JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.96.168.178

191.96.168.178 was found in our database!

This IP was reported 83 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutils.io
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.96.168.178

Whois 191.96.168.178

IP Abuse Reports for 191.96.168.178:

This IP address has been reported a total of 83 times from 43 distinct sources. 191.96.168.178 was first reported on June 1st 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-04-12 00:18:17 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇦🇺 oncord	2025-05-18 01:03:35 (1 year ago)	Form spam	Web Spam
🇨🇭 backslash	2025-01-21 17:07:35 (1 year ago)		DDoS Attack
🇨🇭 backslash	2024-09-06 15:35:06 (1 year ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇬🇧 essinghigh	2024-06-08 22:41:27 (2 years ago)	1717886486 # Service_probe # SIGNATURE_SEND # source_ip:191.96.168.178 # dst_port:3389 ...	Port Scan
Anonymous	2024-05-27 11:11:10 (2 years ago)	Excessive 404 Traffic Wordpress	Web App Attack
🇺🇸 TPI-Abuse	2024-05-16 17:29:29 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 16 13:29:21.616948 2024] [security2:error] [pid 23412] [client 191.96.168.178:51174] [client 191.96.168.178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.andiamocomputers.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkZCcRogMKhuKzSDJDjlGgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 Mediashaker	2024-05-15 23:22:46 (2 years ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 191.96.168.178 (NL/The N ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 191.96.168.178 (NL/The Netherlands/-) show less	Port Scan
Anonymous	2024-05-15 17:26:53 (2 years ago)	Fail2Ban apache-noscript	Bad Web Bot
🇺🇸 TPI-Abuse	2024-05-15 14:52:00 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 15 10:51:57.243419 2024] [security2:error] [pid 15239] [client 191.96.168.178:62990] [client 191.96.168.178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aislingstudiossligo.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkTMDSfiUftOfS4hWDFCTwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-05-15 14:20:21 (2 years ago)	$f2bV_matches	Brute-Force Web App Attack
🇬🇧 Apache	2024-05-15 06:31:10 (2 years ago)	(mod_security) mod_security (id:20000010) triggered by 191.96.168.178 (NL/The Netherlands/-): 5 in t ... show more (mod_security) mod_security (id:20000010) triggered by 191.96.168.178 (NL/The Netherlands/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-05-15 06:05:10 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 15 02:05:01.631940 2024] [security2:error] [pid 12761] [client 191.96.168.178:62086] [client 191.96.168.178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "globalhotels.com.co"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkRQjTq-FKdO07lE_oIn6gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-14 19:00:35 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 14 15:00:29.692607 2024] [security2:error] [pid 26505] [client 191.96.168.178:55163] [client 191.96.168.178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ucommsi.com"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkO0zTs6Kcl-EEOvoFBNmAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-14 15:09:00 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 14 11:08:55.467750 2024] [security2:error] [pid 28747] [client 191.96.168.178:54298] [client 191.96.168.178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rharano.org"] [uri "/wp-includes/css/wp-config.php"] [unique_id "ZkN-hyjG1-4Ipj32ZMAIWQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 83 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 180.106.151.55

🇳🇱 178.255.49.191

🇻🇳 113.164.66.10

🇧🇬 95.214.92.122

🇵🇹 77.54.25.24

🇺🇸 66.132.172.235

🇺🇸 65.49.20.111

🇺🇸 65.49.1.92

🇰🇷 59.21.37.60

🇲🇾 47.250.43.129

🇳🇱 45.198.224.115

🇸🇳 41.82.50.218

🇮🇩 39.194.1.23

🇮🇩 36.50.151.66

🇳🇱 2400:cb00:1179:1000:472f:55cf:dc71:6c9f

🇲🇽 187.175.9.225

🇨🇳 183.252.242.65

🇫🇷 167.86.80.37

🇺🇸 137.184.132.115

🇵🇰 103.205.179.204