JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.159.101

216.73.159.101 was found in our database!

This IP was reported 225 times. Confidence of Abuse is 9%: ?

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	Zappie Host - Santiago, Chile
Usage Type	Data Center/Web Hosting/Transit
ASN	AS61138
Domain Name	zappiehost.com
Country	🇨🇱 Chile
City	Santiago, Santiago Metropolitan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.159.101

Whois 216.73.159.101

IP Abuse Reports for 216.73.159.101:

This IP address has been reported a total of 225 times from 108 distinct sources. 216.73.159.101 was first reported on April 24th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-11 16:12:22 (2 weeks ago)	Try to access /xmlrpc.php	Web App Attack
Anonymous	2026-05-06 04:02:59 (1 month ago)	2026-05-05 19:00:30,781 fail2ban.actions [3625835]: NOTICE [tor] Ban 216.73.159.101 2026-05- ... show more 2026-05-05 19:00:30,781 fail2ban.actions [3625835]: NOTICE [tor] Ban 216.73.159.101 2026-05-05 22:00:28,147 fail2ban.actions [3625835]: NOTICE [tor] Ban 216.73.159.101 2026-05-06 01:00:27,714 fail2ban.actions [3625835]: NOTICE [tor] Ban 216.73.159.101 2026-05-06 04:00:36,263 fail2ban.actions [3625835]: NOTICE [tor] Ban 216.73.159.101 2026-05-06 07:02:58,425 fail2ban.actions [3625835]: NOTICE [tor] Ban 216.73.159.101 show less	Brute-Force
Anonymous	2026-04-24 21:03:10 (2 months ago)	2026-04-24 12:00:31,147 fail2ban.actions [7718]: NOTICE [tor] Ban 216.73.159.101 2026-04-24 ... show more 2026-04-24 12:00:31,147 fail2ban.actions [7718]: NOTICE [tor] Ban 216.73.159.101 2026-04-24 15:00:29,283 fail2ban.actions [7718]: NOTICE [tor] Ban 216.73.159.101 2026-04-24 18:00:31,106 fail2ban.actions [7718]: NOTICE [tor] Ban 216.73.159.101 2026-04-24 21:00:40,186 fail2ban.actions [7718]: NOTICE [tor] Ban 216.73.159.101 2026-04-25 00:03:09,170 fail2ban.actions [7718]: NOTICE [tor] Ban 216.73.159.101 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-23 20:51:31 (2 months ago)	(mod_security) mod_security (id:210831) triggered by 216.73.159.101 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 216.73.159.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 16:51:24.359146 2026] [security2:error] [pid 27055:tid 27055] [client 216.73.159.101:53176] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.cosmicdebris.org\|F\|4"] [data "panscient.com"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.cosmicdebris.org"] [uri "/robots.txt"] [unique_id "aeqGTOh2T7M9xBWnGuzK7gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-16 23:07:01 (2 months ago)	Automated bot traffic — residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (Windows NT 10. ... show more Automated bot traffic — residential proxy, fake browser fingerprint. UA="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" show less	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-03-23 22:59:17 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-23	Web App Attack SSH Hacking
Anonymous	2026-03-17 20:01:04 (3 months ago)	2026-03-17 11:00:11,583 fail2ban.actions [3511917]: NOTICE [tor] Ban 216.73.159.101 2026-03- ... show more 2026-03-17 11:00:11,583 fail2ban.actions [3511917]: NOTICE [tor] Ban 216.73.159.101 2026-03-17 13:00:56,020 fail2ban.actions [3511917]: NOTICE [tor] Ban 216.73.159.101 2026-03-17 16:00:30,980 fail2ban.actions [3511917]: NOTICE [tor] Ban 216.73.159.101 2026-03-17 19:01:01,482 fail2ban.actions [3511917]: NOTICE [tor] Ban 216.73.159.101 2026-03-17 22:00:54,362 fail2ban.actions [3511917]: NOTICE [tor] Ban 216.73.159.101 show less	Brute-Force
🇩🇪 LRob.fr	2026-03-07 06:15:04 (3 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇪🇸 gnom4ik	2026-02-21 02:33:56 (4 months ago)	ban-reviewer auto report; ip=216.73.159.101; scenario=http:scan; verdict=valid_ban; confidence=0.85; ... show more ban-reviewer auto report; ip=216.73.159.101; scenario=http:scan; verdict=valid_ban; confidence=0.85; categories=14,15,18; active_decisions=2; lookback_decisions=2; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=http:scan scenario detected; port scan category (14) applied; 2 recent decisions for IP in lookback window show less	Port Scan Hacking Brute-Force
🇮🇳 liveaspankaj	2026-02-20 23:28:46 (4 months ago)	DDoS attack: 146 requests in 5m (GET / or repair.php).	DDoS Attack
🇳🇱 ConsulHosting	2026-02-15 16:03:11 (4 months ago)	Part of an HTTP Flood DDoS attack and had sent at least 34 requests.	DDoS Attack Exploited Host
🇫🇷 polido	2026-02-13 10:30:52 (4 months ago)	Unauthorized connection attempt to port 443 from 216.73.159.101	Port Scan
🇮🇳 liveaspankaj	2026-02-12 12:03:09 (4 months ago)	DDoS attack on learngeeta.com: 185 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Auto ... show more DDoS attack on learngeeta.com: 185 requests of GET / HTTP/1.1 over plain HTTP with no referrer. Automated bot attack with randomized User-Agents (outdated Chrome 127-129). show less	DDoS Attack
🇩🇪 LRob.fr	2026-01-24 22:50:26 (5 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-01-09 07:20:09 (5 months ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack

Showing 1 to 15 of 225 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.195.28

🇩🇪 18.194.144.82

🇳🇱 172.71.95.121

🇧🇪 94.225.231.163

🇺🇸 44.43.241.159

🇺🇸 44.16.50.124

🇮🇱 2.55.75.176

🇲🇽 200.92.210.26

🇮🇩 103.144.103.15

🇩🇪 94.26.106.216

🇺🇸 74.7.230.22

🇺🇸 44.246.185.10

🇮🇪 20.107.204.22

🇺🇸 173.236.255.109

🇭🇰 172.253.237.23

🇨🇳 125.124.226.217

🇮🇳 103.91.246.73

🇱🇹 91.224.92.17

🇱🇺 64.89.160.167

🇩🇪 47.91.94.24