JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.237.116.73

172.237.116.73 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 30%: ?

30%

ISP	Linode
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Hostname(s)	172-237-116-73.ip.linodeusercontent.com
Domain Name	linode.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.237.116.73

Whois 172.237.116.73

IP Abuse Reports for 172.237.116.73:

This IP address has been reported a total of 43 times from 29 distinct sources. 172.237.116.73 was first reported on April 22nd 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ecs.ge	2026-05-12 22:01:59 (1 month ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇩🇪 ecs.ge	2026-05-11 07:19:39 (1 month ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
Anonymous	2026-05-07 12:20:23 (1 month ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
Anonymous	2026-05-07 09:52:05 (1 month ago)	Reported from Nginx log analysis 6. Log: 172.237.116.73 - - [07/May/2026:xx:xx:xx 0200] "GET / HTTP ... show more Reported from Nginx log analysis 6. Log: 172.237.116.73 - - [07/May/2026:xx:xx:xx 0200] "GET / HTTP/2.0" xxx xxx "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0" "-" "GB United Kingdom London" "AS63949" "Akamai Connected Cloud" show less	Port Scan Brute-Force SSH
🇺🇸 donarev419	2026-05-07 05:35:38 (1 month ago)	Connection to port 80 with data transfer. Data preview:	Port Scan Hacking
Anonymous	2026-05-07 05:24:15 (1 month ago)	SSL Weakness Scan	Hacking
🇨🇿 sajmon0011	2026-05-07 05:04:13 (1 month ago)	172.237.116.73 - - [07/May/2026:07:04:13 +0200] "\x16\x03\x01\x02" 400 226 "-" "-" ...	Web App Attack
🇺🇸 aks4226	2026-05-07 04:22:13 (1 month ago)	Attacking common web applications. (n01)	Web App Attack
🇩🇪 ecs.ge	2026-05-07 03:44:01 (1 month ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇺🇸 xmission.com	2026-05-07 03:29:00 (1 month ago)	Blocked by UFW (TCP on 80) Source port: 40753 TTL: 42 Packet length: 60 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 40753 TTL: 42 Packet length: 60 TOS: 0x08 This report (for 172.237.116.73) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇫🇮 ngonghillsbikers	2026-05-07 03:00:05 (1 month ago)	Date: 07/May/2026:05:18:59.572834 +0300 \| Reported IP: 172.237.116.73 mod_security \| id: 920350 9501 ... show more Date: 07/May/2026:05:18:59.572834 +0300 \| Reported IP: 172.237.116.73 mod_security \| id: 920350 950130 959100 980170 \| GB/group.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; ; ; ; ; Warning. Pattern match; Warning. Pattern match; Warning. Unconditional match in SecAction. [file; Access denied with code 403 (phase 4). Operator GE matched 4 at TX:blocking_outbound_anomaly_score. [file show less	SQL Injection Brute-Force Bad Web Bot
🇩🇪 london2038.com	2026-05-07 02:08:36 (1 month ago)	Malformed or malicious web request 172.237.116.73 - - [07/May/2026:04:08:32 +0200] "\x16\x03\x01\x02 ... show more Malformed or malicious web request 172.237.116.73 - - [07/May/2026:04:08:32 +0200] "\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03\xD4\xC6\x9D\x1B\xA3\x84j\xDC\xBE\xA0w\xE5\x09\x92198\x86\x064\xF3\xE6\xF1\x85H4]\xC7\xB3\x15p 1a\xFE\xDB\x10-\xB2\x1B\x98\xA7ooF\x87~\x80\xAF\xBF\xD8\x9E)H\xCB\x10!\xA8~\xBE\xB6\x1E\x92\x00>\x13\x02\x13\x03\x13\x01\xC0,\xC00\x00\x9F\xCC\xA9\xCC\xA8\xCC\xAA\xC0+\xC0/\x00\x9E\xC0$\xC0(\x00k\xC0#\xC0'\x00g\xC0" 400 157 "-" "-" show less	Hacking Web App Attack
🇩🇪 bescared	2026-05-07 00:33:22 (1 month ago)	F2B - Malicious activity detected. URL Probing. -c23856ef-	Hacking Bad Web Bot Web App Attack
🇮🇳 evicky2002	2026-05-01 06:17:05 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=90, sources=1)	Hacking Brute-Force SSH
🇨🇳 ThreatBook.io	2026-04-30 22:43:13 (1 month ago)	ThreatBook Intelligence: Spam more details on http://threatbook.io/ip/172.237.116.73 2026-04-30 10:2 ... show more ThreatBook Intelligence: Spam more details on http://threatbook.io/ip/172.237.116.73 2026-04-30 10:29:55 / show less	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.54

🇨🇳 221.224.159.218

🇷🇸 176.125.229.5

🇱🇾 154.127.69.7

🇺🇸 70.115.138.167

🇱🇹 45.227.254.170

🇧🇪 34.76.145.42

🇬🇧 213.166.84.56

🇭🇰 152.32.186.240

🇮🇳 152.32.156.138

🇨🇳 182.121.17.60

🇧🇷 179.102.26.14

🇳🇱 176.65.139.31

🇺🇸 52.70.123.241

🇦🇷 45.230.80.48

🇧🇿 45.227.254.156

🇰🇿 2.132.233.142

🇭🇰 203.86.237.65

🇫🇮 147.185.133.35

🇫🇷 85.217.140.46