JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.196.50

173.239.196.50 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 4%: ?

ISP	Avast Software
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	avast.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.196.50

Whois 173.239.196.50

IP Abuse Reports for 173.239.196.50:

This IP address has been reported a total of 42 times from 27 distinct sources. 173.239.196.50 was first reported on February 22nd 2024, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-22 15:35:35 (8 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 ConsulHosting	2026-02-24 08:08:02 (3 months ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
Anonymous	2026-02-24 04:17:02 (3 months ago)	Bot / scanning and/or hacking attempts: GET /Admin/uploads/ HTTP/1.1, GET /blog/wp-includes/ HTTP/1. ... show more Bot / scanning and/or hacking attempts: GET /Admin/uploads/ HTTP/1.1, GET /blog/wp-includes/ HTTP/1.1, GET /wp-admin/meta/ HTTP/1.1, GET /admin/images/slider/ HTTP/1.1, GET /admin/tmp/ HTTP/1.1, GET /wordpress/wp-content/uploads/ HTTP/1.1, GET /admin/uploads/ HTTP/1.1, GET /upload/image/ HTTP/1.1, GET /wp-content/uploads/2021/ HTTP/1.1, GET /sites/default/files/ HTTP/1.1, GET /wp-content/uploads/ao_ccss/ HTTP/1.1, GET /admin/uploads/images/ HTTP/1.1, GET /admin/editor/ HTTP/1.1, GET /admin/controller/extension/extension/ HTTP/1.1, GET /wp-content/plugins/elementor/ HTTP/1.1, GET /wordpress/wp-includes/ HTTP/1.1 show less	Hacking Web App Attack
🇳🇱 Site.eu	2026-02-24 04:06:56 (3 months ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 mnsf	2026-02-24 02:05:22 (3 months ago)	Request Overload (103)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-02-24 01:06:49 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇲🇾 Rizzy	2026-02-23 07:56:59 (3 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 07:28:26 (3 months ago)	(mod_security) mod_security (id:240000) triggered by 173.239.196.50 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240000) triggered by 173.239.196.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 02:28:21.932642 2026] [security2:error] [pid 19348:tid 19348] [client 173.239.196.50:35927] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|ticmatopografiaeingenieria.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "ticmatopografiaeingenieria.com"] [uri "/images/stories/themes.php"] [unique_id "aZwBlY7tgPhPmNT5bkipGgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-02-23 05:24:55 (3 months ago)	321 requests with url.path /.well-known/acme-challenge/.php 284 requests with url.path /.well-k ... show more 321 requests with url.path /.well-known/acme-challenge/.php 284 requests with url.path /.well-known/pki-validation/*.php show less	Brute-Force Bad Web Bot
🇬🇧 consul.to	2026-02-23 01:32:39 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-02-18 01:50:48 (4 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-02-17 23:53:35 (4 months ago)	wordpress-trap	Web App Attack
Anonymous	2026-02-05 17:05:11 (4 months ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (99/60 min)'; Requests=99	Port Scan
🇮🇳 zam	2026-01-13 12:23:05 (5 months ago)	173.239.196.50 - - [13/Jan/2026:12:23:00 +0000] "GET //wp-content/plugins/fonts/fonts.php HTTP/1.1" ... show more 173.239.196.50 - - [13/Jan/2026:12:23:00 +0000] "GET //wp-content/plugins/fonts/fonts.php HTTP/1.1" 301 308 show less	Web App Attack
🇺🇸 mawan	2025-10-09 10:13:15 (8 months ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 111.68.102.19

🇺🇸 104.248.120.96

🇹🇳 102.104.226.102

🇬🇧 2a06:4884:5000::5f

🇬🇧 213.166.84.46

🇬🇧 185.91.69.38

🇺🇸 148.75.41.45

🇫🇮 147.185.133.91

🇺🇸 147.185.132.45

🇷🇴 141.98.83.240

🇨🇳 112.20.128.92

🇷🇺 109.187.68.127

🇳🇱 77.83.39.197

🇺🇸 69.229.227.44

🇷🇺 31.173.31.59

🇷🇴 2.57.121.25

🇭🇰 223.197.186.7

🇭🇺 217.13.97.203

🇩🇪 213.209.159.228

🇯🇵 212.32.76.11