JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 109.123.239.235

109.123.239.235 was found in our database!

This IP was reported 83 times. Confidence of Abuse is 24%: ?

24%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	vmi3124800.contaboserver.net
Domain Name	contabo.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 109.123.239.235

Whois 109.123.239.235

IP Abuse Reports for 109.123.239.235:

This IP address has been reported a total of 83 times from 12 distinct sources. 109.123.239.235 was first reported on March 5th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-08 20:00:52 (1 week ago)	HTTP access to suspicious file extension detected. Threat Score: 7.7/10 (HIGH). Confidence: 60%. CVS ... show more HTTP access to suspicious file extension detected. Threat Score: 7.7/10 (HIGH). Confidence: 60%. CVSS v3.1: 7.3/10 (High). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 87%. MITRE ATT&CK: T1071 (Application Layer Protocol). Tactic: TA0001. Freshness: Very Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 soc-yk	2026-05-30 22:42:11 (2 weeks ago)	Type: web_scanning Threat: unknown Risk: 100 Events: 227013 Evidence: - Automated hostile web probi ... show more Type: web_scanning Threat: unknown Risk: 100 Events: 227013 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified show less	Web App Attack
🇮🇩 soc-yk	2026-05-30 20:42:11 (2 weeks ago)	Type: suspicious_network_activity Threat: unknown Risk: 100 Events: 227013 Evidence: - Persistent s ... show more Type: suspicious_network_activity Threat: unknown Risk: 100 Events: 227013 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇮🇩 soc-yk	2026-05-29 15:54:11 (3 weeks ago)	Type: web_scanning Threat: unknown Risk: 100 Events: 151342 Evidence: - Automated hostile web probi ... show more Type: web_scanning Threat: unknown Risk: 100 Events: 151342 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified show less	Web App Attack
🇮🇩 soc-yk	2026-05-29 06:22:14 (3 weeks ago)	Type: suspicious_network_activity Threat: sensitive_configuration_enumerator Risk: 100 Events: 15134 ... show more Type: suspicious_network_activity Threat: sensitive_configuration_enumerator Risk: 100 Events: 151342 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified show less	Port Scan Hacking
🇮🇩 soc-yk	2026-05-28 14:22:12 (3 weeks ago)	Type: web_scanning Threat: public_web_exploitation_scanner Risk: 100 Events: 75671 Evidence: - Auto ... show more Type: web_scanning Threat: public_web_exploitation_scanner Risk: 100 Events: 75671 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Web App Attack
🇮🇩 soc-yk	2026-05-28 05:34:10 (3 weeks ago)	Type: suspicious_network_activity Threat: sensitive_configuration_enumerator Risk: 100 Events: 75671 ... show more Type: suspicious_network_activity Threat: sensitive_configuration_enumerator Risk: 100 Events: 75671 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇮🇩 Burayot	2026-05-28 04:09:57 (3 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 109.123.239.235 (SG/Singapore/vmi31 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 109.123.239.235 (SG/Singapore/vmi3124800.contaboserver.net): 1 in the last 3600 secs show less	Web App Attack
🇮🇩 soc-yk	2026-05-24 12:30:09 (3 weeks ago)	Type: exploitation_attempt Threat: persistent_high_risk_infrastructure Risk: 100 Events: 75671 Evid ... show more Type: exploitation_attempt Threat: persistent_high_risk_infrastructure Risk: 100 Events: 75671 Evidence: - Repeated exploitation attempts detected - Malicious infrastructure behavior observed show less	Web App Attack Hacking
🇮🇩 penjaga BRIN	2026-05-23 18:49:33 (3 weeks ago)	Web application attack	Web App Attack
🇮🇩 sockominfo	2026-05-23 10:00:43 (3 weeks ago)	Multiple Access to sensitive files in 60s, Access to sensitive configuration files detected., Access ... show more Multiple Access to sensitive files in 60s, Access to sensitive configuration files detected., Access to sensitive files detected w/ specific boundary.. Threat Score: 9.8/10 (CRITICAL). Confidence: 100%. CVSS v3.1: 10/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 99%. MITRE ATT&CK: T1210 (Exploitation of Remote Services). Tactic: TA0001. Freshness: Moderate. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 fazar	2026-05-23 08:01:46 (3 weeks ago)	crowdsecurity/http-crawl-non_statics on node: bdj03	Web App Attack Bad Web Bot
🇮🇩 sockominfo	2026-05-23 08:00:39 (3 weeks ago)	Multiple Access to sensitive files in 60s, Access to sensitive configuration files detected., Access ... show more Multiple Access to sensitive files in 60s, Access to sensitive configuration files detected., Access to sensitive files detected w/ specific boundary.. Threat Score: 9.8/10 (CRITICAL). Confidence: 100%. CVSS v3.1: 10/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 99%. MITRE ATT&CK: T1210 (Exploitation of Remote Services). Tactic: TA0001. Freshness: Fresh. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-23 07:00:12 (3 weeks ago)	Multiple Access to sensitive files in 60s. Threat Score: 8.1/10 (HIGH). Reported by TangerangKota-CS ... show more Multiple Access to sensitive files in 60s. Threat Score: 8.1/10 (HIGH). Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-05-22 21:00:40 (3 weeks ago)	Access to sensitive configuration files detected.. Threat Score: 5.6/10 (MEDIUM). Confidence: 40%. C ... show more Access to sensitive configuration files detected.. Threat Score: 5.6/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 2.9/10 (Low). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N. Bayesian Probability: 75%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack

Showing 1 to 15 of 83 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.114

🇪🇸 213.60.255.181

🇮🇩 202.145.0.61

🇮🇳 182.95.61.82

🇸🇬 172.253.84.216

🇸🇬 168.144.38.91

🇳🇱 160.119.69.14

🇷🇴 80.94.92.171

🇺🇸 57.141.20.45

🇺🇸 44.244.32.13

🇭🇰 8.217.193.233

🇰🇷 211.46.188.16

🇵🇰 153.117.13.90

🇺🇸 150.107.36.236

🇷🇺 104.28.156.66

🇧🇮 102.134.101.35

🇮🇹 91.80.128.127

🇱🇹 81.30.98.144

🇳🇱 45.148.10.152

🇺🇸 44.10.126.73