JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.46.242.193

89.46.242.193 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 20%: ?

20%

ISP	HostRoyale Technologies Pvt Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203020
Domain Name	hostroyale.com
Country	🇪🇸 Spain
City	El Prat de Llobregat, Catalonia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.46.242.193

Whois 89.46.242.193

IP Abuse Reports for 89.46.242.193:

This IP address has been reported a total of 8 times from 4 distinct sources. 89.46.242.193 was first reported on June 1st 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 A000Z	2026-06-17 19:38:02 (1 day ago)	Fail2Ban: 89.46.242.193 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5. ... show more Fail2Ban: 89.46.242.193 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (iPhone; CPU iPhone OS 11_0 like Mac OS X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.5073.1852 Mobile Safari/537.36 show less	Bad Web Bot
🇩🇪 Phenix Info	2026-06-11 04:59:30 (1 week ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 02:03:39 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:01:42.050884 2026] [security2:error] [pid 17784:tid 17792] [client 89.46.242.193:42135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kettlehill.com"] [uri "/wp-config.php"] [unique_id "ahzoBqvsDSinaX4bLbQoLQAAAUU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Phenix Info	2026-02-06 05:56:57 (4 months ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 06:02:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 01:02:27.377517 2025] [security2:error] [pid 26090:tid 26451] [client 89.46.242.193:37615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kettlehill.com"] [uri "/.htaccess"] [unique_id "aS0vcwqR0geke5MRGl4OpwAAAIU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-01 16:47:09 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 12:46:53.767624 2025] [security2:error] [pid 30035:tid 30054] [client 89.46.242.193:35291] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kettlehill.kettlehill.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.kettlehill.com"] [uri "/index.php.bak"] [unique_id "aN1a_UIIbSaCPuPKh5hnzwAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-01 06:48:49 (10 months ago)	(mod_security) mod_security (id:226830) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:226830) triggered by 89.46.242.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 02:47:06.925960 2025] [security2:error] [pid 3331447:tid 3331474] [client 89.46.242.193:38553] ModSecurity: Access denied with code 403 (phase 1). Operator GE matched 1 at ARGS_GET. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6392"] [id "226830"] [rev "2"] [msg "COMODO WAF: Open redirect vulnerability in the Redirect function in the StageShow plugin before 5.0.9 for WordPress (CVE-2015-5461)\|\|ftp.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "ftp.kettlehill.com"] [uri "/wp-content/plugins/stageshow/stageshow_redirect.php"] [unique_id "aIxi6lSZjg6lcpTf51ZjnQAAAZc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-01 03:20:02 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇵 103.130.207.227

🇹🇼 111.70.23.231

🇱🇹 45.227.254.170

🇺🇸 45.8.19.52

🇺🇿 5.182.26.69

🇫🇮 147.185.133.160

🇺🇸 91.193.232.133

🇱🇹 62.60.130.60

🇨🇳 61.170.156.39

🇷🇴 2.57.122.177

🇮🇳 182.95.185.14

🇧🇷 177.11.17.179

🇺🇸 172.174.46.118

🇦🇺 170.64.143.34

🇹🇷 91.151.88.168

🇱🇹 81.30.98.158

🇺🇸 71.6.147.254

🇺🇸 40.124.175.155

🇺🇸 91.230.168.155

🇳🇱 45.198.224.120