JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.196.19

173.239.196.19 was found in our database!

This IP was reported 60 times. Confidence of Abuse is 0%: ?

ISP	Avast Software
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	avast.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.196.19

Whois 173.239.196.19

IP Abuse Reports for 173.239.196.19:

This IP address has been reported a total of 60 times from 27 distinct sources. 173.239.196.19 was first reported on October 6th 2023, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-03 04:36:57 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 23:36:52.638795 2026] [security2:error] [pid 8905:tid 8905] [client 173.239.196.19:42307] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|wisdomsco.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "wisdomsco.com"] [uri "/images/stories/themes.php"] [unique_id "aaZlZM0wF_sTVitEtYYNVgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-03-02 23:36:47 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-03-02 21:42:31 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 16:42:23.042825 2026] [security2:error] [pid 21253:tid 21253] [client 173.239.196.19:21777] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|stsis.me\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "stsis.me"] [uri "/images/stories/themes.php"] [unique_id "aaYEP1CoBw5r3cDoHnkEOwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 artful	2026-02-23 13:17:00 (3 months ago)	Excessive errors, high load and multiple hits per second	Web App Attack
🇬🇧 consul.to	2026-02-23 11:18:21 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-02-23 10:44:39 (3 months ago)	[redacted] 173.239.196.19 - - [23/Feb/2026:11:44:31 +0100] "GET /wp-admin/user/ HTTP/1.1" 404 236 "- ... show more [redacted] 173.239.196.19 - - [23/Feb/2026:11:44:31 +0100] "GET /wp-admin/user/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 173.239.196.19 - - [23/Feb/2026:11:44:34 +0100] "GET /admin/controller/extension/extension/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 173.239.196.19 - - [23/Feb/2026:11:44:34 +0100] "GET /admin/editor/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" [redacted] 173.239.196.19 - - [23/Feb/2026:11:44:34 +0100] "GET /admin/images/slider/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" [redacted] 173.239.196.19 - - [23/Feb/2026:11:44:34 +0100] "GET /admin/tmp/ HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 05:52:00 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 00:51:52.699115 2026] [security2:error] [pid 9944:tid 9944] [client 173.239.196.19:26037] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|von-s.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "von-s.com"] [uri "/images/stories/themes.php"] [unique_id "aZvq-OiYxzeGSRbtQAi5OAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 04:34:03 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 173.239.196.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 23:33:55.871484 2026] [security2:error] [pid 14260:tid 14260] [client 173.239.196.19:48701] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|deploy6tharmy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "deploy6tharmy.com"] [uri "/images/stories/themes.php"] [unique_id "aZvYs5brYL1_GO0jKcUZJwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2026-02-22 20:12:49 (3 months ago)	C1: Web Attack GET /admin.php	Web Spam Hacking Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-02-21 18:59:53 (3 months ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇳🇿 Antinson	2026-02-21 17:37:03 (3 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇬🇧 consul.to	2026-02-18 16:44:55 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-02-17 18:05:59 (3 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: SG, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: SG, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-02-17 14:50:57 (3 months ago)	Scraping with a high error ratio and request rate	Bad Web Bot
Anonymous	2026-02-16 16:03:29 (3 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 60 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.56.11.2

🇧🇷 181.218.9.86

🇫🇷 194.163.163.123

🇲🇽 186.96.145.241

🇺🇸 184.105.139.69

🇺🇸 135.237.125.221

🇰🇷 112.161.42.97

🇫🇷 91.231.89.56

🇷🇴 80.94.92.171

🇯🇲 69.160.113.94

🇱🇹 45.227.254.170

🇧🇷 45.181.140.233

🇳🇱 45.148.10.141

🇫🇷 37.67.31.24

🇯🇲 216.10.217.31

🇬🇧 195.96.139.110

🇲🇽 189.182.80.99

🇬🇧 146.90.38.243

🇩🇪 141.11.250.239

🇸🇬 139.59.107.137