JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 109.248.49.75

109.248.49.75 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 0%: ?

ISP	Biterika Grupp OOO
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35048
Domain Name	biterika.com
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 109.248.49.75

Whois 109.248.49.75

IP Abuse Reports for 109.248.49.75:

This IP address has been reported a total of 29 times from 13 distinct sources. 109.248.49.75 was first reported on September 30th 2022, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-01-17 18:01:50 (4 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 20-01.109.248.49.75.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 20-01.109.248.49.75.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2025-12-10 19:37:13 (5 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇱🇻 garmtech.com	2025-12-08 15:46:15 (6 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇱🇻 garmtech.com	2025-12-08 02:56:27 (6 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 04-56.109.248.49.75.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 04-56.109.248.49.75.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇵🇱 sefinek.net	2025-12-06 08:43:46 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 MAGIC	2025-12-05 02:09:58 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇵🇱 sefinek.net	2025-12-04 06:05:03 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-22 07:24:03 (6 months ago)	(mod_security) mod_security (id:210831) triggered by 109.248.49.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 109.248.49.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 22 02:23:57.815884 2025] [security2:error] [pid 15012:tid 15012] [client 109.248.49.75:42221] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|backstore.com\|F\|4"] [data "a href="] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "backstore.com"] [uri "/"] [unique_id "aSFlDYYJPLBxEPhpBExL2wAAAAc"], referer: https://cleanuri.com/vGkW6V show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 19:02:14 (6 months ago)	FPROCO WEBEXPLOIT 109.248.49.75 (109.248.49.75)	Web App Attack
🇨🇭 backslash	2025-11-12 14:20:23 (6 months ago)	block ruleset 486D2EE5E731CC049D1E480D68D04DFFE28AADF1	Bad Web Bot
🇵🇱 sefinek.net	2025-10-13 22:54:53 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-07-29 18:18:10 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇬🇧 Steve	2025-06-27 16:33:51 (11 months ago)	Excessive crawling - not obeying robots.txt	Bad Web Bot
🇵🇱 sefinek.net	2025-06-11 18:05:22 (11 months ago)	Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇲🇾 syokadmin	2025-03-02 18:34:49 (1 year ago)	(imapd) Failed IMAP login from 109.248.49.75 (RU/Russia/-): 3 in the last 3600 secs	Brute-Force

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.36

🇺🇸 172.212.160.76

🇩🇪 167.94.146.51

🇮🇳 103.208.105.128

🇳🇱 45.148.10.157

🇺🇸 34.138.122.130

🇺🇸 34.26.71.245

🇺🇸 216.33.116.70

🇳🇱 155.212.37.167

🇺🇸 144.225.124.11

🇩🇪 116.202.96.3

🇹🇼 104.199.184.109

🇩🇪 69.5.169.28

🇳🇱 45.148.10.141

🇨🇳 42.227.34.136

🇬🇧 35.203.211.247

🇬🇧 34.153.177.194

🇸🇬 217.15.167.39

🇸🇪 195.178.191.5

🇧🇷 185.100.215.213