JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.161.159

216.73.161.159 was found in our database!

This IP was reported 239 times. Confidence of Abuse is 100%: ?

100%

ISP	Prefixx, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	prefixx.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.161.159

Whois 216.73.161.159

IP Abuse Reports for 216.73.161.159:

This IP address has been reported a total of 239 times from 131 distinct sources. 216.73.161.159 was first reported on March 4th 2022, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 paulshipley.com.au	2023-12-24 08:42:46 (2 years ago)	iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:22 +1100] "GET /doc.php HTTP/1.1" 404 53359 "h ... show more iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:22 +1100] "GET /doc.php HTTP/1.1" 404 53359 "http://iaki.com.au//doc.php" "Go-http-client/1.1" iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:24 +1100] "GET /shell.php HTTP/1.1" 404 47940 "http://iaki.com.au//shell.php" "Go-http-client/1.1" iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:26 +1100] "GET /fm.php HTTP/1.1" 404 47940 "http://iaki.com.au//fm.php" "Go-http-client/1.1" iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:31 +1100] "GET /repeater.php HTTP/1.1" 404 47940 "http://iaki.com.au//repeater.php" "Go-http-client/1.1" iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:33 +1100] "GET /wso.php HTTP/1.1" 404 47940 "http://iaki.com.au//wso.php" "Go-http-client/1.1" iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:36 +1100] "GET /shell20211028.php HTTP/1.1" 404 47940 "http://iaki.com.au//shell20211028.php" "Go-http-client/1.1" iaki.com.au:443 216.73.161.159 - - [24/Dec/2023:19:42:38 +1100] "GET /wp-b ... show less	Web App Attack
🇩🇪 iNetWorker	2023-12-24 04:52:30 (2 years ago)	trolling for resource vulnerabilities	Web App Attack
🇨🇦 Justmee	2023-12-23 23:42:04 (2 years ago)	Dec 23 16:41:48 server1 kernel: [8416492.795823] IPTABLES: IN=eth0 OUT= MAC=00:22:19:d7:2c:94:04:42: ... show more Dec 23 16:41:48 server1 kernel: [8416492.795823] IPTABLES: IN=eth0 OUT= MAC=00:22:19:d7:2c:94:04:42:1a:61:50:d8:08:00 SRC=216.73.161.159 DST=192.168.100.3 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=20662 DF PROTO=TCP SPT=44559 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 Dec 23 16:41:51 server1 kernel: [8416495.837189] IPTABLES: IN=eth0 OUT= MAC=00:22:19:d7:2c:94:04:42:1a:61:50:d8:08:00 SRC=216.73.161.159 DST=192.168.100.3 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=20664 DF PROTO=TCP SPT=44559 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 Dec 23 16:42:03 server1 kernel: [8416508.221028] IPTABLES: IN=eth0 OUT= MAC=00:22:19:d7:2c:94:04:42:1a:61:50:d8:08:00 SRC=216.73.161.159 DST=192.168.100.3 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=20666 DF PROTO=TCP SPT=44559 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Hacking Brute-Force
🇦🇺 weblite	2023-12-23 18:54:58 (2 years ago)	WP_MALWARE_PROBE	Hacking Web App Attack
Anonymous	2023-12-23 12:59:21 (2 years ago)	Bot disrespecting robots.txt	Bad Web Bot
🇨🇭 zynex	2023-12-22 23:13:19 (2 years ago)	URL Probing: /wp-admin/css/colors/coffee/index.php	Web App Attack
🇺🇸 ALSCO®️	2023-12-22 22:00:15 (2 years ago)	Report By ALSCO Security Team: SQL Injection Attempt Detected	Hacking
🇺🇸 Secure Gateway®️	2023-12-22 22:00:15 (2 years ago)	Report By Secure Gateway Security Team: Unsolicited Connection Attempt	Hacking
🇬🇧 yvoictra	2023-12-22 18:36:59 (2 years ago)	216.73.161.159 - - [22/Dec/2023:19:36:33 +0100] "GET /403.php HTTP/2.0" 404 9410 "https://quiquetiev ... show more 216.73.161.159 - - [22/Dec/2023:19:36:33 +0100] "GET /403.php HTTP/2.0" 404 9410 "https://quiquetieva.com//403.php" "Go-http-client/2.0" 216.73.161.159 - - [22/Dec/2023:19:36:35 +0100] "GET /by.php HTTP/2.0" 404 9410 "https://quiquetieva.com//by.php" "Go-http-client/2.0" 216.73.161.159 - - [22/Dec/2023:19:36:37 +0100] "GET /css.php HTTP/2.0" 404 9410 "https://quiquetieva.com//css.php" "Go-http-client/2.0" 216.73.161.159 - - [22/Dec/2023:19:36:39 +0100] "GET /wp-content/plugins/instabuilder2/cache/plugins/moon.php HTTP/2.0" 404 9410 "https://quiquetieva.com//wp-content/plugins/instabuilder2/cache/plugins/moon.php" "Go-http-client/2.0" 216.73.161.159 - - [22/Dec/2023:19:36:41 +0100] "GET /uploads/wp-blog.php HTTP/2.0" 404 9410 "https://quiquetieva.com//uploads/wp-blog.php" "Go-http-client/2.0" 216.73.161.159 - - [22/Dec/2023:19:36:43 +0100] "GET /wp-content/plugins/Cache/dropdown.php HTTP/2.0" 404 9410 "https://quiquetieva.com//wp-content/plugins/Cache/dropdown.php" "Go-http-client/2.0" ... show less	Brute-Force Web App Attack
🇷🇺 avaio-media	2023-12-22 00:56:18 (2 years ago)		Web App Attack
🇺🇸 mawan	2023-12-21 17:57:48 (2 years ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇲🇾 Rizzy	2023-12-21 17:17:34 (2 years ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2023-12-20 02:52:02 (2 years ago)	Bot / scanning and/or hacking attempts: GET /classwithtostring.php HTTP/1.1, GET //1.php HTTP/1.1, G ... show more Bot / scanning and/or hacking attempts: GET /classwithtostring.php HTTP/1.1, GET //1.php HTTP/1.1, GET //gecko.php HTTP/1.1, GET /admin.php HTTP/1.1, GET //classwithtostring.php HTTP/1.1, GET //admin.php HTTP/1.1, GET /user.php HTTP/1.1, GET //mini.php HTTP/1.1, GET /mini.php HTTP/1.1, GET /1.php HTTP/1.1, GET //user.php HTTP/1.1, GET /gecko.php HTTP/1.1 show less	Hacking Web App Attack
🇳🇱 speedtaq.com	2023-12-19 20:32:06 (2 years ago)	216.73.161.159 - - [19/Dec/2023:21:32:05 +0100] "GET //403.php HTTP/1.1" 301 429 "-" "Go-http-client ... show more 216.73.161.159 - - [19/Dec/2023:21:32:05 +0100] "GET //403.php HTTP/1.1" 301 429 "-" "Go-http-client/1.1" show less	Bad Web Bot
🇺🇸 TPI-Abuse	2023-12-18 06:38:42 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 216.73.161.159 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.73.161.159 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 18 01:38:35.857499 2023] [security2:error] [pid 31057] [client 216.73.161.159:18881] [client 216.73.161.159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baliaccommodationpadangpadang.com"] [uri "/.env"] [unique_id "ZX_o64KfPgcH9REw3xY_GwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 196 to 210 of 239 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.158.182.21

🇧🇼 168.167.23.34

🇺🇸 147.185.132.176

🇸🇬 103.134.154.36

🇧🇪 34.77.89.33

🇨🇳 223.107.146.186

🇺🇸 209.85.167.230

🇪🇨 186.68.83.104

🇳🇴 185.12.59.118

🇺🇸 162.216.149.170

🇺🇸 152.32.234.97

🇫🇮 147.185.133.54

🇯🇵 133.18.125.102

🇮🇳 115.241.83.2

🇱🇰 112.134.182.133

🇺🇸 91.230.168.79

🇺🇸 209.85.219.101

🇺🇸 209.85.160.104

🇫🇮 185.216.71.130

🇳🇱 176.65.139.131