JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.239.157.171

89.239.157.171 was found in our database!

This IP was reported 100 times. Confidence of Abuse is 0%: ?

ISP	Rostelecom
Usage Type	Fixed Line ISP
ASN	AS12389
Hostname(s)	59ef9dab.dynamic.mv.ru
Domain Name	rt.ru
Country	🇷🇺 Russian Federation
City	Ulyanovsk, Ulyanovsk

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.239.157.171

Whois 89.239.157.171

IP Abuse Reports for 89.239.157.171:

This IP address has been reported a total of 100 times from 37 distinct sources. 89.239.157.171 was first reported on February 9th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-06 10:23:23 (3 months ago)	FortiWeb WAF: 40 attacks detected. Threat Score: 11800. Types: Client Management(20), GEO IP(20). Or ... show more FortiWeb WAF: 40 attacks detected. Threat Score: 11800. Types: Client Management(20), GEO IP(20). Origin: Russian Federation. show less	Web App Attack
🇳🇱 EGP Abuse Dept	2026-03-06 06:36:51 (3 months ago)	Scanning for web/db/file exploits on dehaan.nl	SQL Injection Bad Web Bot Web App Attack
Anonymous	2026-03-06 01:07:11 (3 months ago)	89.239.157.171 - - [06/Mar/2026:01:07:10 +0000] "POST /modules/simpleimportproduct/send.php?ajax=1&s ... show more 89.239.157.171 - - [06/Mar/2026:01:07:10 +0000] "POST /modules/simpleimportproduct/send.php?ajax=1&stepTwo=1&file=1&import_settings_name=file.zip&zip_file=1 HTTP/1.1" 404 1194 "https://shop.gassycat.be/en/" "Mozilla/5.0 (X11; Linux i686; rv:51.0) Gecko/20100101 Firefox/51.0" ... show less	Bad Web Bot Web App Attack
🇩🇪 Didier Lagaert	2026-03-05 20:35:06 (3 months ago)	liw-Joomla User : try to access forms...	Hacking
🇪🇸 el-brujo	2026-03-05 15:57:46 (3 months ago)	Cloudflare WAF: Request Path: /admin/plugins/ckeditor/fm/connectors/php/upload.php Request Query: ?T ... show more Cloudflare WAF: Request Path: /admin/plugins/ckeditor/fm/connectors/php/upload.php Request Query: ?Type=Image Host: foro.elhacker.net userAgent: Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2872.65 Safari/537.36 Action: log Source: firewallManaged ASN Description: ROSTELECOM-AS PJSC Rostelecom. Technical Team Country: RU Method: POST Timestamp: 2026-03-05T15:57:46Z ruleId: 0f2da91cec674eb58006929e824b817c. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 oralunal	2026-03-05 13:09:24 (3 months ago)	IP banned by Fail2Ban in jail suss access.log ah-app-1 ...	Bad Web Bot Web App Attack
🇨🇦 zXero	2026-03-05 08:00:17 (3 months ago)	Fail2Ban automatic report - jail: web-exploit	Brute-Force SSH DDoS Attack
🇩🇪 conseilgouz	2026-03-05 00:45:20 (3 months ago)	vew-Joomla User : try to access forms...	Hacking
🇪🇸 el-brujo	2026-03-05 00:41:39 (3 months ago)	Cloudflare WAF: Request Path: /admin/plugins/ckeditor/fm/connectors/php/upload.php Request Query: ?T ... show more Cloudflare WAF: Request Path: /admin/plugins/ckeditor/fm/connectors/php/upload.php Request Query: ?Type=Image Host: foro.elhacker.net userAgent: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 5.1; WOW64; Trident/4.0) Action: log Source: firewallManaged ASN Description: ROSTELECOM-AS PJSC Rostelecom. Technical Team Country: RU Method: POST Timestamp: 2026-03-05T00:41:39Z ruleId: 0f2da91cec674eb58006929e824b817c. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇬🇧 poundawebsiteltd	2026-03-05 00:27:16 (3 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 89.239.157.171 - - [05/Mar/2026:0 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 89.239.157.171 - - [05/Mar/2026:00:27:13 +0000] GET / HTTP/1.1 403 158 - Mozilla/5.0 (X11; Linux x86_64; rv:51.0) Gecko/20100101 Firefox/51.0 show less	Web App Attack
🇺🇸 CBJ	2026-03-04 14:44:09 (3 months ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇩🇪 sverson	2026-03-04 12:19:33 (3 months ago)	Abusive use detected / Unauthorized connection attempt	Hacking Brute-Force
Anonymous	2026-03-04 10:20:49 (3 months ago)	FortiWeb WAF: 30 attacks detected. Threat Score: 16600. Types: Client Management(15), GEO IP(15). Or ... show more FortiWeb WAF: 30 attacks detected. Threat Score: 16600. Types: Client Management(15), GEO IP(15). Origin: Russian Federation. show less	Web App Attack
🇪🇸 el-brujo	2026-03-04 08:04:55 (3 months ago)	Cloudflare WAF: Request Path: /admin/plugins/ckeditor/fm/connectors/php/upload.php Request Query: ?T ... show more Cloudflare WAF: Request Path: /admin/plugins/ckeditor/fm/connectors/php/upload.php Request Query: ?Type=Image Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 6.1; rv:47.0) Gecko/20100101 Firefox/47.0 Action: log Source: firewallManaged ASN Description: ROSTELECOM-AS PJSC Rostelecom. Technical Team Country: RU Method: POST Timestamp: 2026-03-04T08:04:55Z ruleId: 0f2da91cec674eb58006929e824b817c. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇳🇱 Roderic	2026-03-04 02:00:04 (3 months ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot

Showing 1 to 15 of 100 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 178.104.133.247

🇫🇷 92.103.134.183

🇨🇳 58.57.170.206

🇰🇷 43.164.133.93

🇻🇳 14.225.7.70

🇮🇪 3.254.47.185

🇬🇧 161.35.35.172

🇮🇳 128.185.249.46

🇹🇼 128.14.236.41

🇨🇳 113.31.115.157

🇹🇼 111.70.43.169

🇦🇪 92.97.2.253

🇮🇩 69.5.7.218

🇱🇹 45.227.254.170

🇰🇷 221.156.126.1

🇺🇸 195.184.76.187

🇺🇸 195.184.76.102

🇺🇸 137.184.228.138

🇸🇬 118.139.164.171

🇦🇺 109.123.227.128