JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.96.168.19

191.96.168.19 was found in our database!

This IP was reported 96 times. Confidence of Abuse is 2%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutils.io
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.96.168.19

Whois 191.96.168.19

IP Abuse Reports for 191.96.168.19:

This IP address has been reported a total of 96 times from 53 distinct sources. 191.96.168.19 was first reported on September 1st 2021, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 pengpeng	2026-05-29 08:06:34 (2 weeks ago)	monitor: on VM-0-7-ubuntu \| port: 23169 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 23169 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 bescared	2026-01-03 01:43:51 (5 months ago)	F2B - Malicious activity detected. Excessive port scans.	Port Scan
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇳🇱 exxos	2025-09-27 23:03:01 (8 months ago)	Attacks with Bad user agents	Hacking
🇺🇸 TPI-Abuse	2025-02-27 21:10:01 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 16:09:54.382110 2025] [security2:error] [pid 21095:tid 21095] [client 191.96.168.19:51697] [client 191.96.168.19] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "motorcityautotransport.com"] [uri "/.git/HEAD"] [unique_id "Z8DUol90biblKg8slXuVAgAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2025-02-27 20:49:25 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2025-02-27 19:34:44 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 14:34:38.344501 2025] [security2:error] [pid 30549:tid 30549] [client 191.96.168.19:56868] [client 191.96.168.19] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "linhsbridal.com"] [uri "/.git/HEAD"] [unique_id "Z8C-TpCPL_6AOnmruR7fJgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-27 19:18:43 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 14:18:35.711439 2025] [security2:error] [pid 20496:tid 20592] [client 191.96.168.19:55861] [client 191.96.168.19] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cargomarexpress.com"] [uri "/.git/HEAD"] [unique_id "Z8C6i-arS_iPDnUgo8xF6AAAAcc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Roderic	2025-02-27 19:17:21 (1 year ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot
🇺🇸 TPI-Abuse	2025-02-27 17:09:44 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 12:09:40.735268 2025] [security2:error] [pid 4538:tid 4538] [client 191.96.168.19:56066] [client 191.96.168.19] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozkanturker.com"] [uri "/.git/HEAD"] [unique_id "Z8CcVK2GLqmqNZsKRaxOuQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2025-02-27 14:32:57 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.19 (NL/The Netherlands/-): N in the ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.19 (NL/The Netherlands/-): N in the last X secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-02-27 13:24:10 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 191.96.168.19 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 08:24:02.929420 2025] [security2:error] [pid 5804:tid 5821] [client 191.96.168.19:52821] [client 191.96.168.19] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clearwaterpumpservices.com"] [uri "/.git/HEAD"] [unique_id "Z8Bncmzhkl2EUoujL2CXqgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 LTM	2025-02-27 07:20:01 (1 year ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2025-02-27 00:49:26 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-02-26 20:49:27 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force

Showing 1 to 15 of 96 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 195.172.211.233

🇪🇨 177.234.226.115

🇻🇳 152.32.255.94

🇯🇵 142.111.34.103

🇨🇳 110.166.87.119

🇮🇳 103.145.55.178

🇸🇪 85.228.91.250

🇮🇩 34.101.91.249

🇯🇵 31.59.11.192

🇰🇭 202.62.37.24

🇦🇷 186.123.136.254

🇸🇦 178.73.117.84

🇨🇭 172.253.11.20

🇺🇸 170.106.103.20

🇸🇬 167.172.93.203

🇮🇳 157.35.62.87

🇭🇰 152.32.132.203

🇯🇵 142.111.67.18

🇯🇵 142.111.34.80

🇺🇸 103.234.62.98