JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.234.246.116

89.234.246.116 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 3%: ?

ISP	RWD PROSPECT sp.z o.o.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS61154
Domain Name	prospect.pl
Country	🇵🇱 Poland
City	Czestochowa, Silesia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.234.246.116

Whois 89.234.246.116

IP Abuse Reports for 89.234.246.116:

This IP address has been reported a total of 4 times from 3 distinct sources. 89.234.246.116 was first reported on April 6th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-20 16:40:58 (1 week ago)	Captured JA4H: ge20n_0755824e4aff \| Log: 89.234.246.116 - - [20/Jun/2026:23:39:38 +0700] "GET /index ... show more Captured JA4H: ge20n_0755824e4aff \| Log: 89.234.246.116 - - [20/Jun/2026:23:39:38 +0700] "GET /index.php/prakiraan-bulanan/3876-prakiraan-potensi-banjir/prakiraan-potensi-banjir-di-propinsi-jawa-timur/prakiraan-daerah-potensi-banjir-provinsi-jawa-timur-tahun-2018/581-prakiraan-bulanan-daerah-potensi-banjir-di-provinsi-jawa-timur-bulan-maret-tahun-2019-update-10-desember-2018 HTTP/2.0" 200 26401 "-" "Mozilla/5.0 (Linux; Android 11; Pixel 5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4812.0 Mobile Safari/537.36" ge20n_sec-ch-ua,sec-ch-ua-mobile,sec-ch-ua-platform,upgrade-insecure-requests,user-agent,accept,sec-fetch-site,sec-fetch-mode,sec-fetch-user,sec-fetch-dest,accept-encoding,accept-language,save-data,host... ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-05 01:53:07 (3 weeks ago)	[Fri Jun 05 08:53:02.294956 2026] [security2:error] [pid 639512:tid 140063087224512] [client 89.234. ... show more [Fri Jun 05 08:53:02.294956 2026] [security2:error] [pid 639512:tid 140063087224512] [client 89.234.246.116:57098] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561307-infografis-perubahan-iklim-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561307-infografis-perubahan-iklim-jawa-timur"] [unique_id "aiIr_jKra7Zu8ktRZm_NNAAAVgs"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[639524] [Zh2+67cdSh8] [aiIr_jKra7Zu8ktRZm_NNAAAVgs] keep_alive=[1] [2026- ... show less	Email Spam Hacking
🇺🇸 MPL	2026-04-24 03:14:51 (2 months ago)	tcp/443 (23 or more attempts)	Port Scan
🇳🇱 maxxsense	2026-04-06 21:11:07 (2 months ago)	89.234.246.116 (PL/Poland/-), 12 distributed imapd attacks on account [redacted]	Brute-Force

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 122.35.192.33

🇹🇼 198.235.24.86

🇺🇸 168.245.103.229

🇮🇳 103.180.212.135

🇩🇪 92.246.90.200

🇱🇻 81.30.98.144

🇧🇪 34.140.222.206

🇳🇱 20.71.254.235

🇨🇳 14.103.102.130

🇨🇳 182.242.169.87

🇲🇦 160.177.12.92

🇺🇸 149.18.184.70

🇭🇰 119.28.9.170

🇧🇩 114.130.209.14

🇨🇳 111.40.181.23

🇨🇳 111.33.120.234

🇵🇱 91.150.202.96

🇳🇱 91.92.42.7

🇩🇪 69.5.169.189

🇲🇽 38.49.148.70