JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 206.189.146.42

206.189.146.42 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 20%: ?

20%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 206.189.146.42

Whois 206.189.146.42

IP Abuse Reports for 206.189.146.42:

This IP address has been reported a total of 41 times from 31 distinct sources. 206.189.146.42 was first reported on December 16th 2020, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 trentwiles.com	2026-05-03 01:24:53 (1 month ago)	Unauthorized connection attempt detected from IP address 206.189.146.42 to port 80 [SYD]	Port Scan
🇳🇿 Antinson	2026-05-02 09:13:10 (1 month ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇩🇪 edena	2026-05-02 08:55:55 (1 month ago)	206.189.146.42 - - [02/May/2026:10:55:54 +0200] "GET /.env HTTP/1.1" 403 359 "-" "Mozilla/5.0 (Windo ... show more 206.189.146.42 - - [02/May/2026:10:55:54 +0200] "GET /.env HTTP/1.1" 403 359 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 206.189.146.42 - - [02/May/2026:10:55:54 +0200] "GET /config/.env HTTP/1.1" 403 359 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 206.189.146.42 - - [02/May/2026:10:55:55 +0200] "GET /.env.production HTTP/1.1" 403 359 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" ... show less	Web App Attack Bad Web Bot
🇧🇪 boxed-it	2026-05-01 09:35:26 (1 month ago)	GET /.git/HEAD (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇬🇧 Smish	2026-04-30 09:34:07 (1 month ago)	HONEYPOT HIT --> Fail2ban time=1777541646 log=2026-04-30T10:34:06+01:00 ip=206.189.146.42 host=mb7iv ... show more HONEYPOT HIT --> Fail2ban time=1777541646 log=2026-04-30T10:34:06+01:00 ip=206.189.146.42 host=mb7ivr-6m.router.lon.44net.co.uk method=GET uri="/env" status=404 ua="Mozilla/5.0" ref="-" rid=d1f7a9a204c50d6fe3f3c2deac4e8efa show less	Web App Attack
🇺🇸 LSPCCU	2026-04-29 22:29:51 (1 month ago)	TSEC Honeypot Network report. Threat score: 100/100. Categories: Hacking. Honeypot: ssh-telnet, cowr ... show more TSEC Honeypot Network report. Threat score: 100/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: Attacker IP 206. show less	Hacking
🇺🇸 aks4226	2026-04-29 21:24:15 (1 month ago)	Attacking common web applications.	Web App Attack
🇫🇷 dynamix	2026-04-28 21:51:53 (1 month ago)	Multiple WAF Violations	Web App Attack
🇩🇪 Little Iguana	2021-01-06 01:19:06 (5 years ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇩🇪 cerberusinformatica	2021-01-03 23:51:26 (5 years ago)	206.189.146.42 - - [04/Jan/2021:05:50:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1907 "-" "Mozilla/ ... show more 206.189.146.42 - - [04/Jan/2021:05:50:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1907 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.146.42 - - [04/Jan/2021:05:51:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1905 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.146.42 - - [04/Jan/2021:05:51:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1903 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... show less	Web App Attack
Samuel K	2021-01-03 00:30:04 (5 years ago)	Web scan/attack	Port Scan Web App Attack
🇬🇧 Bytemark	2021-01-03 00:21:34 (5 years ago)	206.189.146.42 - - [03/Jan/2021:05:21:26 +0000] "GET /wp-login.php HTTP/1.1" 200 2942 "-" "Mozilla/5 ... show more 206.189.146.42 - - [03/Jan/2021:05:21:26 +0000] "GET /wp-login.php HTTP/1.1" 200 2942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.146.42 - - [03/Jan/2021:05:21:29 +0000] "POST /wp-login.php HTTP/1.1" 200 3034 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.146.42 - - [03/Jan/2021:05:21:33 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" show less	Brute-Force Web App Attack
🇺🇸 octageeks.com	2021-01-03 00:07:39 (5 years ago)	Wordpress malicious attack:[octausername]	Web App Attack
🇩🇪 nehost.de	2021-01-02 23:21:19 (5 years ago)	206.189.146.42 is unauthorized and has been banned by fail2ban	Brute-Force Web App Attack
🇫🇷 sololinux.es	2021-01-02 08:10:59 (5 years ago)	206.189.146.42 - - [02/Jan/2021:14:10:58 +0100] "POST /wp-login.php HTTP/1.0" 200 4874 "-" "Mozilla/ ... show more 206.189.146.42 - - [02/Jan/2021:14:10:58 +0100] "POST /wp-login.php HTTP/1.0" 200 4874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.136

🇮🇳 143.110.247.221

🇨🇳 118.145.144.95

🇫🇷 85.217.140.16

🇬🇧 31.14.254.42

🇭🇰 199.45.154.116

🇧🇷 179.111.185.65

🇩🇪 167.94.146.56

🇩🇪 167.94.146.52

🇺🇸 162.216.150.123

🇵🇰 153.117.15.162

🇺🇸 147.185.132.121

🇵🇭 118.193.72.187

🇺🇸 69.118.232.13

🇺🇸 40.124.173.234

🇬🇧 35.203.211.71

🇬🇧 35.203.210.10

🇰🇷 20.214.145.16

🇺🇸 18.189.74.1

🇺🇸 135.119.73.164