AbuseIPDB » 95.108.213.55

Check an IP Address, Domain Name, or Subnet

e.g. 3.238.134.157, microsoft.com, or 5.188.10.0/24

95.108.213.55 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 0%: ?

ISP	Yandex LLC
Usage Type	Search Engine Spider
Hostname(s)	95-108-213-55.spider.yandex.com
Domain Name	yandex.net
Country	Russian Federation
City	Moscow, Moskva

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Important Note: 95.108.213.55 is an IP address from within our whitelist. Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

According to our records, this IP belongs to the subnet 95.108.128.0/17, identified as: "Yandex"

Report 95.108.213.55

Whois 95.108.213.55

IP Abuse Reports for 95.108.213.55:

This IP address has been reported a total of 145 times from 23 distinct sources. 95.108.213.55 was first reported on September 28th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
Anonymous	21 Nov 2022	Brute Force attempts	Brute-Force Exploited Host
hermawan	20 Nov 2022	[Mon Nov 21 02:42:50.884678 2022] [-:error] [pid 73052:tid 140639907214912] [client 95.108.213.55:33 ... show more[Mon Nov 21 02:42:50.884678 2022] [-:error] [pid 73052:tid 140639907214912] [client 95.108.213.55:33460] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman/1515-prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-jawa-timur-untuk-bulan-desember-tahun-2021-update-dari-analisis-bulan-september-2021 HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman/1515-prakiraan-bulanan-tingkat-k ... show less	Hacking Web App Attack
hermawan	20 Nov 2022	[Mon Nov 21 00:28:46.620742 2022] [-:error] [pid 53009:tid 139974757692992] [client 95.108.213.55:62 ... show more[Mon Nov 21 00:28:46.620742 2022] [-:error] [pid 53009:tid 139974757692992] [client 95.108.213.55:62364] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/component/tags/tag/655-kalender-tanam-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/component/tags/tag/655-kalender-tanam-provinsi-jawa-timur"] [unique_id "Y3pjzh5EkBRQpofBJQywWgAAADU"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[53174] [H9RoRdLb19A] [Y3pjzh5EkBRQpofBJQywWgAAADU] keep_alive=[0] [2022-11-21 00:28:46.620745] [R:Y3pjzh5EkBRQpofBJQywWgAAADU] UA:'Moz ... show less	Hacking Web App Attack
hermawan	20 Nov 2022	[Sun Nov 20 22:00:30.943565 2022] [-:error] [pid 66793:tid 140605816215104] [client 95.108.213.55:54 ... show more[Sun Nov 20 22:00:30.943565 2022] [-:error] [pid 66793:tid 140605816215104] [client 95.108.213.55:54316] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/component/tags/tag/595-analisis-distribusi-curah-hujan HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/component/tags/tag/595-analisis-distribusi-curah-hujan"] [unique_id "Y3pBDhcnC3l7CUeZEZF00QAAAFo"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[66880] [j98vM+DefZk] [Y3pBDhcnC3l7CUeZEZF00QAAAFo] keep_alive=[0] [2022-11-20 22:00:30.943568] [R:Y3pBDhcnC3l7CUeZEZF00QAAAFo] UA:'Mozilla/5 ... show less	Hacking Web App Attack
hermawan	20 Nov 2022	[Sun Nov 20 14:17:14.306720 2022] [-:error] [pid 51742:tid 140200979650112] [client 95.108.213.55:42 ... show more[Sun Nov 20 14:17:14.306720 2022] [-:error] [pid 51742:tid 140200979650112] [client 95.108.213.55:42260] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/daerah-potensi-banjir-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/daerah-potensi-banjir-di-provinsi-jawa-timur"] [unique_id "Y3nUegBrB33dRuI6KccbwAAAAOs"] [staklim-malang.info] [staklim-malang.info] top=[51889] [UTxguuH/0nY] [Y3nUegBrB33dRuI6KccbwAAAAOs] keep_alive=[0] [2022-11-20 14:17:14.306724] [R:Y3nUegBrB33dRuI6Kccbw ... show less	Hacking Web App Attack
hermawan	19 Nov 2022	[Sat Nov 19 22:55:43.656698 2022] [-:error] [pid 463360:tid 140455988987456] [client 95.108.213.55:4 ... show more[Sat Nov 19 22:55:43.656698 2022] [-:error] [pid 463360:tid 140455988987456] [client 95.108.213.55:43164] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "Y3j8f6F4ZS-Ycusdt3xe9wAAATM"] [staklim-malang.info] [staklim-malang.info] top=[463494] [y9jL2hQ1YN8] [Y3j8f6F4ZS-Ycusdt3xe9wAAATM] keep_alive=[0] [2022-11-19 22:55:43.656701] [R:Y3j8f6F4ZS-Ycusdt3xe9wAAATM] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-malang.info' ACCEPT:'/' ... show less	Hacking Web App Attack
hermawan	18 Nov 2022	[Sat Nov 19 08:16:48.078979 2022] [-:error] [pid 167319:tid 140697670026816] [client 95.108.213.55:5 ... show more[Sat Nov 19 08:16:48.078979 2022] [-:error] [pid 167319:tid 140697670026816] [client 95.108.213.55:52154] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Y3gugHw35jI6soNzFia6lAAAAT4"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[167439] [5NGJkzAqSyE] [Y3gugHw35jI6soNzFia6lAAAAT4] keep_alive=[0] [2022-11-19 08:16:48.078982] [R:Y3gugHw35jI6soNzFia6lAAAAT4] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'karangploso.jatim.bmkg.go.id' ACCEPT:'/' ... show less	Hacking Web App Attack
rh24	16 Nov 2022	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 95.108.213.55 (RU/Ru ... show more(apache-useragents) Failed apache-useragents trigger with match [redacted] from 95.108.213.55 (RU/Russia/95-108-213-55.spider.yandex.com) show less	Bad Web Bot
hermawan	15 Nov 2022	[Tue Nov 15 15:17:28.682909 2022] [-:error] [pid 53673:tid 140197721114176] [client 95.108.213.55:47 ... show more[Tue Nov 15 15:17:28.682909 2022] [-:error] [pid 53673:tid 140197721114176] [client 95.108.213.55:47416] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/sitemap/594-meteorologi/prakiraan-meteorologi/prakiraan-cuaca-jombang/1209-prakiraan-cuaca-jombang HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/sitemap/594-meteorologi/prakiraan-meteorologi/prakiraan-cuaca-jombang/1209-prakiraan-cuaca-jombang"] [unique_id "Y3NLGIzgHiQjLYaq2zqGxQAAAI8"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[53713] [E1+h/I1HKJs] [Y3NLGIzgHiQjLYaq2zqGxQAAAI8] k ... show less	Hacking Web App Attack
hermawan	14 Nov 2022	[Tue Nov 15 00:38:19.193812 2022] [-:error] [pid 52402:tid 139888441574976] [client 95.108.213.55:33 ... show more[Tue Nov 15 00:38:19.193812 2022] [-:error] [pid 52402:tid 139888441574976] [client 95.108.213.55:33054] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/informasi-angin-pelayaran-wilayah-jawa-timur/827-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-bojonegoro/kalender-tanam-katam-terpadu-kecamatan-ngasem-kabupaten-bojonegoro/kalender-tanam-katam-terpadu-kecamatan-ngasem-kabupaten-bojonegoro-tahun-2016-2017/..."] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/informasi-a ... show less	Hacking Web App Attack
hermawan	13 Nov 2022	[Mon Nov 14 01:00:17.719977 2022] [-:error] [pid 38081:tid 139860553672256] [client 95.108.213.55:59 ... show more[Mon Nov 14 01:00:17.719977 2022] [-:error] [pid 38081:tid 139860553672256] [client 95.108.213.55:59866] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/prakiraan-bulanan/3977-prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-provinsi-jawa-timur/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-provinsi-jawa-timur-tahun-2019/827-prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-jawa-timur-untuk-bulan-juli-2019-update-dari..."] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-b ... show less	Hacking Web App Attack
hermawan	13 Nov 2022	[Sun Nov 13 21:33:18.825398 2022] [-:error] [pid 52013:tid 140394704574016] [client 95.108.213.55:42 ... show more[Sun Nov 13 21:33:18.825398 2022] [-:error] [pid 52013:tid 140394704574016] [client 95.108.213.55:42486] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Klimatologi/Infografis/Infografis-Iklim/Bulanan/2020/10/Infografis-Bulanan_Prakiraan_Hujan_Bulan_DESEMBER_TAHUN_2020-Bulan_JANUARI-FEBRUARI_Tahun_2021_Update_Dari_Analisis_Bulan_Oktober_2020_di_Provinsi_Jawa_Timur-600.jpg HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Infografis/Infografis-Iklim/Bulanan/2020/10/Infografis-Bulanan_Prakiraan_Hujan_Bulan_DESEMBER_TAHUN_2020-Bulan_JANUARI-FEBRUARI_Ta ... show less	Hacking Web App Attack
hermawan	13 Nov 2022	[Sun Nov 13 17:31:45.283329 2022] [-:error] [pid 210960:tid 140668112307776] [client 95.108.213.55:3 ... show more[Sun Nov 13 17:31:45.283329 2022] [-:error] [pid 210960:tid 140668112307776] [client 95.108.213.55:36838] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Y3DHkcbTLnAX88-vTra9QAAAAHY"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[211000] [vlUcoadO0ww] [Y3DHkcbTLnAX88-vTra9QAAAAHY] keep_alive=[0] [2022-11-13 17:31:45.283332] [R:Y3DHkcbTLnAX88-vTra9QAAAAHY] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'karangploso.jatim.bmkg.go.id' ACCEPT:'/' ... show less	Hacking Web App Attack
hermawan	12 Nov 2022	[Sun Nov 13 03:55:56.582987 2022] [-:error] [pid 52085:tid 140594441459264] [client 95.108.213.55:58 ... show more[Sun Nov 13 03:55:56.582987 2022] [-:error] [pid 52085:tid 140594441459264] [client 95.108.213.55:58626] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexImages/3.0; +http://yandex.com/bots) request_line = GET /images/Klimatologi/Prakiraan/02-Prakiraan-Dasarian/Potensi_Banjir/Provinsi_Jawa_Timur/2021/03_Maret_2021/Das-II/02-Prakiraan_Dasarian_Daerah_Potensi_Banjir_di_Provinsi_Jawa_Timur_DASARIAN-I-Bulan-APRIL-Tahun-2021_update_20_Maret_2021.jpg HTTP/1.1"] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/02-Prakiraan-Dasarian/Potensi_Banjir/Provinsi_Jawa_Timur/2021/03_Maret_2021/Das-II/02-Prakiraan_Dasarian_Daerah ... show less	Hacking Web App Attack
hermawan	12 Nov 2022	[Sat Nov 12 22:34:41.338176 2022] [-:error] [pid 27422:tid 140349194245696] [client 95.108.213.55:35 ... show more[Sat Nov 12 22:34:41.338176 2022] [-:error] [pid 27422:tid 140349194245696] [client 95.108.213.55:35692] [client 95.108.213.55] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/2015-04-16-10-15-17/1527-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-gresik/kalender-tanam-katam-terpadu-kecamatan-wringinanom-kabupaten-gresik/kalender-tanam-katam-terpadu-kecamatan-wringinanom-kabupaten-gresik-tahun-2016-2017/2392-kalender-tanam-katam-..."] [severity "NOTICE"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/2015-04-16- ... show less	Hacking Web App Attack