JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.214.243

173.239.214.243 was found in our database!

This IP was reported 190 times. Confidence of Abuse is 80%: ?

80%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62240
Domain Name	logicweb.com
Country	🇺🇸 United States of America
City	Edison, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.214.243

Whois 173.239.214.243

IP Abuse Reports for 173.239.214.243:

This IP address has been reported a total of 190 times from 97 distinct sources. 173.239.214.243 was first reported on April 12th 2023, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-29 16:35:10 (6 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 LRob.fr	2026-06-28 17:45:03 (1 day ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-27 14:56:51 (2 days ago)	apache vulnerability scan	Web App Attack
🇩🇪 FeG Deutschland	2026-06-27 01:30:42 (2 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 18:51:38 (3 days ago)	(mod_security) mod_security (id:234930) triggered by 173.239.214.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:234930) triggered by 173.239.214.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 14:51:31.601317 2026] [security2:error] [pid 28810:tid 28810] [client 173.239.214.243:38601] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|aivosminerals.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "aivosminerals.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "aj7KM1cTxqYYIdIX7nR2JAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-26 13:55:40 (3 days ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
Anonymous	2026-06-26 02:49:49 (3 days ago)	Failed Wordpress Logins	Web App Attack
🇩🇪 LRob.fr	2026-06-24 01:15:04 (5 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇲🇹 Malta	2026-06-16 16:10:39 (1 week ago)	173.239.214.243 - - [16/Jun/2026:18:10:39 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 173.239.214.243 - - [16/Jun/2026:18:10:39 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇪🇸 pipeline.es	2026-06-15 14:24:35 (2 weeks ago)	Web scanning / probing for vulnerable paths \| URL: /wp-includes/widgets/class-wp-widget-rss-database ... show more Web scanning / probing for vulnerable paths \| URL: /wp-includes/widgets/class-wp-widget-rss-database.php \| Evidence: landingow.aavv.com 173.239.214.243 - - [15/Jun/2026:16:23:05 +0200] \"GET /wp-includes/widgets/class-wp-widget-rss-database.php HTTP/1.1\" 404 250 \"-\" \"Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36\" GEOIP_COUNTRY_CODE=US \| ASN: Clouvider Limited \| Country: US show less	Port Scan Web App Attack
🇩🇪 Vegascosmetics	2026-06-15 12:45:23 (2 weeks ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after attack pattern. Vegas Security	Hacking Web App Attack
🇫🇷 dynamix	2026-06-14 09:04:26 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇫🇷 masterguru	2026-06-13 02:17:04 (2 weeks ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (88020-193)	Hacking
🇫🇷 mrcrassi	2026-06-03 05:03:45 (3 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST meth ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 Version/17.0 Safari/605.1.15 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 ArturShelby	2026-05-26 06:43:04 (1 month ago)	Suspicious path access: /wp-includes/css/buttons.css	Web App Attack

Showing 1 to 15 of 190 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 94.255.255.26

🇹🇷 94.154.43.66

🇩🇪 167.94.146.45

🇱🇾 154.127.69.22

🇲🇴 125.31.4.70

🇮🇩 103.59.161.168

🇳🇱 45.148.10.151

🇺🇸 34.41.211.48

🇩🇪 213.209.159.241

🇨🇴 186.33.49.115

🇺🇸 185.198.240.162

🇧🇷 170.83.135.111

🇩🇪 142.252.6.14

🇨🇳 120.230.23.76

🇻🇳 117.7.224.68

🇧🇬 91.191.209.74

🇩🇪 46.101.216.224

🇰🇷 14.39.124.134

🇦🇷 186.124.123.120

🇩🇪 167.94.146.38