AbuseIPDB » 147.136.67.33
147.136.67.33 was found in our database!
This IP was reported 5 times. Confidence of
Abuse
is 3% : ?
ISP
Darkness Reigns (Holding) B.V.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS212238
Domain Name
darkness-reigns.net
Country
๐ฟ๐ฆ
South Africa
City
Johannesburg, Gauteng
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 147.136.67.33 :
This IP address has been reported a total of
5
times from
2 distinct
sources.
147.136.67.33 was first reported on
April 13th 2026 , and the most recent report was
1 week ago .
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฎ๐ฉ
hermawan
2026-06-25 21:46:39
(1 week ago)
[Fri Jun 26 04:46:36.202432 2026] [security2:error] [pid 618654:tid 140398083139264] [client 147.136 ...
show more
[Fri Jun 26 04:46:36.202432 2026] [security2:error] [pid 618654:tid 140398083139264] [client 147.136.67.33:37638] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/prediksi-iklim/prediksi-dasarian/monitoring-dan-prediksi-curah-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-dasarian/monitoring-dan-prediksi-curah-hujan"] [unique_id "aj2hvG8EVgoJiI8_Yd_2dAAARwY"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[618661] [B8QZ7VoovSw] [aj2hvG8EVgoJiI8_Yd_2dAAARwY] keep_alive=[1] [2026-06-26 04:46:36.202437] [R:aj2hvG8EVgoJiI8_Yd_2dAAARwY] UA:'Mozilla/5.0 (Linux
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-06 00:29:12
(3 weeks ago)
[Sat Jun 06 07:29:10.867448 2026] [security2:error] [pid 1382662:tid 140021452457664] [client 147.13 ...
show more
[Sat Jun 06 07:29:10.867448 2026] [security2:error] [pid 1382662:tid 140021452457664] [client 147.136.67.33:43148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /images/Klimatologi/Sertifikasi/BS_EN_ISO_9001_2015/PEFC-150.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Sertifikasi/BS_EN_ISO_9001_2015/PEFC-150.webp"] [unique_id "aiNp1iTPInn2kkrapVIraAAAiwo"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1382680] [u7yz3YrRCnI] [aiNp1iTPInn2kkrapVIraAAAiwo] keep_alive=[1] [2026-06-06 07:29:10.867453] [R:aiNp1iTPInn2kkrapVIraAAAiwo] UA:'Mozilla/5.0 (Linux; Android 11; SM-S901B)
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-06-05 00:48:21
(4 weeks ago)
[Fri Jun 05 07:48:17.841045 2026] [security2:error] [pid 607190:tid 139764513625792] [client 147.136 ...
show more
[Fri Jun 05 07:48:17.841045 2026] [security2:error] [pid 607190:tid 139764513625792] [client 147.136.67.33:35120] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "aiIc0QO7kscNclqVlSW5ugABzwM"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[607213] [6Mw5BLfhfJk] [aiIc0QO7kscNclqVlSW5ugABzwM] keep_alive=[1] [2026-06-05 07:48:17.841050] [R:aiIc0QO7kscNclqVlSW5ugABzwM] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Mobile Safari/537.36 OPR/83.0.0.0' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'text
...
show less
Email Spam
Hacking
๐ฎ๐ฉ
hermawan
2026-05-26 00:16:50
(1 month ago)
[Tue May 26 07:16:49.050377 2026] [security2:error] [pid 293933:tid 140291062351552] [client 147.136 ...
show more
[Tue May 26 07:16:49.050377 2026] [security2:error] [pid 293933:tid 140291062351552] [client 147.136.67.33:4188] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "857"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer HTTP/2.0 Request URI RAW = /index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan..."] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [t
...
show less
Email Spam
Hacking
๐บ๐ธ
MPL
2026-04-13 03:50:41
(2 months ago)
tcp/443 (4 or more attempts)
Port Scan
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: