JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.219.93

173.239.219.93 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 3%: ?

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS64286
Domain Name	logicweb.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.219.93

Whois 173.239.219.93

IP Abuse Reports for 173.239.219.93:

This IP address has been reported a total of 12 times from 4 distinct sources. 173.239.219.93 was first reported on May 28th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-01 02:15:44 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:15:37.568682 2026] [security2:error] [pid 7732:tid 7746] [client 173.239.219.93:37583] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.kettlehill.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.kettlehill.com"] [uri "/login.php.bak"] [unique_id "ahzrSSKq_i-FrRbJEDL_CQAAAUA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-08 21:14:00 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 17:13:53.635808 2026] [security2:error] [pid 128693:tid 128693] [client 173.239.219.93:44705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.nbcnewsradio.com"] [uri "/.htaccess"] [unique_id "adbFEf-TW-SY5S-ve_7pmAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-07 12:29:17 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 07 07:29:12.936404 2026] [security2:error] [pid 9604:tid 9604] [client 173.239.219.93:38911] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/index.php.bak"] [unique_id "aYcwGD84GRs9kKqWzHSijgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-02-05 22:06:03 (4 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -18.075 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -18.075 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Sa show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-01 11:35:36 (4 months ago)	(mod_security) mod_security (id:240950) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240950) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 06:34:34.345311 2026] [security2:error] [pid 16721:tid 16866] [client 173.239.219.93:52233] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)\|\|mail.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mail.kettlehill.com"] [uri "/jira/secure/QueryComponentRendererValue!Default.jspa"] [unique_id "aX86SrZSDMB2xJcUTnRcCAAAAoM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 raspi4	2025-12-31 19:23:52 (5 months ago)	Fail2Ban Ban Triggered	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 22:17:58 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:17:52.697443 2025] [security2:error] [pid 26654:tid 26654] [client 173.239.219.93:46873] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.farmers123.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.farmers123.com"] [uri "/....\\\\....\\\\....\\\\....\\\\....\\\\....\\\\....\\\\....\\\\....\\\\windows\\\\win.ini"] [unique_id "aS9lkMXcHnn5lz0MXMLoIQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-28 22:46:23 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 18:46:16.619710 2025] [security2:error] [pid 24261:tid 24261] [client 173.239.219.93:45099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/.env.backup"] [unique_id "aQFHuKvsfTw0NdufNjDZPAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-22 19:38:25 (8 months ago)	(mod_security) mod_security (id:210492) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Sep 22 15:38:11.127364 2025] [security2:error] [pid 7132:tid 7132] [client 173.239.219.93:44043] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deandobkin.com"] [uri "/.env."] [unique_id "aNGlo8iPQTFy9dR8PZHKsQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-01 05:53:49 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 01:53:36.279753 2025] [security2:error] [pid 15240:tid 15269] [client 173.239.219.93:41865] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.net\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.net"] [uri "/php_errors.log"] [unique_id "aGN34FEMdJRstfLTz5R91wAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-30 20:16:02 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 173.239.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 30 16:15:58.195182 2025] [security2:error] [pid 626512:tid 626512] [client 173.239.219.93:44827] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/login.php.bak"] [unique_id "aDoR_qxcYAe8vYCg2H8oSAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-05-28 06:30:03 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.24.210.153

🇷🇺 176.125.155.238

🇩🇪 139.59.138.20

🇷🇴 94.156.152.50

🇩🇪 91.92.240.42

🇬🇧 35.203.210.201

🇬🇧 213.166.84.46

🇺🇦 195.64.250.9

🇸🇾 185.225.41.192

🇦🇺 109.123.227.128

🇳🇱 103.251.165.133

🇷🇺 95.165.130.8

🇹🇷 78.180.246.186

🇸🇬 43.156.229.76

🇫🇮 37.27.234.213

🇺🇸 206.189.205.85

🇺🇸 195.184.76.118

🇺🇸 150.107.36.119

🇨🇳 118.196.119.108

🇫🇷 91.231.89.27