JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.216.36

173.239.216.36 was found in our database!

This IP was reported 102 times. Confidence of Abuse is 11%: ?

11%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	logicweb.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.216.36

Whois 173.239.216.36

IP Abuse Reports for 173.239.216.36:

This IP address has been reported a total of 102 times from 54 distinct sources. 173.239.216.36 was first reported on August 12th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-04-29 11:30:18 (1 month ago)	Aggressive web search of vulnerable pages: /sites/all/libraries/elfinder/src/connectors/php/connecto ... show more Aggressive web search of vulnerable pages: /sites/all/libraries/elfinder/src/connectors/php/connector.php /wp-content/themes/twentytwentyfour/p ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-28 02:53:42 (1 month ago)	(mod_security) mod_security (id:222160) triggered by 173.239.216.36 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:222160) triggered by 173.239.216.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 22:53:37.316007 2026] [security2:error] [pid 17699:tid 17699] [client 173.239.216.36:61391] ModSecurity: Access denied with code 403 (phase 1). String match "wp-content/plugins/wp-easycart/inc/admin/phpinfo.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6347"] [id "222160"] [rev "1"] [msg "COMODO WAF: Information disclosure vulnerability in The EasyCart plugin before 2.0.6 for WordPress (CVE-2014-4942)\|\|k4uu.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "k4uu.com"] [uri "/wp-content/plugins/wp-easycart/inc/admin/phpinfo.php"] [unique_id "afAhMdjQxHdnZGwyuDvkIgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-04-27 17:42:33 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-04-26 03:33:53 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-04-24 05:59:03 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇦🇺 aranguren.org	2026-04-20 17:43:50 (2 months ago)	173.239.216.36 - - [21/Apr/2026:03:43:48 +1000] "GET /Okxob.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (W ... show more 173.239.216.36 - - [21/Apr/2026:03:43:48 +1000] "GET /Okxob.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 173.239.216.36 - - [21/Apr/2026:03:43:48 +1000] "GET /x123x.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 173.239.216.36 - - [21/Apr/2026:03:43:49 +1000] "GET /amax.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 173.239.216.36 - - [21/Apr/2026:03:43:49 +1000] "GET /aaa.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 173.239.216.36 - - [21/Apr/2026:03:43:49 +1000] "GET /eetu.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 173.239.216.36 - - [21/Apr/2026:03:43:49 +1000] "GET /zb_system/login.php HTTP/1.1" 404 993 "-" "Mozilla/5.0 (X11; Linux i686; rv:79 ... show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-17 20:04:57 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 173.239.216.36 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.216.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 17 16:04:51.510742 2026] [security2:error] [pid 1334084:tid 1334084] [client 173.239.216.36:24001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.giff.cloud"] [uri "/.git/execute.php"] [unique_id "aeKSY3Spph6CPGLx9H2j0QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-17 02:24:23 (2 months ago)	Multiple WAF Violations	Web App Attack
🇩🇪 EGP Abuse Dept	2026-04-17 00:47:35 (2 months ago)	Scanning for web/db/file exploits on www.meeuwsenoptiek.nl	SQL Injection Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2026-04-13 17:20:32 (2 months ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-stl2-17)	Hacking Bad Web Bot
🇬🇧 SilverZippo	2026-04-12 13:24:38 (2 months ago)	Web App Attack	Web App Attack
🇧🇪 cmbplf	2026-04-03 03:22:05 (2 months ago)	16.361 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
Anonymous	2026-03-19 15:30:05 (3 months ago)	\| [Normal/Switzerland] Aggressive IP 173.239.216.36 (~350 hits). Type: DoS Defender- Web server 400 ... show more \| [Normal/Switzerland] Aggressive IP 173.239.216.36 (~350 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇺🇸 mnsf	2026-03-19 00:06:12 (3 months ago)	Request Overload (116)	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-03-18 22:26:26 (3 months ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 15 of 102 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.56

🇺🇸 162.216.150.227

🇸🇬 118.139.164.171

🇻🇳 104.218.166.62

🇳🇱 91.92.42.19

🇺🇸 67.249.108.51

🇺🇸 44.171.105.178

🇮🇳 203.200.74.18

🇨🇭 80.253.92.139

🇺🇦 79.143.45.75

🇺🇸 44.192.240.140

🇨🇳 14.220.254.124

🇺🇸 173.255.223.124

🇭🇰 165.154.41.205

🇺🇸 162.241.47.135

🇺🇸 162.216.150.90

🇸🇬 143.198.203.76

🇨🇦 85.217.149.10

🇳🇱 45.148.10.151

🇺🇸 44.87.19.163