AbuseIPDB » 213.180.203.129

213.180.203.129 was found in our database!

This IP was reported 715 times. Confidence of Abuse is 0%: ?

ISP	Yandex enterprise network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS208398
Hostname(s)	213-180-203-129.spider.yandex.com
Domain Name	yandex.net
Country	Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 213.180.203.129 is an IP address from within our whitelist belonging to the subnet 213.180.192.0/19, which we identify as: "Yandex".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 213.180.203.129

Whois 213.180.203.129

IP Abuse Reports for 213.180.203.129:

This IP address has been reported a total of 715 times from 48 distinct sources. 213.180.203.129 was first reported on December 24th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
IrisFlower	2023-05-16 21:21:34 (2 years ago)	Unauthorized connection attempt detected from IP address 213.180.203.129 to port 443 [J]	Port Scan Hacking
advena	2023-05-05 02:00:54 (2 years ago)	213.180.203.129 (AS13238 YANDEX) was intercepted at 2023-05-05T01:51:23Z after violating WAF directi ... show more213.180.203.129 (AS13238 YANDEX) was intercepted at 2023-05-05T01:51:23Z after violating WAF directive: d0380eeb922844b5b69152600cea062c. Pre-cautionary/corrective action applied: block. show less	Web Spam Hacking Brute-Force Web App Attack
advena	2023-05-04 15:45:53 (2 years ago)	213.180.203.129 (AS13238 YANDEX) was intercepted at 2023-05-04T15:37:30Z after violating WAF directi ... show more213.180.203.129 (AS13238 YANDEX) was intercepted at 2023-05-04T15:37:30Z after violating WAF directive: d0380eeb922844b5b69152600cea062c. Pre-cautionary/corrective action applied: block. show less	Web Spam Hacking Brute-Force Web App Attack
rh24	2023-05-03 14:08:24 (2 years ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 213.180.203.129 (RU/ ... show more(apache-useragents) Failed apache-useragents trigger with match [redacted] from 213.180.203.129 (RU/Russia/213-180-203-129.spider.yandex.com): (CF_ENABLE) show less	Bad Web Bot
Bytemark	2023-04-22 15:07:12 (2 years ago)	213.180.203.129 - - [22/Apr/2023:16:07:12 +0100] "GET /robots.txt HTTP/1.1" 404 17344 "-" "Mozilla/5 ... show more213.180.203.129 - - [22/Apr/2023:16:07:12 +0100] "GET /robots.txt HTTP/1.1" 404 17344 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" show less	Brute-Force Web App Attack
rh24	2023-04-20 14:24:29 (2 years ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 213.180.203.129 (RU/ ... show more(apache-useragents) Failed apache-useragents trigger with match [redacted] from 213.180.203.129 (RU/Russia/213-180-203-129.spider.yandex.com) show less	Bad Web Bot
advena	2023-04-16 08:46:18 (2 years ago)	213.180.203.129 (AS13238 YANDEX) was intercepted at 2023-04-16T08:43:38Z after violating WAF directi ... show more213.180.203.129 (AS13238 YANDEX) was intercepted at 2023-04-16T08:43:38Z after violating WAF directive: d0380eeb922844b5b69152600cea062c. Pre-cautionary/corrective action applied: block. show less	Web Spam Hacking Brute-Force Web App Attack
Anonymous	2023-04-13 04:10:26 (2 years ago)	port scan and connect, tcp 80 (http)	Port Scan
rh24	2023-04-08 14:11:17 (2 years ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 213.180.203.129 (RU/ ... show more(apache-useragents) Failed apache-useragents trigger with match [redacted] from 213.180.203.129 (RU/Russia/213-180-203-129.spider.yandex.com) show less	Bad Web Bot
IrisFlower	2023-04-07 23:56:16 (2 years ago)	Unauthorized connection attempt detected from IP address 213.180.203.129 to port 80 [J]	Port Scan Hacking
Bytemark	2023-03-30 22:42:00 (2 years ago)	213.180.203.129 - - [30/Mar/2023:23:42:00 +0100] "GET /viewtopic.php?f=27&t=9188 HTTP/1.1" 200 15025 ... show more213.180.203.129 - - [30/Mar/2023:23:42:00 +0100] "GET /viewtopic.php?f=27&t=9188 HTTP/1.1" 200 15025 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" show less	Brute-Force Web App Attack
mclo	2023-03-27 13:16:49 (2 years ago)	213.180.203.129 - - [27/Mar/2023:15:16:49 +0200] "GET /Satoshi-to-bitcoin-gold-calculator.html HTTP/ ... show more213.180.203.129 - - [27/Mar/2023:15:16:49 +0200] "GET /Satoshi-to-bitcoin-gold-calculator.html HTTP/1.1" 404 134 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" ... show less	Web App Attack
hermawan	2023-03-22 16:38:39 (2 years ago)	[Wed Mar 22 23:38:36.787025 2023] [security2:error] [pid 448977:tid 140188938028608] [client 213.180 ... show more[Wed Mar 22 23:38:36.787025 2023] [security2:error] [pid 448977:tid 140188938028608] [client 213.180.203.129:60944] [client 213.180.203.129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.4/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/555558749-prakiraan-bulanan-curah-hujan-bulan-juni-tahun-2021-update-dari-analisis-bulan-april-tahun-2021-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/555558749-prakiraan-bulanan-curah-hujan-bulan-juni-tahun-2021-update-dari-analisis-bulan-april- ... show less	Hacking Web App Attack
Bytemark	2023-03-21 21:14:29 (2 years ago)	213.180.203.129 - - [21/Mar/2023:21:14:16 +0000] "GET /news.php?page=12 HTTP/1.1" 200 22879 "-" "Moz ... show more213.180.203.129 - - [21/Mar/2023:21:14:16 +0000] "GET /news.php?page=12 HTTP/1.1" 200 22879 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" show less	Brute-Force Web App Attack
mclo	2023-03-14 02:19:27 (2 years ago)	213.180.203.129 - - [14/Mar/2023:03:19:26 +0100] "GET /Bitcoin-hard-wallet-reviews.html HTTP/1.1" 40 ... show more213.180.203.129 - - [14/Mar/2023:03:19:26 +0100] "GET /Bitcoin-hard-wallet-reviews.html HTTP/1.1" 404 134 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" ... show less	Web App Attack

Showing 676 to 690 of 715 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

212.102.63.139

181.94.220.74

101.126.89.144

103.153.190.121

103.125.235.29

188.130.128.47

91.231.89.112

37.60.244.188

59.89.200.156

45.4.56.105

200.82.188.101

185.201.30.67

117.219.59.102

20.168.7.237

195.184.76.8

125.18.49.130

190.103.29.30

110.136.30.18

47.251.73.174

35.231.129.72