2:error] [pid 1414101:tid 139852021450432] [client 147.13 ... show more [Fri May 29 14:06:08.031956 2026] [security2:error] [pid 1414101:tid 139852021450432] [client 147.136.66.100:61820] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "815"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /index.php HTTP/2.0 Request URI RAW = /index.php Request Basename = index.php"] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ENFORCEMENT"] [tag "capec/1000/210/272"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "ahk64Ep_DGzNAxn-gibtWAABV ... show less	Email Spam Hacking
🇺🇸 MPL	2026-05-27 14:06:02 (3 weeks ago)	tcp/443 (8 or more attempts)	Port Scan
🇮🇩 hermawan	2026-05-23 08:31:47 (1 month ago)	05/23/2026-15:31:46.801972 [Drop] [] [1:2100001839:0] Suricata match TLS ja4 scan Uniq Zeek no 18 ... show more 05/23/2026-15:31:46.801972 [Drop] [] [1:2100001839:0] Suricata match TLS ja4 scan Uniq Zeek no 1839 with hash_t13d1516h2_8daaf6152771_ea2cbcd64924 [**] [Classification: (null)] [Priority: 3] {TCP} 147.136.66.100:10456 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-20 02:12:07 (1 month ago)	05/20/2026-09:12:06.377709 [Drop] [] [1:2100001886:0] Suricata match TLS ja4 scan Uniq Zeek no 18 ... show more 05/20/2026-09:12:06.377709 [Drop] [] [1:2100001886:0] Suricata match TLS ja4 scan Uniq Zeek no 1886 with hash_t13d1715h2_5b57614c22b0_79fad27aceb8 [**] [Classification: (null)] [Priority: 3] {TCP} 147.136.66.100:11610 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇺🇸 MPL	2026-05-13 09:53:16 (1 month ago)	tcp/443	Port Scan
🇺🇸 MPL	2026-05-13 09:53:08 (1 month ago)	tcp/443 (4 or more attempts)	Port Scan
🇮🇩 hermawan	2026-04-19 00:17:17 (2 months ago)	[Sun Apr 19 07:17:17.215883 2026] [security2:error] [pid 1399683:tid 140256856901312] [client 147.13 ... show more [Sun Apr 19 07:17:17.215883 2026] [security2:error] [pid 1399683:tid 140256856901312] [client 147.136.66.100:30432] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "623"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan"] [unique_id "aeQfDRdm_GbRyZROENXdIgAAgAA"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1399720] [AqjJGgVNVDU] [aeQfDRdm_GbRyZROENXdIgAAgAA] keep_alive=[1 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-04-12 15:55:45 (2 months ago)	04/12/2026-22:55:45.121166 [Drop] [] [1:3100003068:0] Suricata match TLS JA3 scan Uniq Zeek no 30 ... show more 04/12/2026-22:55:45.121166 [Drop] [] [1:3100003068:0] Suricata match TLS JA3 scan Uniq Zeek no 3068 with hash_f6a0bfafe2bf7d9c79ffb3f269b64b46 [**] [Classification: (null)] [Priority: 3] {TCP} 147.136.66.100:34184 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-04-12 04:58:24 (2 months ago)	[Sun Apr 12 11:58:23.688928 2026] [security2:error] [pid 375086:tid 140136522180288] [client 147.136 ... show more [Sun Apr 12 11:58:23.688928 2026] [security2:error] [pid 375086:tid 140136522180288] [client 147.136.66.100:31632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "617"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "adsmb3nxCttenrPGgTZLCgAAEgE"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[375142] [az81N3y3ux0] [adsmb3nxCttenrPGgTZLCgAAEgE] keep_alive=[1] [2026-04-12 11:58:23.688941] [R:adsmb3nxCttenrPGgTZLCgAAEgE] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36 EdgA/131.0.0.0' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'text/ ... show less	Email Spam Hacking

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 217.181.88.118

🇧🇷 177.86.4.132

🇺🇸 66.132.195.28

🇺🇸 66.132.186.185

🇮🇳 47.15.238.210

🇩🇪 45.130.203.233

🇷🇴 193.46.255.86

🇭🇰 152.32.189.59

🇨🇦 142.44.220.153

🇧🇷 138.186.126.255

🇩🇪 64.89.163.140

🇺🇸 47.77.235.175

🇳🇱 45.148.10.141

🇩🇪 45.130.203.218

🇺🇾 186.53.194.225

🇮🇩 157.15.40.60

🇺🇸 143.42.164.97

🇺🇸 135.222.40.117

🇧🇴 132.251.251.219

🇰🇪 129.222.147.94