fbxabuse - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User fbxabuse joined AbuseIPDB in September 2025 and has reported 14 IP addresses.

Standing (weight) is good.

INACTIVE USER

IP	Date	Comment	Categories
🇪🇬 41.91.253.38	13 Feb 2026	Attempted Wordpress RFI triggering Rate Limit and Block rules at 2/13/2026 4:28:49 PM Egypt arriv ... show more Attempted Wordpress RFI triggering Rate Limit and Block rules at 2/13/2026 4:28:49 PM Egypt arrived from https://www.google.com/ and was blocked by firewall for Gwolle Guestbook <= 1.5.3 - Remote File Inclusion at .../wp-content/plugins/gwolle-gb/frontend/captcha/ajaxresponse.php 2/13/2026 4:28:49 PM (46 minutes ago) IP: 41.91.253.38 Hostname: 41.91.253.38 Human/Bot: Human Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Mobile Safari/537.36 show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇰🇬 195.216.237.73	13 Feb 2026	Attempted Wordpress RFI triggering Rate Limit and Block rules at 2/13/2026 4:28:33 PM Kyrgyzstan ... show more Attempted Wordpress RFI triggering Rate Limit and Block rules at 2/13/2026 4:28:33 PM Kyrgyzstan was blocked by firewall for Gwolle Guestbook <= 1.5.3 - Remote File Inclusion at .../wp-content/plugins/gwolle-gb/frontend/captcha/ajaxresponse.php?abspath=..%2F..%2F.… 2/13/2026 4:28:33 PM (42 minutes ago) IP: 195.216.237.73 Hostname: cache.google.com Human/Bot: Human Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇻🇳 42.117.10.11	13 Feb 2026	Attempted Wordpress Directory Traversal triggering Rate Limit and Block rules at 2/13/2026 4:28:33 P ... show more Attempted Wordpress Directory Traversal triggering Rate Limit and Block rules at 2/13/2026 4:28:33 PM Hanoi, Vietnam was blocked by firewall for Directory Traversal in query string: path=..%2F..%2F..%2F..%2F..%2F at .../wp-content/plugins/lws-affiliation/view/admin/preview_widget.php?path=..%2F..%2F..… 2/13/2026 4:28:33 PM (39 minutes ago) IP: 42.117.10.11 Hostname: 42.117.10.11 Human/Bot: Human Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇷🇺 85.112.121.199	13 Feb 2026	Attempted Wordpress RFI triggering Rate Limit and Block rules at 2/13/2026 4:28:32 PM Russia was ... show more Attempted Wordpress RFI triggering Rate Limit and Block rules at 2/13/2026 4:28:32 PM Russia was blocked by firewall for Gwolle Guestbook <= 1.5.3 - Remote File Inclusion at .../wp-content/plugins/gwolle-gb/frontend/captcha/ajaxresponse.php 2/13/2026 4:28:32 PM (33 minutes ago) IP: 85.112.121.199 Hostname: google.ihome.ru Human/Bot: Human Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763 show less	Port Scan Hacking SQL Injection Web App Attack
🇦🇺 134.199.172.38	13 Feb 2026	Attempted Wordpress Directory Traversal and RFI triggering Rate Limit and Block rules multiple insta ... show more Attempted Wordpress Directory Traversal and RFI triggering Rate Limit and Block rules multiple instances like this example between 2/13/2026 4:50:03 AM through 2/13/2026 4:50:34 AM Sydney, New South Wales, Australia was blocked by firewall for Directory Traversal in query string: cfg=..%2Fcss%2Fgm.css at .../wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?aja… 2/13/2026 4:50:03 AM (11 hours 23 mins ago) IP: 134.199.172.38 Hostname: 134.199.172.38 Human/Bot: Human Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 As well as .../wp-content/plugins/lws-affiliation/view/admin/preview_widget.php?path=..%2F..%2F..%2F..%2F..%2F .../wp-content/plugins/gwolle-gb/frontend/captcha/ajaxresponse.php?abspath=..%2F..%2F..%2F..%2F..%2F .../wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=..%2Fcss%2Fgm.css show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇺🇸 72.153.231.12	26 Jan 2026	Attempted Wordpress New Install File Probing and brute forcing triggering Rate Limit and Block rules ... show more Attempted Wordpress New Install File Probing and brute forcing triggering Rate Limit and Block rules multiple instances like this example between 1/26/2026 4:32:51 PM through 1/26/2026 4:32:53 PM San Jose, California, United States was blocked by firewall for WordPress New Install File Probing at .../old/wp-admin/install.php?step=1&language=en_GB 1/26/2026 4:32:51 PM (22 minutes ago) IP: 72.153.231.12 Hostname: 72.153.231.12 Human/Bot: Human Mozilla/5.0 (Linux; Android 9; itel A27) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.6943.143 Mobile Safari/537.36 As well as /shop/wp-admin/install.php?step=1&language=en_GB /test/wp-admin/install.php?step=1&language=en_GB /blog/wp-admin/install.php?step=1&language=en_GB /new/wp-admin/install.php?step=1&language=en_GB /wp/wp-admin/install.php?step=1&language=en_GB /wordpress/wp-admin/install.php?step=1&language=en_GB Same profile and attack routine as a an IP 69.167.12.41 from another Host which was previously reported. show less	Port Scan Hacking Brute-Force Web App Attack
🇺🇸 69.167.12.41	26 Jan 2026	Attempted Wordpress New Install File Probing and brute forcing triggering Rate Limit and Block rules ... show more Attempted Wordpress New Install File Probing and brute forcing triggering Rate Limit and Block rules multiple instances like this example between 1/25/2026 7:36:16 PM through 1/25/2026 7:36:37 PM Discovered Using Slurp Robot New York, United States was blocked by firewall for WordPress New Install File Probing at .../install.php?step=1&language=en_GB 1/25/2026 7:36:16 PM (20 hours 37 mins ago) IP: 69.167.12.41 Hostname: 69.167.12.41 Human/Bot: Bot Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp) As well as /shop/wp-admin/install.php?step=1&language=en_GB /test/wp-admin/install.php?step=1&language=en_GB /blog/wp-admin/install.php?step=1&language=en_GB /old/wp-admin/install.php?step=1&language=en_GB /new/wp-admin/install.php?step=1&language=en_GB /wp/wp-admin/install.php?step=1&language=en_GB /wordpress/wp-admin/install.php?step=1&language=en_GB show less	Port Scan Hacking Brute-Force Web App Attack
🇮🇳 103.89.74.49	22 Dec 2025	Attempted XSS Multiple XSS Attacks triggering Rate Limit and Block rules India was blocked by ... show more Attempted XSS Multiple XSS Attacks triggering Rate Limit and Block rules India was blocked by firewall for XSS: Cross Site Scripting in query string: file=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E at .../avatar_uploader.pages.inc?file=%3Cscript%3Ealert%28document.domain%29%3C%2Fscri… 12/22/2025 5:48:13 PM (2 minutes ago) IP: 103.89.74.49 Hostname: 103.89.74.49 Human/Bot: Human Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇭🇰 154.211.104.230	22 Dec 2025	Attempted XSS Multiple XSS Attacks triggering Rate Limit and Block rules between timeframe 12/22 ... show more Attempted XSS Multiple XSS Attacks triggering Rate Limit and Block rules between timeframe 12/22/2025 3:40:14 AM through 12/22/2025 3:44:18 AM Hong Kong, Hong Kong was blocked by firewall for XSS: Cross Site Scripting in query string: file=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E at .../avatar_uploader.pages.inc?file=%3Cscript%3Ealert%28document.domain%29%3C%2Fscri… 12/22/2025 3:40:14 AM (13 hours 57 mins ago) IP: 154.211.104.230 Hostname: 154.211.104.230 Human/Bot: Human Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.11 Hong Kong, Hong Kong was blocked by firewall for XSS: Cross Site Scripting in query string: file=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E at .../avatar_uploader.pages.inc?file=%3Cscript%3Ealert%28document.domain%29%3C%2Fscri… 12/22/2025 3:44:18 AM (13 hours 54 mins ago) IP: 154.211.104.230 Hostname: 154.211.104.230 Human/Bot: Human Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/1 show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇳🇱 194.26.192.221	15 Dec 2025	Attempted Bruteforce on install.php Attack triggering rules on Wordpress Site Activity Deta ... show more Attempted Bruteforce on install.php Attack triggering rules on Wordpress Site Activity Detail Oude Meer, The Netherlands was blocked by firewall for WordPress New Install File Probing at ..../install.php 12/15/2025 6:01:49 AM (10 hours 19 mins ago) IP: 194.26.192.221 Hostname: 194.26.192.221.powered.by.rdp.sh Human/Bot: Bot show less	Web App Attack SSH
🇳🇱 31.6.11.7	04 Dec 2025	Attempted Bruteforce on multiple WP directories Multiple Attacks triggering Rate Limit and Block ... show more Attempted Bruteforce on multiple WP directories Multiple Attacks triggering Rate Limit and Block rules between timeframe 12/3/2025 11:19:08 PM through 12/3/2025 11:19:16 PM and cycled through multiple User-Agents as a Human and Bot as well as multiple directories for install.php Athens, Greece was blocked by firewall for WordPress New Install File Probing at /shop/wp-admin/install.php?step=1&language=en_GB 12/3/2025 11:19:16 PM (10 hours 38 mins ago) IP: 31.6.11.7 Hostname: 31.6.11.7 Human/Bot: Human Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15 /test/wp-admin/install.php?step=1&language=en_GB /blog/wp-admin/install.php?step=1&language=en_GB /old/wp-admin/install.php?step=1&language=en_GB /new/wp-admin/install.php?step=1&language=en_GB /wp/wp-admin/install.php?step=1&language=en_GB /wordpress/wp-admin/install.php?step=1&language=en_GB show less	Port Scan Hacking Brute-Force Web App Attack
🇮🇳 167.71.235.241	19 Sep 2025	Attempted Bruteforce on WP install.php Multiple Attacks triggering Rate Limit and Block rules bet ... show more Attempted Bruteforce on WP install.php Multiple Attacks triggering Rate Limit and Block rules between timeframe 9/14/2025 6:46:19 PM through 9/14/2025 6:47:37 PM and cycled through multiple User-Agents as a Human and Bot as well as multiple directories for install.php Bengaluru, India was blocked by firewall for WordPress New Install File Probing at .../wp/wp-admin/install.php 9/14/2025 6:46:19 PM (4 days 13 hours ago) IP: 167.71.235.241 Hostname: 167.71.235.241 Human/Bot: Human Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36 show less	Port Scan Hacking Brute-Force Web App Attack
🇮🇳 2401:4900:1c44:681e:190e:d744:a8ec:defb	19 Sep 2025	Attempted Bruteforce on WP xmlrpc.php Multiple Attacks triggering Rate Limit and Block rules betw ... show more Attempted Bruteforce on WP xmlrpc.php Multiple Attacks triggering Rate Limit and Block rules between timeframe 9/6/2025 3:53:02 AM through 9/6/2025 4:19:15 AM and cycled through multiple User-Agents as a Human and Bot Pune, India was locked out from logging in at .../xmlrpc.php 9/6/2025 4:19:15 AM (13 days 4 hours ago) IP: 2401:4900:1c44:681e:190e:d744:a8ec:defb Human/Bot: Bot Mozilla/5.0 (Linux; Android 10; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/74.0.0.0 Safari/537.36 show less	Port Scan Hacking Brute-Force Web App Attack
🇮🇳 223.233.81.232	19 Sep 2025	Attempted Bruteforce on WP xmlrpc.php Multiple Attacks triggering Rate Limit and Block rules betw ... show more Attempted Bruteforce on WP xmlrpc.php Multiple Attacks triggering Rate Limit and Block rules between timeframe 9/5/2025 4:34:59 PM through 9/5/2025 5:16:27 PM and cycled through multiple User-Agents as a Human and Bot Pune, India was blocked by the Wordfence Security Network at .../xmlrpc.php 9/5/2025 5:16:27 PM (13 days 15 hours ago) IP: 223.233.81.232 Hostname: abts-north-dynamic-232.81.233.223.airtelbroadband.in Human/Bot: Human Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/79.0.0.0 Safari/537.36 show less	Port Scan Hacking Brute-Force Web App Attack