JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.122.130.179

185.122.130.179 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 11%: ?

11%

ISP	NGS
Usage Type	Fixed Line ISP
ASN	AS25335
Domain Name	ngsuk.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.122.130.179

Whois 185.122.130.179

IP Abuse Reports for 185.122.130.179:

This IP address has been reported a total of 7 times from 2 distinct sources. 185.122.130.179 was first reported on May 17th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-18 02:02:31 (1 week ago)	[Thu Jun 18 09:02:26.917272 2026] [security2:error] [pid 91981:tid 139989716293312] [client 185.122. ... show more [Thu Jun 18 09:02:26.917272 2026] [security2:error] [pid 91981:tid 139989716293312] [client 185.122.130.179:18190] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yandex.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yandex.go.id found within REQUEST_HEADERS:Referer: https://www.yandex.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-tahunan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-tahunan"] [unique_id "ajNRsphMTMbnXCtwC2HkFwABTAM"], referer https://www.yandex.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[91999] [JDJbkb26fPk] [ajNRsphMTMbnXCtwC2HkFwABTAM] keep_alive=[1] [2026-06-18 09:02:26.917286] [R:ajNRsphMTMbnXCtwC2HkFwABTAM] UA:'Mozilla/5.0 (Linux; Android 10; K) AppleWebK ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-05 08:05:34 (3 weeks ago)	[Fri Jun 05 15:05:26.450766 2026] [authz_core:error] [pid 859032:tid 140021634942656] [client 185.12 ... show more [Fri Jun 05 15:05:26.450766 2026] [authz_core:error] [pid 859032:tid 140021634942656] [client 185.122.130.179:60922] AH01630: client denied by server configuration: /var/www/index.php, referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[859056] [MpOVHz0eDWI] [aiKDRj8HlUtlivtS2diecQAATwM] keep_alive=[1] [2026-06-05 15:05:26.450770] [R:aiKDRj8HlUtlivtS2diecQAATwM] UA:'Mozilla/5.0 (Linux; Android 8.0.0; SM-J330G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36 EdgA/114.0.1823.74' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'/' Referer:'https://staklim-jatim.bmkg.go.id/ Accept-Encoding:'gzip, deflate, br Accept-Language:'en-US,en;q=0.8 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-31 12:01:23 (3 weeks ago)	[Sun May 31 19:01:19.088803 2026] [authz_core:error] [pid 1111022:tid 140573573879488] [client 185.1 ... show more [Sun May 31 19:01:19.088803 2026] [authz_core:error] [pid 1111022:tid 140573573879488] [client 185.122.130.179:28818] AH01630: client denied by server configuration: /var/www/index.php, referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1111028] [mMLw1Vtr2uw] [ahwjDzTaIRCafZZ6RW4McQAAUwU] keep_alive=[1] [2026-05-31 19:01:19.088806] [R:ahwjDzTaIRCafZZ6RW4McQAAUwU] UA:'Mozilla/5.0 (Linux; Android 12; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7' Referer:'https://staklim-jatim.bmkg.go.id/ Accept-Encoding:'gzip, deflate, br Accept-Language:'en-US,en;q=0.8 Upgrade-Insecure-Requests:'1 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-28 03:41:09 (4 weeks ago)	[Thu May 28 10:41:08.697240 2026] [security2:error] [pid 328359:tid 139852306695872] [client 185.122 ... show more [Thu May 28 10:41:08.697240 2026] [security2:error] [pid 328359:tid 139852306695872] [client 185.122.130.179:35990] ModSecurity: Access denied with code 403 (phase 1). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "815"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: GET found within REQUEST_HEADERS: 1 request_line = GET /matomo.php?idsite=2&rec=1&cookie=1 HTTP/2.0 Request URI RAW = /matomo.php?idsite=2&rec=1&cookie=1 Request Basename = matomo.php"] [severity "CRITICAL"] [ver "OWASP_CRS/4.26.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL-ENFORCEMENT"] [tag "capec/1000/210/272"] [hostname "matomo.staklim-malang.info"] [ur ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-20 13:37:35 (1 month ago)	[Wed May 20 20:37:30.819566 2026] [security2:error] [pid 886645:tid 140622206809792] [client 185.122 ... show more [Wed May 20 20:37:30.819566 2026] [security2:error] [pid 886645:tid 140622206809792] [client 185.122.130.179:18288] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "624"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /index.php HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "ag25GmHxbiwMQXmjEweM5gACQA4"], referer http://www.baidu.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[886660] [cBK15f9wj0c] [ag25GmHxbiwMQXmjEweM5gACQA4] keep_alive=[1] [2026-05-20 20:37:30.819571] [R:ag25GmHxbiwMQXmjEweM5gACQA4] UA:'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36 Edg/122.0.0.0' Host: ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-20 00:23:58 (1 month ago)	[Wed May 20 07:23:55.249225 2026] [security2:error] [pid 371299:tid 140083029051072] [client 185.122 ... show more [Wed May 20 07:23:55.249225 2026] [security2:error] [pid 371299:tid 140083029051072] [client 185.122.130.179:47606] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "624"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-curah-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-curah-hujan"] [unique_id "agz_GwNJkRAyeWl05DhHngAASQc"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[371308] [t0yZz7Q1i7g] [agz_GwNJkRAyeWl05DhHngAASQc] keep_alive=[1] [2026-05-20 07:23:55.249230] [R:agz ... show less	Email Spam Hacking
🇺🇸 MPL	2026-05-17 21:35:29 (1 month ago)	tcp/443 (8 or more attempts)	Port Scan

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.46

🇸🇬 43.134.91.35

🇺🇸 172.182.192.148

🇺🇸 98.122.215.23

🇧🇬 79.124.40.110

🇮🇹 78.134.49.171

🇺🇸 66.132.224.79

🇺🇸 52.146.20.92

🇲🇽 177.245.242.230

🇬🇭 102.223.92.101

🇧🇾 81.30.98.142

🇨🇳 58.210.7.34

🇦🇪 5.31.214.137

🇺🇸 3.132.26.232

🇰🇷 220.127.148.6

🇬🇧 213.166.84.59

🇳🇱 185.242.226.61

🇺🇾 179.27.99.9

🇩🇪 139.59.152.154

🇮🇳 124.253.206.193