JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.216.28

173.239.216.28 was found in our database!

This IP was reported 116 times. Confidence of Abuse is 0%: ?

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	logicweb.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.216.28

Whois 173.239.216.28

IP Abuse Reports for 173.239.216.28:

This IP address has been reported a total of 116 times from 54 distinct sources. 173.239.216.28 was first reported on August 12th 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-04-29 16:43:06 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-04-29 11:29:34 (2 months ago)	Aggressive web search of vulnerable pages: /wp-includes/Text/Diff/Engine/about.php /wp-includes/sodi ... show more Aggressive web search of vulnerable pages: /wp-includes/Text/Diff/Engine/about.php /wp-includes/sodium_compat/src/index.php /wp-includes/js/tin ... show less	Web App Attack
🇬🇧 consul.to	2026-04-26 00:02:23 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-04-24 05:56:33 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-04-21 06:52:55 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 173.239.216.28 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.216.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 02:52:46.831246 2026] [security2:error] [pid 348447:tid 348447] [client 173.239.216.28:27655] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alissacaputo.com"] [uri "/.git/execute.php"] [unique_id "aeceviPIGVIXvCFmEukVqQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 aranguren.org	2026-04-20 17:44:15 (2 months ago)	173.239.216.28 - - [21/Apr/2026:03:44:13 +1000] "GET /wp-content/plugins/about.php HTTP/1.1" 404 993 ... show more 173.239.216.28 - - [21/Apr/2026:03:44:13 +1000] "GET /wp-content/plugins/about.php HTTP/1.1" 404 993 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 173.239.216.28 - - [21/Apr/2026:03:44:14 +1000] "GET /filemanager/dialog.php HTTP/1.1" 404 993 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 173.239.216.28 - - [21/Apr/2026:03:44:14 +1000] "GET /bk/index.php HTTP/1.1" 404 993 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 173.239.216.28 - - [21/Apr/2026:03:44:14 +1000] "GET /css/index.php HTTP/1.1" 404 993 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 173.239.216.28 - - [21/Apr/2026:03:44:14 +1000] "GET /files/index.php HTTP/1.1" 404 993 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) ... show less	Bad Web Bot
🇫🇷 dynamix	2026-04-17 01:43:16 (2 months ago)	Multiple WAF Violations	Web App Attack
🇨🇭 backslash	2026-04-12 19:06:00 (2 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇬🇧 SilverZippo	2026-04-12 13:22:02 (2 months ago)	Web App Attack	Web App Attack
🇺🇸 myagent.site	2026-04-12 10:08:49 (2 months ago)	Blocking for trying to access an exploit file: /style.php	Hacking
Anonymous	2026-04-12 06:31:57 (2 months ago)	173.239.216.28 - - [12/Apr/2026:08:31:56 +0200] "GET /wp-content/plugins/all-in-one-wp-security-and- ... show more 173.239.216.28 - - [12/Apr/2026:08:31:56 +0200] "GET /wp-content/plugins/all-in-one-wp-security-and-firewall/templates/wp-admin/security.php HTTP/1.0" 404 455 "-" "Go-http-client/1.1" 173.239.216.28 - - [12/Apr/2026:08:31:56 +0200] "GET /wp-content/plugins/all-in-one-wp-security-and-firewall/templates/wp-admin/security.php HTTP/1.1" 404 275 "-" "Go-http-client/1.1" 173.239.216.28 - - [12/Apr/2026:08:31:56 +0200] "GET /wp-content/plugins/contact-form-7/rstsgd.php HTTP/1.0" 404 455 "-" "Go-http-client/1.1" 173.239.216.28 - - [12/Apr/2026:08:31:56 +0200] "GET /wp-content/plugins/contact-form-7/rstsgd.php HTTP/1.1" 404 275 "-" "Go-http-client/1.1" 173.239.216.28 - - [12/Apr/2026:08:31:56 +0200] "GET /wp-content/plugins/shortcodes-ultimate/admin.php HTTP/1.0" 404 455 "-" "Go-http-client/1.1" ... show less	Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-04-03 06:36:07 (2 months ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇧🇪 cmbplf	2026-04-03 04:33:38 (2 months ago)	7.768 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-03-19 00:05:48 (3 months ago)	Request Overload (154)	Brute-Force Web App Attack
🇩🇪 Nightreaver	2026-03-13 20:43:03 (3 months ago)	173.239.216.28 - - [13/Mar/2026:21:43:02 0100] "GET /themes.php HTTP/1.1" 404 444 "-" "Mozilla/5.0 ... show more 173.239.216.28 - - [13/Mar/2026:21:43:02 0100] "GET /themes.php HTTP/1.1" 404 444 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 173.239.216.28 - - [13/Mar/2026:21:43:02 0100] "GET /wp-good.php HTTP/1.1" 404 444 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 173.239.216.28 - - [13/Mar/2026:21:43:02 0100] "GET /ioxi-o.php HTTP/1.1" 404 444 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 173.239.216.28 - - [13/Mar/2026:21:43:02 0100] "GET /wp.php HTTP/1.1" 404 444 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 173.239.216.28 - - [13/Mar/2026:21:43:02 0100] "GET /about.php HTTP/1.1" 404 444 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36"[...] show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 116 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 184.105.139.87

🇨🇦 104.253.36.192

🇸🇬 47.84.133.201

🇦🇺 209.38.80.141

🇹🇷 185.174.69.65

🇨🇳 175.46.253.75

🇻🇳 157.10.45.70

🇺🇸 150.107.38.251

🇫🇮 147.185.133.58

🇱🇹 81.30.98.62

🇩🇪 79.140.115.223

🇺🇸 162.216.150.90

🇺🇸 143.110.239.2

🇺🇸 135.237.126.196

🇺🇸 100.28.153.226

🇺🇸 73.118.218.44

🇩🇪 43.228.157.10

🇮🇳 2409:4090:d02a:cc07:1cd7:86c2:ac03:2611

🇮🇳 2405:201:8011:4826:e83a:f7e2:aa77:91aa

🇨🇳 118.196.27.11