JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.213.29

173.239.213.29 was found in our database!

This IP was reported 168 times. Confidence of Abuse is 94%: ?

94%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62240
Domain Name	logicweb.com
Country	🇺🇸 United States of America
City	Atlanta, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.213.29

Whois 173.239.213.29

IP Abuse Reports for 173.239.213.29:

This IP address has been reported a total of 168 times from 54 distinct sources. 173.239.213.29 was first reported on December 20th 2022, and the most recent report was 58 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 taivas.nl	2026-06-26 19:02:10 (58 minutes ago)	Wordpress_login_attempts	Bad Web Bot
🇩🇪 LRob.fr	2026-06-26 13:45:03 (6 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 13:43:52 (6 hours ago)	(mod_security) mod_security (id:225170) triggered by 173.239.213.29 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 173.239.213.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 09:43:49.283258 2026] [security2:error] [pid 9748:tid 9748] [client 173.239.213.29:24565] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bickleton.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bickleton.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aj6CFe45Wd3FIUpTrO48wAAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 wlt-blocker	2026-06-26 11:08:44 (8 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇦🇺 QT	2026-06-26 02:32:12 (17 hours ago)	Unauthorised WordPress admin login attempted at 2026-06-26 12:32:03 +1000	Web App Attack
🇳🇱 Site.eu	2026-06-25 23:02:14 (20 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇫🇮 inlink.ltd	2026-06-25 20:02:54 (23 hours ago)	Known malicious PHP file or CMS probe	Web App Attack
🇩🇪 filstal.org	2026-06-25 16:12:04 (1 day ago)	Evasive bot: rapid User-Agent switching (8 UAs, 12 hits, short time window)	Bad Web Bot Web App Attack
Anonymous	2026-06-25 07:05:05 (1 day ago)	Bot / scanning and/or hacking attempts: GET /wp-admin/edit.php HTTP/1.1, GET /wp-login.php?redirect_ ... show more Bot / scanning and/or hacking attempts: GET /wp-admin/edit.php HTTP/1.1, GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.bureaufeestbees, POST /wp-login.php HTTP/1.1, GET /wp-admin/index.php HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 19:45:52 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 173.239.213.29 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 173.239.213.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 15:45:44.977169 2026] [security2:error] [pid 15891:tid 15891] [client 173.239.213.29:53277] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|casadelsolmexico.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "casadelsolmexico.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajwz6ENvd5UWXgVc3DLzNwAAAAY"], referer: https://duckduckgo.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-23 03:34:59 (3 days ago)	(wordpress) Apache: Failed WordPress login from 173.239.213.29 (US/United States/-): 10 in the last ... show more (wordpress) Apache: Failed WordPress login from 173.239.213.29 (US/United States/-): 10 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 raymarron.com	2026-06-23 00:11:09 (3 days ago)	/wp-admin/edit.php /wp-admin/index.php (x2) /wp-admin/profile.php (x2) POST /wp-login.php (x3) / ... show more /wp-admin/edit.php /wp-admin/index.php (x2) /wp-admin/profile.php (x2) POST /wp-login.php (x3) /wp-admin/plugins.php (x2) show less	Web App Attack
🇩🇪 LRob.fr	2026-06-21 20:45:02 (4 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-21 16:49:57 (5 days ago)	(wordpress) Apache: Failed WordPress login from 173.239.213.29 (US/United States/-): 10 in the last ... show more (wordpress) Apache: Failed WordPress login from 173.239.213.29 (US/United States/-): 10 in the last 3600 secs (0-195) show less	Hacking
🇦🇺 afleventoffice.com.au	2026-06-20 10:21:32 (6 days ago)	GET /wp-login.php HTTP/1.1	Web App Attack

Showing 1 to 15 of 168 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 240e:6a0:1fe:6:1::1

🇨🇳 110.249.201.55

🇺🇸 107.150.105.153

🇺🇸 8.231.42.80

🇬🇧 2a06:4880:4000::5f

🇰🇷 220.127.148.6

🇳🇱 176.65.139.218

🇺🇸 172.203.253.208

🇭🇰 165.154.4.92

🇨🇳 110.249.201.76

🇫🇷 104.28.243.187

🇫🇮 193.148.56.79

🇩🇪 188.68.39.92

🇳🇱 178.16.54.93

🇬🇧 51.89.129.75

🇸🇬 47.236.24.189

🇳🇱 45.148.10.121

🇺🇸 45.46.228.140

🇬🇪 2.57.217.229

🇨🇳 218.78.46.81