AbuseIPDB » 5.255.231.70

5.255.231.70 was found in our database!

This IP was reported 773 times. Confidence of Abuse is 0%: ?

ISP	Yandex enterprise network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS208398
Hostname(s)	5-255-231-70.spider.yandex.com
Domain Name	yandex.net
Country	Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 5.255.231.70 is an IP address from within our whitelist belonging to the subnet 5.255.192.0/18, which we identify as: "Yandex".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 5.255.231.70

Whois 5.255.231.70

IP Abuse Reports for 5.255.231.70:

This IP address has been reported a total of 773 times from 61 distinct sources. 5.255.231.70 was first reported on November 27th 2020, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
hermawan	2023-10-12 01:57:39 (1 year ago)	[Thu Oct 12 08:57:36.597814 2023] [security2:error] [pid 369264:tid 139911336273472] [client 5.255.2 ... show more[Thu Oct 12 08:57:36.597814 2023] [security2:error] [pid 369264:tid 139911336273472] [client 5.255.231.70:60564] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-bulanan/4116-prakiraan-sifat-hujan-bulanan/prakiraan-sifat-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-sifat-hujan-di-propinsi-jawa-timur-tahun-2022 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/4116-prakiraan-sifat-hujan-bulanan/prakiraan-sifat-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-sifat-hujan-di-propinsi-jawa-timur-tahun-2022"] [unique_id "ZSdSkExk ... show less	Hacking Web App Attack
hermawan	2023-10-10 17:17:02 (1 year ago)	[Wed Oct 11 00:16:59.141856 2023] [security2:error] [pid 685994:tid 140091674576448] [client 5.255.2 ... show more[Wed Oct 11 00:16:59.141856 2023] [security2:error] [pid 685994:tid 140091674576448] [client 5.255.231.70:44048] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "ZSWHC-beTsxvPyHuxD3NsQAAAMw"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[686090] [JNvV38eRqGE] [ZSWHC-beTsxvPyHuxD3NsQAAAMw] keep_alive=[0] [2023-10-11 00:16:59.141858] [R:ZSWHC-beTsxvPyHuxD3NsQAAAMw] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'/' Accept-Encodin ... show less	Hacking Web App Attack
advena	2023-10-10 07:30:58 (1 year ago)	5.255.231.70 (AS13238 YANDEX) was intercepted at 2023-10-10T07:16:05Z after violating WAF directive: ... show more5.255.231.70 (AS13238 YANDEX) was intercepted at 2023-10-10T07:16:05Z after violating WAF directive: d0380eeb922844b5b69152600cea062c. Pre-cautionary/corrective action applied: block. show less	Web Spam Hacking Brute-Force Web App Attack
hermawan	2023-10-09 19:48:13 (1 year ago)	[Tue Oct 10 02:48:11.484633 2023] [security2:error] [pid 51471:tid 140019666765376] [client 5.255.23 ... show more[Tue Oct 10 02:48:11.484633 2023] [security2:error] [pid 51471:tid 140019666765376] [client 5.255.231.70:44928] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "ZSRY-6m12ZOHLr9HtxLe6QAAAQc"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[51626] [VNy/3mUYFJg] [ZSRY-6m12ZOHLr9HtxLe6QAAAQc] keep_alive=[0] [2023-10-10 02:48:11.484636] [R:ZSRY-6m12ZOHLr9HtxLe6QAAAQc] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'/' Accept-Encoding: ... show less	Hacking Web App Attack
hermawan	2023-10-09 07:51:35 (1 year ago)	[Mon Oct 09 14:51:32.893996 2023] [security2:error] [pid 545013:tid 139860325144128] [client 5.255.2 ... show more[Mon Oct 09 14:51:32.893996 2023] [security2:error] [pid 545013:tid 139860325144128] [client 5.255.231.70:61408] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Klimatologi/Infografis/Infografis-Iklim/Klimat_Story/2020/Infografis_Klimat_Story_Apa_Sih_Sifat_Hujan_Itu-600.webp HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Infografis/Infografis-Iklim/Klimat_Story/2020/Infografis_Klimat_Story_Apa_Sih_Sifat_Hujan_Itu-600.webp"] [unique_id "ZSOxBOQv6Zs4ucp2cXItnAAAAjI"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[545167] [Oj7V2/ttQ3g] [ZSOxBOQv6 ... show less	Hacking Web App Attack
hermawan	2023-10-08 21:15:24 (1 year ago)	[Mon Oct 09 04:15:23.288849 2023] [security2:error] [pid 188202:tid 140692818994752] [client 5.255.2 ... show more[Mon Oct 09 04:15:23.288849 2023] [security2:error] [pid 188202:tid 140692818994752] [client 5.255.231.70:53306] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/intensitas-curah-hujan-harian-di-wilayah-indonesia/1380-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-sumenep/kalender-tanam-katam-terpadu-kecamatan-masalembu-kabupaten-sumenep/kalender-tanam-katam-terpadu-kecamatan-masalembu-kabupaten-sumenep-tahun-2016-2..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/intensitas-c ... show less	Hacking Web App Attack
hermawan	2023-10-07 21:18:36 (1 year ago)	[Sun Oct 08 04:18:34.346242 2023] [security2:error] [pid 132556:tid 140496936613440] [client 5.255.2 ... show more[Sun Oct 08 04:18:34.346242 2023] [security2:error] [pid 132556:tid 140496936613440] [client 5.255.231.70:64158] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-bulanan/3937-prakiraan-curah-hujan-bulanan/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur-tahun-2019/555557549-prakiraan-bulanan-curah-hujan-bulan-november-tahun-2019-update-dari-analisis-bulan-agustus-2019 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/3937-prakiraan-curah-hujan-bulanan/prakiraan-curah-hujan-bulanan-di- ... show less	Hacking Web App Attack
hermawan	2023-10-07 12:16:52 (1 year ago)	[Sat Oct 07 19:16:51.520055 2023] [security2:error] [pid 42717:tid 140387305907776] [client 5.255.23 ... show more[Sat Oct 07 19:16:51.520055 2023] [security2:error] [pid 42717:tid 140387305907776] [client 5.255.231.70:35442] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Geofisika/poster_antisipasi_gempa.jpg HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Geofisika/poster_antisipasi_gempa.jpg"] [unique_id "ZSFMMw5GBntQX7XcMLqW2wAAAT0"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[42826] [OLr5VMfVPn0] [ZSFMMw5GBntQX7XcMLqW2wAAAT0] keep_alive=[0] [2023-10-07 19:16:51.520058] [R:ZSFMMw5GBntQX7XcMLqW2wAAAT0] UA:'Mozilla/5.0 (compatible; YandexImages/3.0; +http://yande ... show less	Hacking Web App Attack
octageeks.com	2023-10-07 04:10:16 (1 year ago)	Wordpress malicious attack:[octa404]	Web App Attack
hermawan	2023-10-06 18:22:51 (1 year ago)	[Sat Oct 07 01:22:50.604124 2023] [security2:error] [pid 36243:tid 140424425502272] [client 5.255.23 ... show more[Sat Oct 07 01:22:50.604124 2023] [security2:error] [pid 36243:tid 140424425502272] [client 5.255.231.70:64782] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET / HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "ZSBQemj--V41MR-Z7JFQpQAAACo"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[36378] [RTb/U6iON3Y] [ZSBQemj--V41MR-Z7JFQpQAAACo] keep_alive=[0] [2023-10-07 01:22:50.604129] [R:ZSBQemj--V41MR-Z7JFQpQAAACo] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'/' Accept-Encoding:'gzip,deflate ... show less	Hacking Web App Attack
octageeks.com	2023-10-06 04:09:02 (1 year ago)	Wordpress malicious attack:[octa404]	Web App Attack
hermawan	2023-10-05 09:40:25 (1 year ago)	[Thu Oct 05 16:40:23.307165 2023] [security2:error] [pid 70614:tid 140023970125376] [client 5.255.23 ... show more[Thu Oct 05 16:40:23.307165 2023] [security2:error] [pid 70614:tid 140023970125376] [client 5.255.231.70:42138] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Klimatologi/Analisis/03-Analisis_Bulanan/Analisis_Distibusi_Sifat_Hujan_Bulanan/Analisis_Distibusi_Sifat_Hujan_Bulanan_Provinsi_Jawa_Timur/2022/10/Analisis_Bulanan_Distribusi_Sifat_Hujan_Bulan_Oktober_Tahun_2022_di_Provinsi_Jawa_Timur.webp HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/03-Analisis_Bulanan/Analisis_Distibusi_Sifat_Hujan_Bulanan/Analisis_Distibusi_Sifat_Hujan_Bulanan_Provins ... show less	Hacking Web App Attack
hermawan	2023-10-04 22:20:49 (1 year ago)	[Thu Oct 05 05:20:46.645357 2023] [security2:error] [pid 299376:tid 140631632496192] [client 5.255.2 ... show more[Thu Oct 05 05:20:46.645357 2023] [security2:error] [pid 299376:tid 140631632496192] [client 5.255.231.70:39698] [client 5.255.231.70] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Klimatologi/Konferensi_Pers/2021/29_Maret_2021/Fact_Sheet_Prakiraan_Musim_Kemarau_2021.jpg HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Konferensi_Pers/2021/29_Maret_2021/Fact_Sheet_Prakiraan_Musim_Kemarau_2021.jpg"] [unique_id "ZR3lPp3hQ2wR5pbD9cosBAAAAAQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[299472] [hrI7a3MaVxg] [ZR3lPp3hQ2wR5pbD9cosBAAAAAQ] keep_alive=[0] [2023-10-05 0 ... show less	Hacking Web App Attack
octageeks.com	2023-10-04 04:11:18 (1 year ago)	Wordpress malicious attack:[octa404]	Web App Attack
Bytemark	2023-10-04 01:20:36 (1 year ago)	5.255.231.70 - - [04/Oct/2023:02:20:35 +0100] "GET /viewforum.php?f=45 HTTP/1.1" 404 6968 "-" "Mozil ... show more5.255.231.70 - - [04/Oct/2023:02:20:35 +0100] "GET /viewforum.php?f=45 HTTP/1.1" 404 6968 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" show less	Brute-Force Web App Attack

Showing 616 to 630 of 773 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

202.76.161.32

62.72.33.135

27.40.100.149

150.136.248.7

178.27.89.123

119.254.177.140

23.226.136.233

40.77.167.187

119.254.177.139

176.118.147.178

186.227.247.76

110.167.8.115

203.228.30.198

205.210.31.72

167.94.138.42

154.12.224.130

101.126.88.157

187.142.249.8

125.24.58.162

205.210.31.71