JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.247.141

173.239.247.141 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 39%: ?

39%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	logicweb.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.247.141

Whois 173.239.247.141

IP Abuse Reports for 173.239.247.141:

This IP address has been reported a total of 37 times from 25 distinct sources. 173.239.247.141 was first reported on December 5th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇪 McHoneypot	2026-06-16 08:09:01 (2 days ago)	Minecraft server scanning dectected on port 25565	Port Scan
🇩🇪 int8	2026-06-16 08:05:47 (2 days ago)	2026-06-16T08:05:47.510651462Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-06-16 08:05:13 (2 days ago)	2026-06-16 10:05:13: Minecraft server scan detected from 173.239.247.141 on port 25565 of 127.0.0.1	Port Scan
🇧🇷 vfAcceloReporter	2026-06-13 15:39:36 (5 days ago)	173.239.247.141 - - [13/Jun/2026:12:39:35 -0300] "GET /.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Linu ... show more 173.239.247.141 - - [13/Jun/2026:12:39:35 -0300] "GET /.env HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Brute-Force Web App Attack Exploited Host
🇺🇸 TPI-Abuse	2026-06-13 15:25:49 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 173.239.247.141 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 173.239.247.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:25:44.626411 2026] [security2:error] [pid 21288:tid 21288] [client 173.239.247.141:28963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trlservice.com"] [uri "/.env"] [unique_id "ai12eDtGAt2lFfqWK0DqGAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 chronos	2026-06-02 01:36:10 (2 weeks ago)	Generic malicious activity: Tentativa de varredura de porta TCP... \| Port: 18867 \| Proto: TCP \| Loca ... show more Generic malicious activity: Tentativa de varredura de porta TCP... \| Port: 18867 \| Proto: TCP \| Location: Vietnam, Hanoi show less	Port Scan Hacking
🇬🇧 consul.to	2026-04-16 10:01:35 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-03-30 06:25:03 (2 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
🇦🇺 MAGIC	2026-03-15 01:33:21 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 02:20:22 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 173.239.247.141 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 173.239.247.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 13 22:20:16.783894 2026] [security2:error] [pid 6376:tid 6376] [client 173.239.247.141:1565] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.scoutinsignia.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.scoutinsignia.com"] [uri "/faq/graphics/ws_ftp.log"] [unique_id "abTF4OM6bGbq1EaNvZ3USQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 gianluca.demartino75	2026-03-09 20:53:50 (3 months ago)	2026-03-09T21:52:44.655969+01:00 vps-49934a4d kernel: [1732328.178844] NFT-DROP: IN=ens3 OUT= MAC=fa ... show more 2026-03-09T21:52:44.655969+01:00 vps-49934a4d kernel: [1732328.178844] NFT-DROP: IN=ens3 OUT= MAC=fa:16:3e:3c:c3:eb:62:b6:6b:82:de:b8:08:00 SRC=173.239.247.141 DST=51.75.247.169 LEN=60 TOS=0x00 PREC=0x60 TTL=44 ID=662 DF PROTO=TCP SPT=29455 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 2026-03-09T21:52:47.683560+01:00 vps-49934a4d kernel: [1732331.205561] NFT-DROP: IN=ens3 OUT= MAC=fa:16:3e:3c:c3:eb:62:b6:6b:82:de:b8:08:00 SRC=173.239.247.141 DST=51.75.247.169 LEN=60 TOS=0x00 PREC=0x60 TTL=44 ID=664 DF PROTO=TCP SPT=29455 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 2026-03-09T21:52:59.909722+01:00 vps-49934a4d kernel: [1732343.429513] NFT-DROP: IN=ens3 OUT= MAC=fa:16:3e:3c:c3:eb:62:b6:6b:82:de:b8:08:00 SRC=173.239.247.141 DST=51.75.247.169 LEN=60 TOS=0x00 PREC=0x60 TTL=44 ID=666 DF PROTO=TCP SPT=29455 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 2026-03-09T21:53:16.040537+01:00 vps-49934a4d kernel: [1732359.562215] NFT-DROP: IN=ens3 OUT= MAC=fa:16:3e:3c:c3:eb:62:b6:6b:82:de:b8:08:00 SRC=173.239.24 ... show less	DDoS Attack
🇺🇸 xmission.com	2026-03-09 18:14:47 (3 months ago)	Blocked by UFW (TCP on 51920) Source port: 6297 TTL: 55 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 51920) Source port: 6297 TTL: 55 Packet length: 60 TOS: 0x00 This report (for 173.239.247.141) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 masterguru	2026-03-07 17:32:16 (3 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 173.239.247.141 (VN/Vietnam/-): 1 in ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 173.239.247.141 (VN/Vietnam/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-03-07 03:28:57 (3 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 173.239.247.141 (VN/Vietnam/-): 1 in ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 173.239.247.141 (VN/Vietnam/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇳🇱 i-turnradio.nl	2026-03-07 03:05:35 (3 months ago)	2026-03-07 04:05:35 (CET) ~ Blocked by abusescan risk assessment	Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.165

🇬🇧 193.32.209.248

🇰🇷 59.2.115.119

🇳🇱 176.65.139.218

🇺🇸 162.216.150.38

🇷🇴 141.98.83.240

🇮🇩 137.59.125.100

🇰🇷 58.224.62.29

🇨🇦 57.134.215.133

🇧🇪 34.62.75.201

🇧🇪 207.175.77.179

🇺🇸 198.62.4.22

🇮🇳 188.241.61.189

🇹🇭 159.192.133.140

🇺🇸 135.237.123.203

🇫🇷 91.231.89.64

🇭🇳 45.182.22.100

🇩🇪 37.221.114.17

🇩🇪 212.227.244.14

🇭🇳 170.83.116.105