JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 109.252.156.24

109.252.156.24 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 26%: ?

26%

ISP	Moscow Local Telephone Network (OAO MGTS)
Usage Type	Fixed Line ISP
ASN	AS25513
Hostname(s)	109-252-156-24.dynamic.spd-mgts.ru
Domain Name	spd-mgts.ru
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 109.252.156.24

Whois 109.252.156.24

IP Abuse Reports for 109.252.156.24:

This IP address has been reported a total of 16 times from 6 distinct sources. 109.252.156.24 was first reported on May 17th 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-22 22:09:24 (15 hours ago)	2026-06-23 00:05:14,910 fail2ban.actions [1403250]: NOTICE [apache-auth] Ban 109.252.156.24 ... show more 2026-06-23 00:05:14,910 fail2ban.actions [1403250]: NOTICE [apache-auth] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-06-18 22:10:44 (4 days ago)	2026-06-14 00:07:11,919 fail2ban.actions [203556]: NOTICE [apache-botsearch] Ban 109.252.156 ... show more 2026-06-14 00:07:11,919 fail2ban.actions [203556]: NOTICE [apache-botsearch] Ban 109.252.156.24 2026-06-14 00:07:11,919 fail2ban.actions [203556]: NOTICE [apache-botsearch] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-06-10 22:04:05 (1 week ago)	2026-06-07 00:01:44,399 fail2ban.actions [1128]: NOTICE [apache-auth] Ban 109.252.156.24 202 ... show more 2026-06-07 00:01:44,399 fail2ban.actions [1128]: NOTICE [apache-auth] Ban 109.252.156.24 2026-06-08 00:01:46,787 fail2ban.actions [1104]: NOTICE [apache-auth] Ban 109.252.156.24 2026-06-10 00:13:02,521 fail2ban.actions [1080]: NOTICE [apache-botsearch] Ban 109.252.156.24 2026-06-07 00:01:44,399 fail2ban.actions [1128]: NOTICE [apache-auth] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-06-08 22:14:31 (2 weeks ago)	2026-06-07 00:01:44,399 fail2ban.actions [1128]: NOTICE [apache-auth] Ban 109.252.156.24 202 ... show more 2026-06-07 00:01:44,399 fail2ban.actions [1128]: NOTICE [apache-auth] Ban 109.252.156.24 2026-06-08 00:01:46,787 fail2ban.actions [1104]: NOTICE [apache-auth] Ban 109.252.156.24 2026-06-07 00:01:44,399 fail2ban.actions [1128]: NOTICE [apache-auth] Ban 109.252.156.24 2026-06-08 00:01:46,787 fail2ban.actions [1104]: NOTICE [apache-auth] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-06-01 22:11:24 (3 weeks ago)	2026-05-31 00:07:48,675 fail2ban.actions [264721]: NOTICE [apache-auth] Ban 109.252.156.24 . ... show more 2026-05-31 00:07:48,675 fail2ban.actions [264721]: NOTICE [apache-auth] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-05-30 22:21:55 (3 weeks ago)	2026-05-31 00:07:48,675 fail2ban.actions [264721]: NOTICE [apache-auth] Ban 109.252.156.24 . ... show more 2026-05-31 00:07:48,675 fail2ban.actions [264721]: NOTICE [apache-auth] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-05-30 12:01:05 (3 weeks ago)	2026-05-26 00:03:36,534 fail2ban.actions [1070]: NOTICE [apache-auth] Ban 109.252.156.24 ...	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇩🇪 london2038.com	2026-05-23 16:54:39 (4 weeks ago)	Malformed or malicious web request 109.252.156.24 - - [23/May/2026:18:54:38 +0200] "POST /livewire/u ... show more Malformed or malicious web request 109.252.156.24 - - [23/May/2026:18:54:38 +0200] "POST /livewire/update HTTP/1.1" 404 4187 "https://account.<REDACTED>/signup" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2775.46 Safari/537.36" show less	Hacking Web App Attack
🇱🇻 garmtech.com	2026-05-23 15:27:33 (4 weeks ago)	IM360 WAF: Dangerous PHP functions in HTTP headers MV:https://atraisfoto.lv/wp-content/plugins/wp-fi ... show more IM360 WAF: Dangerous PHP functions in HTTP headers MV:https://atraisfoto.lv/wp-content/plugins/wp-file-upload/wfu_file_downloader.php?file=p&ticket=H&handler=dboption&session_legacy=1&... show less	Web App Attack
🇱🇻 garmtech.com	2026-05-23 15:27:31 (4 weeks ago)	IM360 WAF: Object Injection in PHPMailer library in WordPress 3.7 to 5.7.1 (CVE-2020-36326)	Web App Attack
🇸🇮 administrator	2026-05-22 02:55:45 (1 month ago)	2026-05-22 04:55:44,978 fail2ban.actions [1062]: NOTICE [apache-auth] Ban 109.252.156.24 202 ... show more 2026-05-22 04:55:44,978 fail2ban.actions [1062]: NOTICE [apache-auth] Ban 109.252.156.24 2026-05-22 04:55:44,993 fail2ban.actions [1062]: NOTICE [error-bots] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇨🇭 4server	2026-05-19 18:53:38 (1 month ago)	[TueMay1920:53:31.7366452026][security2:error][pid2567296:tid2567321][client109.252.156.24:0]ModSecu ... show more [TueMay1920:53:31.7366452026][security2:error][pid2567296:tid2567321][client109.252.156.24:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"motogiro.com\"][uri\"/\"][unique_id\"agyxq4P6ZKf1URU15oJLsgAAABc\"] show less	Hacking Web App Attack
🇸🇮 administrator	2026-05-18 20:02:37 (1 month ago)	2026-05-17 22:47:18,485 fail2ban.actions [1088]: NOTICE [apache-auth] Ban 109.252.156.24 202 ... show more 2026-05-17 22:47:18,485 fail2ban.actions [1088]: NOTICE [apache-auth] Ban 109.252.156.24 2026-05-17 22:47:18,485 fail2ban.actions [1088]: NOTICE [apache-auth] Ban 109.252.156.24 2026-05-18 22:02:36,951 fail2ban.actions [1088]: NOTICE [apache-auth] Ban 109.252.156.24 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
Anonymous	2026-05-18 08:28:04 (1 month ago)	Malicious activity	Bad Web Bot Web App Attack
🇨🇭 4server	2026-05-18 01:35:48 (1 month ago)	[MonMay1803:35:45.4135372026][security2:error][pid1452962:tid1452987][client109.252.156.24:0]ModSecu ... show more [MonMay1803:35:45.4135372026][security2:error][pid1452962:tid1452987][client109.252.156.24:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"motogiro.com\"][uri\"/bitrix/tools/spread.php\"][unique_id\"agps8Y0WadOVRnm-qSYofwAAAJc\"] show less	Hacking Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.242.3.195

🇹🇼 128.14.229.150

🇬🇧 123.58.207.155

🇮🇹 72.146.1.254

🇺🇸 66.132.172.102

🇮🇹 45.91.20.84

🇰🇷 211.169.212.206

🇺🇸 144.202.92.17

🇹🇼 128.14.237.120

🇫🇷 85.217.140.18

🇺🇸 65.49.1.212

🇺🇸 34.63.160.174

🇫🇷 207.180.226.155

🇩🇪 164.92.244.132

🇩🇪 159.65.126.58

🇨🇳 115.191.66.84

🇳🇱 91.92.40.217

🇷🇴 80.94.92.182

🇺🇸 64.62.197.157

🇺🇸 35.225.19.88