JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.73.162.79

216.73.162.79 was found in our database!

This IP was reported 62 times. Confidence of Abuse is 29%: ?

29%

ISP	Prefixx, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	prefixx.net
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.73.162.79

Whois 216.73.162.79

IP Abuse Reports for 216.73.162.79:

This IP address has been reported a total of 62 times from 34 distinct sources. 216.73.162.79 was first reported on March 30th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 as211431.net	2026-06-03 04:15:23 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /wp-content/plugins/pwnd/pwnd.php UA: Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 mnsf	2026-06-02 23:05:51 (2 weeks ago)	Request Overload (133)	Brute-Force Web App Attack
🇭🇺 bcsaba	2026-05-31 05:50:07 (2 weeks ago)	Suricata: Alert - ET INFO Go-http-client User-Agent Observed Inbound	Web App Attack
🇦🇺 oncord	2026-05-26 00:46:05 (3 weeks ago)	Form spam	Web Spam
🇩🇪 BlueWire Hosting	2026-05-22 20:51:17 (3 weeks ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇫🇷 masterguru	2026-05-10 05:30:02 (1 month ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-193)	Hacking
🇫🇷 Octopuce	2026-05-09 12:46:47 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/themes/ /wp-content/plugins/elementor/ /wp-in ... show more Aggressive web search of vulnerable pages: /wp-content/themes/ /wp-content/plugins/elementor/ /wp-includes/IXR/ /wp-includes/widgets/ /wp-inclu ... show less	Web App Attack
🇫🇷 Octopuce	2026-03-28 19:07:01 (2 months ago)	Aggressive web search of vulnerable pages: /wp-content/about.php /mah/function.php /3PJcpMFsD8B.php ... show more Aggressive web search of vulnerable pages: /wp-content/about.php /mah/function.php /3PJcpMFsD8B.php /function.php /wp-admin.php /dropdown.php / ... show less	Web App Attack
🇺🇸 myagent.site	2026-03-25 17:30:07 (2 months ago)	Blocking for trying to access an exploit file: //alfa.php	Hacking
🇺🇸 TPI-Abuse	2026-02-28 12:15:37 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 28 07:15:34.387148 2026] [security2:error] [pid 15084:tid 15084] [client 216.73.162.79:36905] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|mouserart.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "mouserart.com"] [uri "/wp-login.php"] [unique_id "aaLcZvcG6QfDa0DX0NaOXAAAAAU"], referer: https://mouserart.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 YF	2026-02-27 20:00:34 (3 months ago)	wp-login.php (Brute force)	Brute-Force Web App Attack
🇨🇦 skunkworks_ca	2026-02-27 01:44:00 (3 months ago)	WordPress brute force attempts.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 01:03:36 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 20:03:32.597066 2026] [security2:error] [pid 306:tid 306] [client 216.73.162.79:63591] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|scc1.us\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "scc1.us"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aZunZPdqFUe_18mFZ_k2awAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 00:43:45 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 19:43:39.737843 2026] [security2:error] [pid 15702:tid 15737] [client 216.73.162.79:49827] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.rawhabitat.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.rawhabitat.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aZuiu-35q9AB_565L8Zl-wAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 23:45:42 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.73.162.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 18:45:36.434850 2026] [security2:error] [pid 13615:tid 13615] [client 216.73.162.79:20763] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|danteolalaw.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "danteolalaw.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aZuVIGDkEJV3uOMMHcakMAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 62 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 152.32.205.7

🇺🇸 45.130.83.99

🇩🇪 213.209.159.227

🇹🇼 198.235.24.121

🇸🇬 194.5.82.104

🇨🇭 162.158.217.121

🇷🇴 141.98.83.240

🇸🇬 94.231.206.12

🇮🇳 65.0.20.26

🇨🇳 27.39.128.68

🇬🇧 188.240.59.49

🇺🇸 147.185.132.171

🇱🇹 141.98.11.41

🇰🇷 121.179.93.147

🇺🇸 91.230.168.1

🇳🇱 45.148.10.157

🇹🇭 2403:6200:8814:9aca:7911:208f:e7cf:5bdd

🇳🇱 195.178.110.3

🇭🇰 190.92.239.22

🇺🇸 170.106.163.84