JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 167.253.48.176

167.253.48.176 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 11%: ?

11%

ISP	Mumara
Usage Type	Data Center/Web Hosting/Transit
ASN	Unknown
Domain Name	mumara.com
Country	🇺🇸 United States of America
City	Wilmington, Delaware

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 167.253.48.176

Whois 167.253.48.176

IP Abuse Reports for 167.253.48.176:

This IP address has been reported a total of 9 times from 6 distinct sources. 167.253.48.176 was first reported on September 13th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-18 15:42:03 (3 weeks ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-16 22:27:38 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 167.253.48.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 167.253.48.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 18:27:30.699143 2026] [security2:error] [pid 14385:tid 14385] [client 167.253.48.176:41291] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Damage/Thumbs.db"] [unique_id "agjvUjU5PiNvKI4RW9teUwAAAAU"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Damage/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-04-17 11:21:05 (1 month ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇨🇿 lp	2025-12-03 16:21:57 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 167.253.48.176 2025-12-03T16:14:46+01 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 167.253.48.176 2025-12-03T16:14:46+01:00 vpn Access-Reject 'test1' station: 167.253.48.176 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-12-01 08:52:22 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 167.253.48.176 2025-12-01T08:58:38+01 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 167.253.48.176 2025-12-01T08:58:38+01:00 vpn Access-Reject 'michelle.bajor' station: 167.253.48.176 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2025-06-19 05:58:53 (11 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-03-24 14:39:59 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2024-10-21 13:28:31 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 167.253.48.176 (b17-r1.ip176.mumara.net): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 167.253.48.176 (b17-r1.ip176.mumara.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 21 09:28:23.231798 2024] [security2:error] [pid 26894:tid 26894] [client 167.253.48.176:63665] [client 167.253.48.176] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZxZW9z9ogufcCduvki-DSgAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2024-09-13 00:48:24 (1 year ago)	XML RPC Scan Activities	Brute-Force Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 217.217.248.93

🇲🇽 187.189.58.99

🇺🇸 162.216.150.65

🇵🇰 119.155.179.41

🇺🇸 107.174.58.216

🇫🇷 92.132.84.250

🇳🇱 91.92.42.19

🇧🇬 78.128.114.102

🇸🇬 47.128.53.65

🇻🇪 201.242.186.59

🇹🇳 196.176.208.35

🇺🇸 193.19.109.214

🇩🇪 178.105.144.231

🇩🇪 176.65.132.18

🇨🇳 171.105.76.94

🇺🇸 138.197.200.106

🇨🇳 124.66.77.187

🇨🇳 122.96.28.237

🇺🇸 20.64.104.177

🇫🇷 13.36.244.218