JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.162.56

216.73.162.56 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 41%: ?

41%

ISP	Prefixx, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	prefixx.net
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.162.56

Whois 216.73.162.56

IP Abuse Reports for 216.73.162.56:

This IP address has been reported a total of 99 times from 44 distinct sources. 216.73.162.56 was first reported on June 30th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-04 07:41:45 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Ba-Yu	2026-06-04 07:21:42 (2 weeks ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇦🇺 aranguren.org	2026-06-02 09:52:58 (2 weeks ago)	216.73.162.56 - - [02/Jun/2026:19:52:55 +1000] "GET /wp-content/plugins/up/main.php HTTP/1.1" 404 99 ... show more 216.73.162.56 - - [02/Jun/2026:19:52:55 +1000] "GET /wp-content/plugins/up/main.php HTTP/1.1" 404 994 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 216.73.162.56 - - [02/Jun/2026:19:52:56 +1000] "GET /fonts/fontawesome-webfont.php HTTP/1.1" 404 994 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 216.73.162.56 - - [02/Jun/2026:19:52:56 +1000] "GET /wp-admin/wp-conflg.php HTTP/1.1" 404 994 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 216.73.162.56 - - [02/Jun/2026:19:52:57 +1000] "GET /wp-admin/includes/about.php HTTP/1.1" 404 994 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 216.73.162.56 - - [02/Jun/2026:19:52:57 +1000] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 404 994 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, l ... show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-01 02:13:33 (2 weeks ago)	(mod_security) mod_security (id:240000) triggered by 216.73.162.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 216.73.162.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:13:26.234218 2026] [security2:error] [pid 25381:tid 25381] [client 216.73.162.56:24227] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|goatedlottosecrets.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "goatedlottosecrets.com"] [uri "/images/stories/themes.php"] [unique_id "ahzqxsMOMNMDLMq3yBcy2wAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 22:31:51 (1 month ago)	(mod_security) mod_security (id:240000) triggered by 216.73.162.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 216.73.162.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 18:31:47.224344 2026] [security2:error] [pid 976:tid 976] [client 216.73.162.56:0] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|thectegroup.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "thectegroup.net"] [uri "/images/stories/themes.php"] [unique_id "agpB09FZpQLsh8zD4EiFAQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 YF	2026-05-17 17:13:12 (1 month ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇺🇸 mnsf	2026-05-14 02:05:17 (1 month ago)	Request Overload (239)	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-05-13 20:10:54 (1 month ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-05-13 14:16:28 (1 month ago)	"GET /wp-admin/images/index.php HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 12:15:00 (1 month ago)	(mod_security) mod_security (id:240000) triggered by 216.73.162.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240000) triggered by 216.73.162.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 08:14:53.543184 2026] [security2:error] [pid 1331:tid 1331] [client 216.73.162.56:39525] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|tribalpacifica.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "tribalpacifica.com"] [uri "/images/stories/themes.php"] [unique_id "agRrPYWklWicgKKlDYF5hAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-13 10:06:06 (1 month ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇩🇪 LRob.fr	2026-05-13 04:30:09 (1 month ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇺🇸 mnsf	2026-05-13 01:05:36 (1 month ago)	Too many Status 40X (12)	Brute-Force Web App Attack
🇫🇷 Octopuce	2026-04-29 01:00:29 (1 month ago)	Aggressive web search of vulnerable pages: /themes/zMousse/otuz1.php /wp-content/edit-wolf.php /wp-c ... show more Aggressive web search of vulnerable pages: /themes/zMousse/otuz1.php /wp-content/edit-wolf.php /wp-content/plugins/ubh/up.php /wp-admin/images/ ... show less	Web App Attack
🇳🇱 Site.eu	2026-04-28 22:11:33 (1 month ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2404:6800:4000:101d::121

🇮🇩 180.252.158.64

🇷🇺 176.97.176.145

🇺🇸 152.70.138.172

🇺🇸 109.105.210.103

🇺🇸 109.105.210.100

🇺🇸 109.105.210.54

🇧🇷 45.165.238.2

🇰🇷 221.163.5.228

🇷🇺 176.97.160.195

🇳🇱 176.65.132.17

🇩🇪 162.55.31.215

🇫🇮 147.185.133.201

🇬🇧 144.126.229.82

🇯🇵 118.194.228.101

🇺🇸 109.105.209.7

🇺🇸 109.105.209.5

🇺🇸 104.243.42.167

🇺🇸 72.191.240.170

🇨🇳 39.182.52.190