JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.196.55

173.239.196.55 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 34%: ?

34%

ISP	Avast Software
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	avast.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.196.55

Whois 173.239.196.55

IP Abuse Reports for 173.239.196.55:

This IP address has been reported a total of 55 times from 33 distinct sources. 173.239.196.55 was first reported on April 27th 2023, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Ba-Yu	2026-06-25 15:05:52 (10 hours ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-25 03:47:45 (21 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-23 21:45:35 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-22 15:35:23 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇿 Antinson	2026-06-22 13:01:01 (3 days ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇬🇧 consul.to	2026-06-21 14:34:08 (4 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-06-19 07:09:43 (6 days ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 nyt	2026-06-17 19:45:56 (1 week ago)	CGI Probe, Potential plugin path, could indicate scanning.	Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-03-06 14:03:48 (3 months ago)	Blocked by UFW (TCP on 1) Source port: 30045 TTL: 117 Packet length: 52 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 1) Source port: 30045 TTL: 117 Packet length: 52 TOS: 0x00 This report (for 173.239.196.55) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 consul.to	2026-02-24 06:50:15 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 jjnxpct	2026-02-24 04:48:22 (4 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /wp-admin/setup-config.php (Rule ID: 930130) - Restricted File Access Attempt show less	Web App Attack Hacking
🇳🇱 Site.eu	2026-02-24 04:08:15 (4 months ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-02-23 23:57:33 (4 months ago)	[redacted] 173.239.196.55 - - [24/Feb/2026:00:57:27 +0100] "GET /admin/function.php HTTP/1.1" 404 23 ... show more [redacted] 173.239.196.55 - - [24/Feb/2026:00:57:27 +0100] "GET /admin/function.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" [redacted] 173.239.196.55 - - [24/Feb/2026:00:57:28 +0100] "GET /wp-includes/js/crop/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" [redacted] 173.239.196.55 - - [24/Feb/2026:00:57:28 +0100] "GET /wp-includes/PHPMailer/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" [redacted] 173.239.196.55 - - [24/Feb/2026:00:57:30 +0100] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" [redacted] 173.239.196.55 - - [24/Feb/2026:00:57:30 +0100] "GET /wp-in ... show less	Hacking Web App Attack
🇬🇧 Swiptly	2026-02-23 08:55:50 (4 months ago)	Excessive 403/404/405 PHP/CMS errors from scanning or broken bots ...	Web App Attack
🇲🇾 Rizzy	2026-02-23 07:57:01 (4 months ago)	Multiple WAF Violations	Brute-Force Web App Attack

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 43.228.157.136

🇺🇸 216.45.50.119

🇳🇱 195.178.110.232

🇬🇧 195.96.139.240

🇷🇴 193.32.162.84

🇨🇳 175.19.206.189

🇧🇷 168.194.66.66

🇺🇸 162.216.150.248

🇧🇷 152.32.197.159

🇺🇸 147.185.132.10

🇭🇰 143.92.38.231

🇨🇳 116.179.37.48

🇹🇼 101.13.5.26

🇹🇼 101.13.1.58

🇳🇱 91.92.40.27

🇱🇻 81.30.98.49

🇩🇪 69.5.169.249

🇺🇸 64.95.9.252

🇺🇸 64.62.197.157

🇪🇬 41.33.199.13