JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.236.113

173.239.236.113 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 25%: ?

25%

ISP	F.N.S. HOLDINGS LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	fns-holdings.com
Country	🇲🇾 Malaysia
City	Kuala Lumpur, Kuala Lumpur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.236.113

Whois 173.239.236.113

IP Abuse Reports for 173.239.236.113:

This IP address has been reported a total of 48 times from 33 distinct sources. 173.239.236.113 was first reported on November 15th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Nevermind	2026-06-04 21:50:34 (2 weeks ago)	173.239.236.113 - - [04/Jun/2026:23:50:32 +0200] "GET //modules/ps_mainmenu/upgrade/upgrade-2.3.2.ph ... show more 173.239.236.113 - - [04/Jun/2026:23:50:32 +0200] "GET //modules/ps_mainmenu/upgrade/upgrade-2.3.2.php HTTP/1.1" 404 4203 "http://stadt-falkensee.info//modules/ps_mainmenu/upgrade/upgrade-2.3.2.php" "Go-http-client/2.0" 173.239.236.113 - - [04/Jun/2026:23:50:32 +0200] "GET //modules/statsforecast/translations/fe.php HTTP/1.1" 404 4203 "http://stadt-falkensee.info//modules/statsforecast/translations/fe.php" "Go-http-client/2.0" 173.239.236.113 - - [04/Jun/2026:23:50:33 +0200] "GET //modules/ets_htmlbox/loads.php HTTP/1.1" 404 4203 "http://stadt-falkensee.info//modules/ets_htmlbox/loads.php" "Go-http-client/2.0" 173.239.236.113 - - [04/Jun/2026:23:50:33 +0200] "GET //modules/myprestaloyalty/index.php HTTP/1.1" 404 4203 "http://stadt-falkensee.info//modules/myprestaloyalty/index.php" "Go-http-client/2.0" ... show less	Web App Attack
🇩🇪 artifice	2026-05-22 04:09:29 (4 weeks ago)	WordPress user enumeration (?author= parameter). \| WordPress user enumeration (/wp-json/wp/v2/users ... show more WordPress user enumeration (?author= parameter). \| WordPress user enumeration (/wp-json/wp/v2/users REST endpoint). \| WordPress xmlrpc.php system.multicall credential brute-force. show less	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-12 22:02:04 (1 month ago)	Auto-ban: >3000 req/min op 2026-05-12	Web App Attack SSH Hacking
🇫🇷 guillaume illien	2026-05-11 20:37:35 (1 month ago)	173.239.236.113 - - [11/May/2026:20:37:32 +0000] "GET /wp-content/themes/consultstreet/config.php HT ... show more 173.239.236.113 - - [11/May/2026:20:37:32 +0000] "GET /wp-content/themes/consultstreet/config.php HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 173.239.236.113 - - [11/May/2026:20:37:33 +0000] "GET /wp-content/themes/blogger-buzz/welcome/js/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 173.239.236.113 - - [11/May/2026:20:37:33 +0000] "GET /wp-content/themes/mesmerize/page-templates/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 173.239.236.113 - - [11/May/2026:20:37:34 +0000] "GET /wp-content/themes/theme-check/theme-check.php HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 173.239.236.113 - - [11/May/2026:20:37:34 +0000] "GET /wp-content/themes/hello-elementor/template-parts/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 173.239.236.113 - - [11/May/2026:20:37:35 +0000] "GET /wp-content/themes/Divi/includes/builder/post/taxonomy/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 173.239.236.113 - - [11/May/2026:20:37:35 +0000] "GET /wp-content/themes/system.php HTTP/1.1" 301 178 "-" "Go-http-client/1.1" ... show less	Hacking Brute-Force Web App Attack SSH
🇩🇪 filstal.org	2026-05-11 04:45:02 (1 month ago)	Automated security scan or exploit attempt detected by Fail2Ban	Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-04 03:15:04 (1 month ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
Anonymous	2026-04-29 02:45:03 (1 month ago)	Web attack blocked by Wordfence on mezzia.nl (1 hit). Reported by CRMON.	Web App Attack
🇫🇷 Octopuce	2026-04-27 16:20:55 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/languages/index.php /wp-includes/js/dist/defa ... show more Aggressive web search of vulnerable pages: /wp-content/languages/index.php /wp-includes/js/dist/default.php /wp-admin/css/colors/tfileman.php / ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-18 21:27:55 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 173.239.236.113 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 173.239.236.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 17:27:49.449386 2026] [security2:error] [pid 1273758:tid 1273758] [client 173.239.236.113:56333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alfredintelligence.com"] [uri "/.git/execute.php"] [unique_id "aeP3Vc-OMSuPMZc9uSAaZAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-12 12:44:50 (2 months ago)	Multiple WAF Violations	Web App Attack
🇫🇷 dynamix	2026-04-09 09:45:38 (2 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-04-09 09:33:58 (2 months ago)	(mod_security) mod_security (id:240000) triggered by 173.239.236.113 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240000) triggered by 173.239.236.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 05:33:49.805623 2026] [security2:error] [pid 3196806:tid 3196806] [client 173.239.236.113:48945] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|instepdogobedience.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "instepdogobedience.com"] [uri "/images/stories/themes.php"] [unique_id "addyfdt6xLpTDkCO97geVgAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-09 07:50:20 (2 months ago)	[redacted] 173.239.236.113 - - [09/Apr/2026:09:50:10 +0200] "GET /wp-admin/theme-editor.php HTTP/1.1 ... show more [redacted] 173.239.236.113 - - [09/Apr/2026:09:50:10 +0200] "GET /wp-admin/theme-editor.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 173.239.236.113 - - [09/Apr/2026:09:50:10 +0200] "GET /wp-admin/css/colors/blue/abc.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" [redacted] 173.239.236.113 - - [09/Apr/2026:09:50:11 +0200] "GET /wp-admin/maint/wonder.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 173.239.236.113 - - [09/Apr/2026:09:50:12 +0200] "GET /wp-admin/css/colors/tfileman.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" [redacted] 173.239.236.113 - - [09/Apr/2026:09:50:13 +0200] "GET /wp-admin/js/widgets/autoload_classmap.ph ... show less	Hacking Web App Attack
🇳🇱 Site.eu	2026-03-15 14:14:38 (3 months ago)	Excessive 404/403 errors	Brute-Force
🇫🇷 dynamix	2026-03-03 21:27:55 (3 months ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.13.24.118

🇺🇸 162.216.150.120

🇨🇳 116.62.167.172

🇩🇪 94.159.110.150

🇻🇪 38.74.244.190

🇬🇧 188.240.59.22

🇧🇴 177.222.63.84

🇧🇷 177.85.247.230

🇺🇸 165.154.36.150

🇨🇦 159.203.37.31

🇮🇳 103.91.246.101

🇩🇪 85.28.47.237

🇷🇴 80.94.92.186

🇺🇸 65.49.1.17

🇸🇬 43.134.167.218

🇪🇬 41.43.81.134

🇨🇳 8.148.232.140

🇨🇳 1.192.61.19

🇩🇪 213.209.159.241

🇧🇷 205.210.31.207