AbuseIPDB » 5.45.207.117

Check an IP Address, Domain Name, or Subnet

e.g. 44.200.175.255, microsoft.com, or 5.188.10.0/24

5.45.207.117 was found in our database!

This IP was reported 91 times. Confidence of Abuse is 0%: ?

ISP	Yandex LLC
Usage Type	Search Engine Spider
Hostname(s)	5-45-207-117.spider.yandex.com
Domain Name	yandex.net
Country	Russian Federation
City	Moscow, Moskva

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Important Note: 5.45.207.117 is an IP address from within our whitelist. Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

According to our records, this IP belongs to the subnet 5.45.192.0/18, identified as: "Yandex"

Report 5.45.207.117

Whois 5.45.207.117

IP Abuse Reports for 5.45.207.117:

This IP address has been reported a total of 91 times from 25 distinct sources. 5.45.207.117 was first reported on December 3rd 2020, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
Bytemark	16 Aug 2022	5.45.207.117 - - [16/Aug/2022:16:15:45 +0100] "GET /viewtopic.php?t=3483 HTTP/1.1" 200 14657 "-" "Mo ... show more5.45.207.117 - - [16/Aug/2022:16:15:45 +0100] "GET /viewtopic.php?t=3483 HTTP/1.1" 200 14657 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" show less	Brute-Force Web App Attack
ozisp.com.au	12 Aug 2022	RU_YANDEX-MNT_<33>1660304238 [1:2032979:1] ET SCAN Yandex Webcrawler User-Agent (YandexBot) [Classif ... show moreRU_YANDEX-MNT_<33>1660304238 [1:2032979:1] ET SCAN Yandex Webcrawler User-Agent (YandexBot) [Classification: Not Suspicious Traffic] [Priority: 3] {TCP} 5.45.207.117:37500 show less	Hacking
hermawan	10 Aug 2022	[Thu Aug 11 10:55:12.691593 2022] [-:error] [pid 6384:tid 140730769073920] [client 5.45.207.117:4773 ... show more[Thu Aug 11 10:55:12.691593 2022] [-:error] [pid 6384:tid 140730769073920] [client 5.45.207.117:47730] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-musim/4071-prakiraan-musim-hujan/prakiraan-awal-musim-hujan/prakiraan-awal-musim-hujan-propinsi-jawa-timur/prakiraan-awal-musim-hujan-tahun-2020-2021-zona-musim-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4071-prakiraan-musim-hujan/prakiraan-awal-musim-hujan/prakiraan-awal-musim-hujan-propinsi-jawa-timur/prakiraan-awal-musim-hujan-tahun-2020-2021-zona-musim ... show less	Hacking Web App Attack
hermawan	10 Aug 2022	[Wed Aug 10 20:25:30.186895 2022] [-:error] [pid 337902:tid 140731826030336] [client 5.45.207.117:39 ... show more[Wed Aug 10 20:25:30.186895 2022] [-:error] [pid 337902:tid 140731826030336] [client 5.45.207.117:39810] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/buku/3971-buku-edisi-setiap-1-bulan-sekali/buletin-bulanan-informasi-iklim-dan-lingkungan/buletin-bulanan-informasi-iklim-dan-lingkungan-tahun-2019/1141-buletin-bulanan-informasi-iklim-dan-lingkungan-edisi-oktober-2019-vol-x-dengan-analisis-september-2019 HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/buku/3971-buku-edisi-setiap-1-bulan-sekali/buletin-bulanan-informasi-iklim-dan-lingkungan/buletin-bulanan- ... show less	Hacking Web App Attack
hermawan	09 Aug 2022	[Wed Aug 10 05:02:58.105019 2022] [-:error] [pid 6058:tid 140732992059136] [client 5.45.207.117:3904 ... show more[Wed Aug 10 05:02:58.105019 2022] [-:error] [pid 6058:tid 140732992059136] [client 5.45.207.117:39042] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/profil/meteorologi/list-all-categories/115-peralatan-observasi-klimatologi/ombrometer HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/115-peralatan-observasi-klimatologi/ombrometer"] [unique_id "YvLZkoo8Eno735akY3DxngAAAdU"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[6407] [etlVGKYj58s] [YvLZkoo8Eno735akY3DxngAAAdU] keep_alive=[0] [2022-08-10 05:0 ... show less	Hacking Web App Attack
hermawan	09 Aug 2022	[Tue Aug 09 18:45:01.476567 2022] [-:error] [pid 6118:tid 140732513904384] [client 5.45.207.117:6357 ... show more[Tue Aug 09 18:45:01.476567 2022] [-:error] [pid 6118:tid 140732513904384] [client 5.45.207.117:63570] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/analisis-iklim/analisis-dasarian/distribusi-curah-hujan-dasarian-provinsi-jawa-timur/555556942-analisis-distribusi-curah-hujan-dasarian-iii-februari-2019-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-dasarian/distribusi-curah-hujan-dasarian-provinsi-jawa-timur/555556942-analisis-distribusi-curah-hujan-dasarian-iii-februari-2019-di-provinsi-jawa-timur"] [unique_ ... show less	Hacking Web App Attack
hermawan	08 Aug 2022	[Mon Aug 08 21:05:42.365322 2022] [-:error] [pid 128925:tid 140732891379456] [client 5.45.207.117:38 ... show more[Mon Aug 08 21:05:42.365322 2022] [-:error] [pid 128925:tid 140732891379456] [client 5.45.207.117:38794] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/profil/meteorologi/list-all-categories/3311-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-papua/kalender-tanam-katam-terpadu-provinsi-papua/kalender-tanam-katam-terpadu-kabupaten-biak-numfor-provinsi-papua/kalender-tanam-katam-terpadu-kecamatan-samofa-kabupaten-biak-numfor-provi..."] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteo ... show less	Hacking Web App Attack
Bytemark	08 Aug 2022	5.45.207.117 - - [08/Aug/2022:13:04:25 +0100] "GET /robots.txt HTTP/1.1" 200 7139 "-" "Mozilla/5.0 ( ... show more5.45.207.117 - - [08/Aug/2022:13:04:25 +0100] "GET /robots.txt HTTP/1.1" 200 7139 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" 5.45.207.117 - - [08/Aug/2022:13:04:25 +0100] "GET /robots.txt HTTP/1.1" 200 7139 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" show less	Brute-Force Web App Attack
hermawan	07 Aug 2022	[Mon Aug 08 10:38:15.042986 2022] [-:error] [pid 196440:tid 140729737262848] [client 5.45.207.117:46 ... show more[Mon Aug 08 10:38:15.042986 2022] [-:error] [pid 196440:tid 140729737262848] [client 5.45.207.117:46016] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/555559001-prakiraan-bulanan-curah-hujan-bulan-oktober-tahun-2021-update-dari-analisis-bulan-agustus-tahun-2021-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/555559001-prakiraan-bulanan-curah-hujan-bulan-oktober-tahun-2021-update-dari-analisis-bulan-agustus- ... show less	Hacking Web App Attack
hermawan	07 Aug 2022	[Sun Aug 07 19:41:24.391147 2022] [-:error] [pid 335426:tid 140730399958784] [client 5.45.207.117:45 ... show more[Sun Aug 07 19:41:24.391147 2022] [-:error] [pid 335426:tid 140730399958784] [client 5.45.207.117:45024] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/profil/meteorologi/list-all-categories/84-agroklimatologi HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/84-agroklimatologi"] [unique_id "Yu-y9LDRkEK30LMhUUrh1QAAAEQ"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[335596] [1/NZBM4RaM4] [Yu-y9LDRkEK30LMhUUrh1QAAAEQ] keep_alive=[0] [2022-08-07 19:41:24.391154] [R:Yu-y9LDRkEK30LMhUUrh1QAAAEQ] UA:'Moz ... show less	Hacking Web App Attack
hermawan	06 Aug 2022	[Sat Aug 06 23:17:36.477326 2022] [-:error] [pid 869549:tid 140728655128320] [client 5.45.207.117:33 ... show more[Sat Aug 06 23:17:36.477326 2022] [-:error] [pid 869549:tid 140728655128320] [client 5.45.207.117:33222] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Yu6UIHHVEr5sUIn9n8p7dAAAAGA"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[869747] [dW616/z1MsY] [Yu6UIHHVEr5sUIn9n8p7dAAAAGA] keep_alive=[0] [2022-08-06 23:17:36.477343] [R:Yu6UIHHVEr5sUIn9n8p7dAAAAGA] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'karangploso.jatim.bmkg.go.id' ACCEPT:'/' ... show less	Hacking Web App Attack
IrisFlower	06 Jul 2022	Unauthorized connection attempt detected from IP address 5.45.207.117 to port 80 [J]	Port Scan Hacking
ozisp.com.au	06 Jul 2022	RU_YANDEX-MNT_<33>1657094087 [1:2032979:1] ET SCAN Yandex Webcrawler User-Agent (YandexBot) [Classif ... show moreRU_YANDEX-MNT_<33>1657094087 [1:2032979:1] ET SCAN Yandex Webcrawler User-Agent (YandexBot) [Classification: Not Suspicious Traffic] [Priority: 3] {TCP} 5.45.207.117:54362 show less	Hacking
Anonymous	03 Jul 2022	Brute Force attempts	Brute-Force Exploited Host
hermawan	28 Jun 2022	[Wed Jun 29 04:55:42.721614 2022] [-:error] [pid 6653:tid 140734258734848] [client 5.45.207.117:5591 ... show more[Wed Jun 29 04:55:42.721614 2022] [-:error] [pid 6653:tid 140734258734848] [client 5.45.207.117:55916] [client 5.45.207.117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/custom_user.conf"] [line "5"] [id "1000000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulan_Provinsi_Jawa_Timur/2019/10/01_Prakiraan_Bulanan_Daerah_Potensi_Banjir_di_Provinsi_Jawa_Timur_NOVEMBER_Tahun_2019_update_10_Oktober_2019.jpg HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulan_Prov ... show less	Hacking Web App Attack