JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.161.195

216.73.161.195 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 52%: ?

52%

ISP	Prefixx, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	prefixx.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.161.195

Whois 216.73.161.195

IP Abuse Reports for 216.73.161.195:

This IP address has been reported a total of 121 times from 70 distinct sources. 216.73.161.195 was first reported on June 29th 2022, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-19 14:59:55 (5 days ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-18 03:07:22 (1 week ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇷🇴 SpamStopper	2026-06-18 02:20:02 (1 week ago)	Automated mitigation by Fail2Ban firewall due to persistent security policy violations.	Hacking Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 19:45:54 (2 weeks ago)	216.73.161.195 - - [10/Jun/2026:21:45:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 798 "-" "Jetpack/13. ... show more 216.73.161.195 - - [10/Jun/2026:21:45:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 798 "-" "Jetpack/13.0; WordPress/6.2; http://site14168240.com" 216.73.161.195 - - [10/Jun/2026:21:45:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0; WordPress/6.2; http://site14168240.com" 216.73.161.195 - - [10/Jun/2026:21:45:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 798 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 216.73.161.195 - - [10/Jun/2026:21:45:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 216.73.161.195 - - [10/Jun/2026:21:45:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 798 "-" "Jetpack/13.0; WordPress/6.1; http://site18558823.com" ... show less	Brute-Force Web App Attack
🇩🇪 Marc	2026-06-03 04:05:35 (3 weeks ago)	216.73.161.195 - - [03/Jun/2026:05:51:37 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fsaatsch ... show more 216.73.161.195 - - [03/Jun/2026:05:51:37 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fsaatschule.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 9168 "https://saatschule.de/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/118.0.2" 216.73.161.195 - - [03/Jun/2026:05:58:30 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fsaatschule.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 9167 "https://saatschule.de/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/122.0" 216.73.161.195 - - [03/Jun/2026:06:00:24 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fsaatschule.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 9167 "https://saatschule.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Gecko/20100101 Firefox/121.0" 216.73.161.195 - - [03/Jun/2026:06:02:22 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fsaatschule.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 9167 "https://saatschule.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0 show less	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-01 16:00:20 (3 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇬🇧 poundawebsiteltd	2026-06-01 06:31:41 (3 weeks ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 216.73.161.195 - - [01/Jun/2026:07:31:35 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 216.73.161.195 - - [01/Jun/2026:07:31:35 +0100] POST /wp-login.php HTTP/1.1 200 4292 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/122.0 show less	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-01 03:00:58 (3 weeks ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN US/United States/-	Web App Attack
Anonymous	2026-05-31 16:34:04 (3 weeks ago)	Bot / scanning and/or hacking attempts: GET /wp-login.php?redirect_to=https%3A%2F%2Fvntgatelier.nl%2 ... show more Bot / scanning and/or hacking attempts: GET /wp-login.php?redirect_to=https%3A%2F%2Fvntgatelier.nl%2Fwp show less	Hacking Web App Attack
🇫🇷 masterguru	2026-05-30 16:53:28 (3 weeks ago)	(wordpress) Apache: Failed WordPress login from 216.73.161.195 (US/United States/-): 10 in the last ... show more (wordpress) Apache: Failed WordPress login from 216.73.161.195 (US/United States/-): 10 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-05-30 13:16:47 (3 weeks ago)	(wordpress) Apache: Failed WordPress login from 216.73.161.195 (US/United States/-): 10 in the last ... show more (wordpress) Apache: Failed WordPress login from 216.73.161.195 (US/United States/-): 10 in the last 3600 secs (0-193) show less	Hacking
🇩🇪 ger-stg-sifi1	2026-05-30 10:43:39 (3 weeks ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 Marc	2026-05-30 08:22:49 (3 weeks ago)	216.73.161.195 - - [30/May/2026:10:22:43 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fheckman ... show more 216.73.161.195 - - [30/May/2026:10:22:43 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fheckmann-elektro.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 8312 "https://heckmann-elektro.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36" 216.73.161.195 - - [30/May/2026:10:22:44 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fheckmann-elektro.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 5626 "https://heckmann-elektro.de/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36" 216.73.161.195 - - [30/May/2026:10:22:45 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Fheckmann-elektro.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 5626 "https://heckmann-elektro.de/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36" 216.73.161.195 - - [30/May/2026:10:22:47 +0200] "GE show less	Brute-Force Web App Attack
🇺🇸 Jason Howell	2026-05-30 05:44:18 (3 weeks ago)	216.73.161.195 - - [30/May/2026:00:43:08 -0500] "GET /wp-login.php HTTP/1.1" 200 4177 "-" "Mozilla/5 ... show more 216.73.161.195 - - [30/May/2026:00:43:08 -0500] "GET /wp-login.php HTTP/1.1" 200 4177 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Gecko/20100101 Firefox/118.0.2" 216.73.161.195 - - [30/May/2026:00:44:14 -0500] "GET /wp-login.php?redirect_to=https%3A%2F%2Fdgstorage.net%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 6219 "https://dgstorage.net/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/122.0" 216.73.161.195 - - [30/May/2026:00:44:15 -0500] "GET /wp-login.php?redirect_to=https%3A%2F%2Fdgstorage.net%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 3604 "https://dgstorage.net/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36" 216.73.161.195 - - [30/May/2026:00:44:17 -0500] "GET /wp-login.php?redirect_to=https%3A%2F%2Fdgstorage.net%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 3604 "https://dgstorage.net/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/1 ... show less	Web App Attack
🇯🇵 SentinalX by uzumaru	2026-05-30 05:11:03 (3 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: ifconfig.me:443 show less	Open Proxy Port Scan

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 218.145.181.48

🇨🇱 216.155.93.75

🇬🇧 193.163.125.77

🇳🇱 172.211.56.214

🇭🇰 150.5.169.176

🇨🇦 142.44.247.134

🇺🇸 136.36.189.65

🇳🇱 91.92.40.12

🇳🇱 45.148.10.157

🇭🇰 42.201.192.22

🇨🇳 42.194.181.182

🇺🇸 108.165.190.10

🇩🇪 64.89.163.94

🇱🇹 141.98.9.36

🇨🇳 121.14.34.219

🇧🇬 93.94.141.115

🇫🇷 85.217.140.26

🇫🇷 67.159.221.137

🇵🇱 194.180.49.70

🇦🇷 190.12.109.162