JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.239.249.41

173.239.249.41 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	logicweb.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.239.249.41

Whois 173.239.249.41

IP Abuse Reports for 173.239.249.41:

This IP address has been reported a total of 22 times from 11 distinct sources. 173.239.249.41 was first reported on February 28th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 EGP Abuse Dept	2026-04-28 01:56:11 (2 months ago)	Scanning for web/db/file exploits on bolton.nl	SQL Injection Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-04-21 09:01:05 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-04-01 15:05:16 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-03-04 18:05:43 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 xmission.com	2025-07-29 22:06:51 (10 months ago)	Blocked by UFW (TCP on 1) Source port: 61000 TTL: 119 Packet length: 52 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 1) Source port: 61000 TTL: 119 Packet length: 52 TOS: 0x00 This report (for 173.239.249.41) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇸🇬 www.winos.me	2025-07-13 17:17:02 (11 months ago)	stream fail	Web App Attack
🇩🇪 marzzzello	2025-06-24 03:04:17 (1 year ago)	Ports: 8x 57548	Port Scan
🇲🇾 Rizzy	2025-03-07 04:05:06 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇲🇾 Rizzy	2025-03-07 04:05:06 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-03-06 23:06:32 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 06 18:06:23.826998 2025] [security2:error] [pid 31259:tid 31259] [client 173.239.249.41:52095] [client 173.239.249.41] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pluscures.com"] [uri "/css/wp-config.php"] [unique_id "Z8oqb3LR1-s872LZSYKvAAAAADs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-06 20:52:03 (1 year ago)	Excessive connections to http/https ports	DDoS Attack
🇦🇺 advena	2025-03-06 08:00:55 (1 year ago)	173.239.249.41 (AS137409 GSLNETWORKS-AS-AP GSL Networks Pty LTD) was intercepted at 2025-03-06T07:59 ... show more 173.239.249.41 (AS137409 GSLNETWORKS-AS-AP GSL Networks Pty LTD) was intercepted at 2025-03-06T07:59:23Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: block. show less	Web Spam Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-03-06 04:05:04 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 05 23:04:54.842123 2025] [security2:error] [pid 32415:tid 32415] [client 173.239.249.41:57401] [client 173.239.249.41] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cesmat.com"] [uri "/css/wp-config.php"] [unique_id "Z8ke5j9yIedLN_gPlP46MgAAACk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-06 03:28:03 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 05 22:27:58.107955 2025] [security2:error] [pid 32185:tid 32185] [client 173.239.249.41:55470] [client 173.239.249.41] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garrettkirkland.com"] [uri "/css/wp-config.php"] [unique_id "Z8kWPg60Nya4HGt8AqCXhwAAACs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-06 00:32:23 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 173.239.249.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 05 19:32:18.838510 2025] [security2:error] [pid 27146:tid 27146] [client 173.239.249.41:51707] [client 173.239.249.41] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lamanchaorchards.com"] [uri "/css/wp-config.php"] [unique_id "Z8jtEiz-epwrRGooTrMcZgAAACw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇦 195.222.43.138

🇮🇳 152.59.203.219

🇧🇷 132.255.153.179

🇧🇷 132.255.153.53

🇧🇩 103.111.225.208

🇧🇬 91.191.209.74

🇫🇷 85.217.140.52

🇳🇱 45.148.10.151

🇰🇷 211.106.133.202

🇩🇿 197.113.53.28

🇸🇪 188.151.25.4

🇲🇾 180.75.236.24

🇧🇷 170.239.108.21

🇧🇷 132.255.152.140

🇧🇷 132.255.109.238

🇺🇸 132.145.201.48

🇮🇳 122.185.248.122

🇫🇮 80.223.201.173

🇨🇳 39.64.111.104

🇶🇦 37.208.144.199