JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 109.248.200.6

109.248.200.6 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	Contel OOO
Usage Type	Data Center/Web Hosting/Transit
ASN	AS204490
Domain Name	contell.ru
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 109.248.200.6

Whois 109.248.200.6

IP Abuse Reports for 109.248.200.6:

This IP address has been reported a total of 24 times from 19 distinct sources. 109.248.200.6 was first reported on January 1st 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-01-02 10:54:22 (5 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇨🇭 backslash	2025-12-28 18:12:03 (5 months ago)		Web Spam
🇬🇧 Steve	2025-10-25 13:29:29 (7 months ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
Anonymous	2025-10-12 23:33:44 (8 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇵🇱 sefinek.net	2025-08-24 15:28:49 (9 months ago)	Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-06-23 20:26:02 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 109.248.200.6 (vpn.greensight.ru): 1 in the las ... show more (mod_security) mod_security (id:210730) triggered by 109.248.200.6 (vpn.greensight.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 23 16:25:55.993768 2025] [security2:error] [pid 407904:tid 407904] [client 109.248.200.6:32855] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ThEvIlLaGeArTcEnTeR.CoM\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thevillageartcenter.com"] [uri "/mailto:[email protected]"] [unique_id "aFm4U1Oqwc7hckSd_79b4QAAAA0"], referer: http://thevillageartcenter.com/contact.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-06-20 04:09:08 (1 year ago)	Wordpress malicious attack:[octaxmlrpc]	Web App Attack
🇩🇪 SchenklServices	2025-03-26 03:44:16 (1 year ago)	Mar 26 04:40:51 tv sshd[909983]: Failed password for root from 109.248.200.6 port 55029 ssh2 Mar 26 ... show more Mar 26 04:40:51 tv sshd[909983]: Failed password for root from 109.248.200.6 port 55029 ssh2 Mar 26 04:40:49 tv sshd[909983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.248.200.6 user=root Mar 26 04:40:51 tv sshd[909983]: Failed password for root from 109.248.200.6 port 55029 ssh2 Mar 26 04:44:13 tv sshd[910307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.248.200.6 user=root Mar 26 04:44:15 tv sshd[910307]: Failed password for root from 109.248.200.6 port 1647 ssh2 ... show less	Brute-Force SSH
🇳🇱 SchorelWeb	2025-03-26 03:02:28 (1 year ago)	Cluster member (Omitted) (FR/France/-) said, DENY 109.248.200.6, Reason:[(sshd) Failed SSH login fro ... show more Cluster member (Omitted) (FR/France/-) said, DENY 109.248.200.6, Reason:[(sshd) Failed SSH login from 109.248.200.6 (RU/Russia/vpn.greensight.ru): 2 in the last (Omitted)] show less	Brute-Force SSH
🇩🇪 SchenklServices	2025-03-26 02:33:22 (1 year ago)	Mar 26 03:23:04 tv sshd[902091]: Failed password for root from 109.248.200.6 port 58807 ssh2 Mar 26 ... show more Mar 26 03:23:04 tv sshd[902091]: Failed password for root from 109.248.200.6 port 58807 ssh2 Mar 26 03:28:16 tv sshd[902697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.248.200.6 user=root Mar 26 03:28:19 tv sshd[902697]: Failed password for root from 109.248.200.6 port 33815 ssh2 Mar 26 03:33:20 tv sshd[903318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.248.200.6 user=root Mar 26 03:33:21 tv sshd[903318]: Failed password for root from 109.248.200.6 port 61415 ssh2 ... show less	Brute-Force SSH
🇹🇷 rtbh.com.tr	2025-03-25 20:48:36 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2025-03-25 12:44:41 (1 year ago)	109.248.200.6 (RU/Russia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 109.248.200.6 (RU/Russia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Mar 25 08:44:37 server2 sshd[2032]: Failed password for root from 109.248.200.6 port 41525 ssh2 Mar 25 08:44:39 server2 sshd[2051]: Failed password for root from 45.84.107.33 port 2696 ssh2 Mar 25 08:44:40 server2 sshd[2058]: Failed password for root from 54.36.176.100 port 42539 ssh2 Mar 25 08:44:40 server2 sshd[2056]: Failed password for root from 192.42.116.26 port 59584 ssh2 Mar 25 08:44:31 server2 sshd[1833]: Failed password for root from 54.36.121.173 port 48141 ssh2 IP Addresses Blocked: show less	Brute-Force
🇹🇷 rtbh.com.tr	2025-03-24 20:48:37 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2025-03-24 02:43:31 (1 year ago)	Mar 23 23:43:30 logopedia-1vcpu-1gb-nyc1-01 sshd[2462626]: Failed password for root from 109.248.200 ... show more Mar 23 23:43:30 logopedia-1vcpu-1gb-nyc1-01 sshd[2462626]: Failed password for root from 109.248.200.6 port 62913 ssh2 ... show less	Brute-Force SSH
🇩🇪 dwmp	2025-03-23 23:14:06 (1 year ago)	2025-03-24T00:10:16.961819news0.dwmp.it sshd[25278]: pam_unix(sshd:auth): authentication failure; lo ... show more 2025-03-24T00:10:16.961819news0.dwmp.it sshd[25278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vpn.greensight.ru user=root 2025-03-24T00:10:18.824044news0.dwmp.it sshd[25278]: Failed password for invalid user root from 109.248.200.6 port 58511 ssh2 2025-03-24T00:14:04.539632news0.dwmp.it sshd[25897]: User root from vpn.greensight.ru not allowed because not listed in AllowUsers ... show less	Brute-Force SSH

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a04:c300:400::1a9

🇨🇳 42.54.239.113

🇹🇼 198.235.24.101

🇳🇱 176.65.149.178

🇨🇳 175.148.74.174

🇩🇪 69.5.169.56

🇺🇸 65.110.40.62

🇮🇳 20.244.95.134

🇺🇸 20.29.90.34

🇺🇸 2602:80d:1007::3d

🇨🇳 223.90.122.68

🇮🇩 222.124.177.148

🇬🇪 178.217.74.104

🇮🇳 122.185.146.18

🇨🇳 120.26.32.101

🇱🇹 77.90.185.80

🇪🇸 47.63.216.114

🇵🇹 45.93.45.68

🇺🇸 44.205.4.90

🇰🇪 197.248.207.139