JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.216.246

173.239.216.246 was found in our database!

This IP was reported 45 times. Confidence of Abuse is 18%: ?

18%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	logicweb.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.216.246

Whois 173.239.216.246

IP Abuse Reports for 173.239.216.246:

This IP address has been reported a total of 45 times from 28 distinct sources. 173.239.216.246 was first reported on November 27th 2025, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 SentinalX by uzumaru	2026-06-30 07:17:03 (3 hours ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: www.expressapisv2.net:443 show less	Open Proxy Port Scan
🇯🇵 SentinalX by uzumaru	2026-06-29 06:33:53 (1 day ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: www.expressapisv2.net:443 show less	Open Proxy Port Scan
🇨🇦 TechnoSolutions CL	2026-06-13 11:39:27 (2 weeks ago)	173.239.216.246 - - [13/Jun/2026:11:39:23 +0000] "GET /wp-includes/sodium_compat/namespaced/Core/Cha ... show more 173.239.216.246 - - [13/Jun/2026:11:39:23 +0000] "GET /wp-includes/sodium_compat/namespaced/Core/ChaCha20/ HTTP/1.1" 405 552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 173.239.216.246 - - [13/Jun/2026:11:39:23 +0000] "GET /wp-includes/assets/wp-canser.php HTTP/1.1" 405 552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 173.239.216.246 - - [13/Jun/2026:11:39:26 +0000] "GET /wp-includes/blocks/comment-author-name/about.php HTTP/1.1" 405 552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 173.239.216.246 - - [13/Jun/2026:11:39:27 +0000] "GET /wp-content/functions.php HTTP/1.1" 405 552 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" ... show less	Hacking Brute-Force Web App Attack
🇦🇹 penguin-solutions.at	2026-06-12 23:55:31 (2 weeks ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇺🇸 Major Hostility	2026-04-29 02:08:16 (2 months ago)	"GET /img/about.php HTTP/1.1" 404 "GET /bitrix/wp-content.php HTTP/1.1" 404 "GET /bitrix/wp-admin.ph ... show more "GET /img/about.php HTTP/1.1" 404 "GET /bitrix/wp-content.php HTTP/1.1" 404 "GET /bitrix/wp-admin.php HTTP/1.1" 404 "GET /cgi-bin/index.php HTTP/1.1" 404 "GET /file/function.php HTTP/1.1" 404 "GET /wp-admin/wp-login.php HTTP/1.1" 404 "GET /cgi-bin/file.php HTTP/1.1" 404 "GET /wp-includes/rk2.php HTTP/1.1" 404 "GET /images/images/about.php HTTP/1.1" 404 "GET /Files/index.php HTTP/1.1" 404 show less	Web App Attack
🇳🇱 Site.eu	2026-04-27 00:09:21 (2 months ago)	Excessive 404/403 errors	Brute-Force
🇵🇹 Information Security	2026-04-25 10:09:04 (2 months ago)	Web App Attack	Web App Attack
🇩🇪 ecs.ge	2026-04-20 23:27:23 (2 months ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇩🇪 ecs.ge	2026-04-16 22:47:47 (2 months ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇨🇳 ThreatBook.io	2026-04-16 22:33:23 (2 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/173.239.216.246 2026-0 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/173.239.216.246 2026-04-16 08:51:55 /debug/default/view.html 2026-04-16 04:08:34 /__tests__/test-become/.env,{"body":"0x%5B%5D=DTAB","content_type":"application/x-www-form-urlencoded","header":{"Accept":["/"],"Accept-Encoding":["*"],"Connection":["keep-alive"],"Content-Length":["13"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36"]},"host":"160.202.238.122","method":"POST","proto":"HTTP/1.1","remote_addr":"173.239.216.246:41297","status_code":200,"url":"/__tests__/test-become/.env","user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36"} 2026-04-16 08:53:51 /static/js/config.js show less	Web App Attack
🇩🇪 ecs.ge	2026-04-15 19:30:00 (2 months ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇮🇳 Starburst SysOp Team	2026-04-12 23:04:59 (2 months ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-bom2-2)	Hacking Bad Web Bot
🇮🇩 hermawan	2026-04-12 19:04:39 (2 months ago)	1776020517.860091 173.239.216.246 103.166.156.58 64240_2-4-8-1-3_1460_10 2026-04-13 02:01:57 WIB ...	Email Spam Hacking
🇬🇧 thetomtaylor.co.uk	2026-04-12 18:07:01 (2 months ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇸🇬 Starburst SysOp Team	2026-04-12 17:44:18 (2 months ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-sin2-2)	Hacking Bad Web Bot

Showing 1 to 15 of 45 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 27.10.55.167

🇮🇩 195.88.211.130

🇺🇸 172.253.214.29

🇮🇳 106.51.83.25

🇩🇪 95.208.74.83

🇩🇪 92.205.199.70

🇺🇸 84.32.70.210

🇱🇺 46.151.182.161

🇬🇧 31.14.254.82

🇻🇳 14.191.110.141

🇺🇸 205.210.31.83

🇬🇧 193.163.125.247

🇫🇮 144.31.143.114

🇮🇳 143.110.247.221

🇸🇬 103.13.206.100

🇱🇹 81.30.98.158

🇧🇷 45.5.102.93

🇷🇴 2.57.122.173

🇬🇧 2.57.17.240

🇬🇧 2.57.17.84