JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.160.197

216.73.160.197 was found in our database!

This IP was reported 226 times. Confidence of Abuse is 82%: ?

82%

ISP	Prefixx, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	prefixx.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.160.197

Whois 216.73.160.197

IP Abuse Reports for 216.73.160.197:

This IP address has been reported a total of 226 times from 106 distinct sources. 216.73.160.197 was first reported on August 21st 2022, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Nerdscave Hosting	2026-06-25 06:01:28 (2 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 pscriptos	2026-06-25 02:49:05 (5 hours ago)	{"ClientAddr":"216.73.160.197:36757","ClientHost":"216.73.160.197","ClientPort":"36757","ClientUsern ... show more {"ClientAddr":"216.73.160.197:36757","ClientHost":"216.73.160.197","ClientPort":"36757","ClientUsername":"-","DownstreamContentSize":12399,"DownstreamStatus":403,"Duration":208401853,"OriginContentSize":12399,"OriginDuration":205433602,"OriginStatus":403,"Overhead":2968251,"RequestAddr":"www.cleveradmin.de","RequestContentSize":111,"RequestCount":1369679,"RequestHost":"www.cleveradmin.de","RequestMethod":"POST","RequestPath":"/wp-login.php","RequestPort":"-","RequestProtocol":"HTTP/1.1","RequestScheme":"https","RetryAttempts":0,"RouterName":"cleveradmin-www-websecure@file","ServiceAddr":"172.16.80.10:80","ServiceName":"cleveradmin-www@file","ServiceURL":"http://172.16.80.10:80","StartLocal":"2026-06-25T04:48:32.216206616+02:00","StartUTC":"2026-06-25T02:48:32.216206616Z","TLSCipher":"TLS_AES_128_GCM_SHA256","TLSVersion":"1.3","entryPointName":"websecure","level":"info","msg":"","time":"2026-06-25T04:48:32+02:00"} {"ClientAddr":"216.73.160.197:36757","ClientHost":"216.73.160.197","Clien ... show less	Brute-Force Web App Attack
🇸🇪 vaia.cloud	2026-06-25 00:50:01 (7 hours ago)	trying wp-login.php/xmlrpc.php 31 times in 1 minutes	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-25 00:30:36 (7 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 nyt	2026-06-24 21:02:27 (11 hours ago)	WP login POST blocked by WAF, 503 status indicates potential issue or attack	Brute-Force Web App Attack
🇦🇹 penguin-solutions.at	2026-06-24 20:47:57 (11 hours ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-24 10:10:33 (22 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
Anonymous	2026-06-23 19:46:17 (1 day ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-02 10:46:11 (3 weeks ago)	Failed Wordpress Logins	Web App Attack
🇺🇸 Jason Howell	2026-05-24 17:51:27 (1 month ago)	216.73.160.197 - - [24/May/2026:12:51:24 -0500] "POST /wp-login.php HTTP/1.1" 200 5157 "https://tatp ... show more 216.73.160.197 - - [24/May/2026:12:51:24 -0500] "POST /wp-login.php HTTP/1.1" 200 5157 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36" 216.73.160.197 - - [24/May/2026:12:51:25 -0500] "GET /wp-admin/index.php HTTP/1.1" 302 476 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36" 216.73.160.197 - - [24/May/2026:12:51:26 -0500] "POST /wp-login.php HTTP/1.1" 200 2551 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/119.0.1" 216.73.160.197 - - [24/May/2026:12:51:26 -0500] "GET /wp-admin/index.php HTTP/1.1" 302 476 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/119.0.1" 216.73.160.197 - - [24/May/2026:12:51:27 -0500] "POST /wp-login.php HTTP/1.1" 200 2551 "https://tatpl-traffic.co ... show less	Web App Attack
🇺🇸 Jason Howell	2026-05-24 10:25:44 (1 month ago)	216.73.160.197 - - [24/May/2026:05:25:41 -0500] "POST /wp-login.php HTTP/1.1" 200 5024 "https://tota ... show more 216.73.160.197 - - [24/May/2026:05:25:41 -0500] "POST /wp-login.php HTTP/1.1" 200 5024 "https://totalsepticserviceiowa.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/121.0" 216.73.160.197 - - [24/May/2026:05:25:42 -0500] "GET /wp-admin/index.php HTTP/1.1" 302 490 "https://totalsepticserviceiowa.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/121.0" 216.73.160.197 - - [24/May/2026:05:25:42 -0500] "GET /wp-login.php?redirect_to=https%3A%2F%2Ftotalsepticserviceiowa.com%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 4406 "https://totalsepticserviceiowa.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/121.0" 216.73.160.197 - - [24/May/2026:05:25:43 -0500] "POST /wp-login.php HTTP/1.1" 200 2393 "https://totalsepticserviceiowa.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36" 216.73.1 ... show less	Web App Attack
🇩🇪 ger-stg-sifi1	2026-05-24 08:56:55 (1 month ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 LRob.fr	2026-05-24 01:00:28 (1 month ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇩🇪 Marc	2026-05-23 15:52:31 (1 month ago)	216.73.160.197 - - [23/May/2026:17:52:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6440 "https://dobs ... show more 216.73.160.197 - - [23/May/2026:17:52:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6440 "https://dobslaf.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Gecko/20100101 Firefox/118.0.2" 216.73.160.197 - - [23/May/2026:17:52:25 +0200] "POST /wp-login.php HTTP/1.1" 200 3809 "https://dobslaf.de/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36" 216.73.160.197 - - [23/May/2026:17:52:26 +0200] "POST /wp-login.php HTTP/1.1" 200 3867 "https://dobslaf.de/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/120.0.1" 216.73.160.197 - - [23/May/2026:17:52:28 +0200] "POST /wp-login.php HTTP/1.1" 200 3872 "https://dobslaf.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36" 216.73.160.197 - - [23/May/2026:17:52:30 +0200] "POST /wp-login.php HTTP/1.1" 200 3867 "https://dobslaf.de/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/ show less	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-05-23 07:29:02 (1 month ago)	May 23 00:28:53 ismay WPAudit[310678]: 216.73.160.197 georamagrowers.com "Mozilla/5.0 (Windows NT 11 ... show more May 23 00:28:53 ismay WPAudit[310678]: 216.73.160.197 georamagrowers.com "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36" wpx_admsssn1n:Aa1S02ssav030!xx FAIL May 23 00:28:55 ismay WPAudit[310640]: 216.73.160.197 georamagrowers.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/120.0.1" wpcode:ahxPSDxkOOuc FAIL May 23 00:28:57 ismay WPAudit[310640]: 216.73.160.197 georamagrowers.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36" [email protected]:Thaiheo1@ FAIL May 23 00:28:59 ismay WPAudit[310640]: 216.73.160.197 georamagrowers.com "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/122.0" admin:Thaiheo1@ FAIL May 23 00:29:02 ismay WPAudit[310640]: 216.73.160.197 georamagrowers.com "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/122.0" thai02h5:Thaiheo1@ FAIL ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 226 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 185.117.225.130

🇸🇬 172.71.124.53

🇺🇸 165.154.255.63

🇺🇸 162.216.150.56

🇩🇪 151.243.11.35

🇮🇳 128.185.116.114

🇨🇳 116.207.127.172

🇨🇳 106.12.148.154

🇧🇬 91.191.209.46

🇷🇴 72.5.43.62

🇫🇮 147.185.133.49

🇵🇭 119.93.249.179

🇭🇰 118.193.38.26

🇩🇪 84.233.216.173

🇳🇱 45.198.224.46

🇨🇳 218.28.18.2

🇺🇸 216.25.124.41

🇿🇦 102.209.119.142

🇩🇪 43.228.157.62

🇪🇬 196.218.39.131