JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.161.183

216.73.161.183 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 79%: ?

79%

ISP	Prefixx, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	prefixx.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.161.183

Whois 216.73.161.183

IP Abuse Reports for 216.73.161.183:

This IP address has been reported a total of 135 times from 67 distinct sources. 216.73.161.183 was first reported on June 29th 2022, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2025-04-13 04:51:57 (1 year ago)	Multiple WAF Violations	Web App Attack
🇫🇷 dynamix	2025-04-11 00:13:45 (1 year ago)	Multiple WAF Violations	Web App Attack
🇦🇺 advena	2025-03-06 02:31:08 (1 year ago)	216.73.161.183 (AS206092 SECFIREWALLAS) was intercepted at 2025-03-06T02:23:26Z after violating WAF ... show more 216.73.161.183 (AS206092 SECFIREWALLAS) was intercepted at 2025-03-06T02:23:26Z after violating WAF directive: 874a3e315c344b1281ad4f00046aab6f. Pre-cautionary/corrective action applied: managed_challenge. show less	Web Spam Hacking Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2025-02-04 07:48:02 (1 year ago)	216.73.161.183 - - [04/Feb/2025:09:47:27 +0200] "GET //wp-includes/assets/index.php HTTP/1.1" 404 27 ... show more 216.73.161.183 - - [04/Feb/2025:09:47:27 +0200] "GET //wp-includes/assets/index.php HTTP/1.1" 404 276 "-" "Go-http-client/1.1" 216.73.161.183 - - [04/Feb/2025:09:48:02 +0200] "GET //wp-admin/network/admin.php HTTP/1.1" 404 276 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2025-01-21 09:49:43 (1 year ago)	216.73.161.183 - - [21/Jan/2025:11:46:34 +0200] "GET //wp-content/plugins/backup_index.php HTTP/1.1" ... show more 216.73.161.183 - - [21/Jan/2025:11:46:34 +0200] "GET //wp-content/plugins/backup_index.php HTTP/1.1" 404 273 "-" "Go-http-client/1.1" 216.73.161.183 - - [21/Jan/2025:11:49:42 +0200] "GET //wp-content/plugins/anttt/simple.php HTTP/1.1" 404 273 "-" "Go-http-client/1.1" ... show less	Web App Attack
Anonymous	2024-12-03 01:19:58 (1 year ago)	wordpress-trap	Web App Attack
🇳🇱 Study Bitcoin 🤗	2024-11-10 00:48:24 (1 year ago)	Port probe to tcp/80 (http) [srv124]	Port Scan Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-08 22:34:44 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 08 17:34:38.760138 2024] [security2:error] [pid 649:tid 649] [client 216.73.161.183:55127] [client 216.73.161.183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.5"] [uri "/.env"] [unique_id "Zy6R_pcE2SiDTIYnOJ-0jgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2024-08-29 14:30:35 (1 year ago)	(mod_security) mod_security (id:20000010) triggered by 216.73.161.183 (US/United States/-): 5 in the ... show more (mod_security) mod_security (id:20000010) triggered by 216.73.161.183 (US/United States/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-08-29 04:39:07 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 29 00:39:02.582407 2024] [security2:error] [pid 3061799:tid 3061799] [client 216.73.161.183:40025] [client 216.73.161.183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "assistfeed.com"] [uri "/wp-config.php"] [unique_id "Zs_7ZpYuwWA7ksXJQryQiQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 FredoJF	2024-08-29 04:35:04 (1 year ago)	[Thu Aug 29 00:35:01.630465 2024] [php:error] [pid 4038325] [client 216.73.161.183:24067] script '/v ... show more [Thu Aug 29 00:35:01.630465 2024] [php:error] [pid 4038325] [client 216.73.161.183:24067] script '/var/www/jpp.lol/back.php' not found or unable to stat, referer: http://jpp.lol/back.php [Thu Aug 29 00:35:01.826795 2024] [php:error] [pid 4038325] [client 216.73.161.183:24067] script '/var/www/jpp.lol/ova.php' not found or unable to stat, referer: http://jpp.lol/ova.php [Thu Aug 29 00:35:03.406921 2024] [php:error] [pid 4038325] [client 216.73.161.183:24067] script '/var/www/jpp.lol/wp-22.php' not found or unable to stat, referer: http://jpp.lol/wp-22.php?bction=ping ... show less	Brute-Force Web App Attack
🇮🇪 Jim Keir	2024-08-28 12:50:53 (1 year ago)	2024-08-28 12:50:52 216.73.161.183 File scanning, blocking 216.73.161.183 for 5 minutes	Web App Attack
🇺🇸 TPI-Abuse	2024-08-28 03:44:00 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 23:43:54.121640 2024] [security2:error] [pid 10291:tid 10291] [client 216.73.161.183:5659] [client 216.73.161.183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "achildsspace.com"] [uri "/wp-config.php"] [unique_id "Zs6c-uRGX0bS8ZmalCVJ7QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-08-28 03:03:12 (1 year ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2024-08-27 01:10:29 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.73.161.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 26 21:10:22.622304 2024] [security2:error] [pid 27102:tid 27102] [client 216.73.161.183:47975] [client 216.73.161.183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.genevainvestors.com"] [uri "/wp-config.php"] [unique_id "Zs0nfnwGEqPVsgIwDjYBXAAAACM"], referer: http://genevainvestors.com/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack

Showing 76 to 90 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c32::12d

🇦🇺 223.27.18.80

🇦🇷 190.124.61.184

🇲🇽 189.217.130.86

🇨🇳 182.119.228.110

🇸🇬 178.128.96.242

🇳🇱 178.16.55.50

🇺🇸 162.216.150.39

🇨🇳 116.179.32.93

🇧🇩 103.75.138.15

🇨🇳 101.249.61.123

🇺🇿 84.54.73.201

🇳🇱 62.164.177.223

🇳🇱 45.156.87.253

🇰🇷 220.95.64.40

🇧🇪 198.235.24.228

🇭🇰 172.253.4.28

🇺🇸 162.216.149.245

🇸🇳 154.124.107.79

🇺🇸 154.83.197.125