JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 162.241.173.249

162.241.173.249 was found in our database!

This IP was reported 109 times. Confidence of Abuse is 0%: ?

ISP	Unified Layer
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Hostname(s)	cs348.bluehost.com
Domain Name	unifiedlayer.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 162.241.173.249

Whois 162.241.173.249

IP Abuse Reports for 162.241.173.249:

This IP address has been reported a total of 109 times from 34 distinct sources. 162.241.173.249 was first reported on February 3rd 2024, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Phenix Info	2025-08-03 12:17:47 (10 months ago)	SmallGuard.fr/Prestashop Empty User Agent	Web App Attack
🇩🇪 tinect	2025-07-28 15:15:10 (10 months ago)	tries to find malicious content	Hacking Web App Attack
🇷🇺 6o6ep	2025-07-24 11:41:35 (10 months ago)	Bad web bot attempting to run wp-content on non-WP site	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-07-19 01:36:50 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 21:36:43.344950 2025] [security2:error] [pid 19617:tid 19617] [client 162.241.173.249:20792] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.accordionfactory.com"] [uri "/wp-config.php_old"] [unique_id "aHr2q9ritYu-CizqG5VWxgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-07-19 00:05:51 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-17 10:42:46 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 06:42:43.542868 2025] [security2:error] [pid 18403:tid 18403] [client 162.241.173.249:44574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dismain.com"] [uri "/wp-config.php.old"] [unique_id "aHjToxQ6-4IRCGriS5oAcQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-16 17:18:33 (11 months ago)	Bot / scanning and/or hacking attempts: [1/1] done, GET /wp-config.php.old HTTP/2.0, GET /wp-config. ... show more Bot / scanning and/or hacking attempts: [1/1] done, GET /wp-config.php.old HTTP/2.0, GET /wp-config.php_ HTTP/2.0, GET /wp-config.php.orig HTTP/2.0, GET /wp-config.php.save HTTP/1.1, GET /wp-config.php.save HTTP/2.0 show less	Hacking Web App Attack
🇮🇹 VHosting	2025-07-16 05:45:54 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-15 23:45:49 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 19:45:44.328208 2025] [security2:error] [pid 4609:tid 4609] [client 162.241.173.249:48536] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cynthiabaxter.com"] [uri "/wp-config.php1"] [unique_id "aHboKHqpW1k5oIo1H9m8pgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-07-14 17:40:50 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-13 21:54:42 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 13 17:54:35.499385 2025] [security2:error] [pid 6699:tid 6699] [client 162.241.173.249:40858] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vampireproductions.com"] [uri "/wp-config.php1"] [unique_id "aHQrG3OSqj9enJoaZkcOdQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-10 13:31:31 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 10 09:31:24.257714 2025] [security2:error] [pid 14588:tid 14588] [client 162.241.173.249:21554] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "khovanov.com"] [uri "/wp-config.php1"] [unique_id "aG_ArO18n1S_MpU8cjZ8kwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-07-10 08:25:52 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-08 07:08:47 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 162.241.173.249 (cs348.bluehost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 08 03:08:40.863922 2025] [security2:error] [pid 16260:tid 16260] [client 162.241.173.249:52364] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brownweddingnapkins.com"] [uri "/wp-config.php.save"] [unique_id "aGzD-O5bahKK6pm9Up1ZPAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-07-08 02:50:53 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack

Showing 1 to 15 of 109 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.106

🇬🇧 193.163.125.246

🇭🇺 193.68.57.43

🇺🇸 162.216.149.37

🇪🇸 158.158.104.28

🇨🇳 123.232.130.232

🇰🇷 115.178.75.242

🇸🇬 101.127.101.225

🇫🇷 85.217.140.51

🇮🇩 43.157.203.234

🇬🇧 193.163.125.160

🇺🇸 146.190.153.30

🇮🇳 122.176.122.24

🇨🇳 112.86.225.18

🇱🇹 91.224.92.17

🇬🇧 89.37.172.147

🇧🇬 79.124.40.110

🇺🇸 66.228.53.136

🇺🇸 45.56.84.110

🇺🇬 41.210.159.245