JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.96.255.66

191.96.255.66 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 8%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutils.io
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.96.255.66

Whois 191.96.255.66

IP Abuse Reports for 191.96.255.66:

This IP address has been reported a total of 15 times from 12 distinct sources. 191.96.255.66 was first reported on February 3rd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-05-23 13:09:22 (3 weeks ago)	Fail2Ban banned 191.96.255.66 for security violations in jail wp-armour. Log: 2026/05/23 13:09:21 [e ... show more Fail2Ban banned 191.96.255.66 for security violations in jail wp-armour. Log: 2026/05/23 13:09:21 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 191.96.255.66 \| Target: wplogin" , client: 191.96.255.66, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇩🇪 filstal.org	2026-04-26 11:30:34 (1 month ago)	Security block 444: Fake/Ancient User-Agent detected: Opera/8.42.(X11; Linux i686; iw-IL) Presto/2.9 ... show more Security block 444: Fake/Ancient User-Agent detected: Opera/8.42.(X11; Linux i686; iw-IL) Presto/2.9.189 Version/11.00 show less	Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-02-18 23:10:23 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇺🇸 drewf.ink	2025-09-11 14:27:07 (9 months ago)	[14:27] Port scanning. Port(s) scanned: TCP/10050	Port Scan
🇺🇸 drewf.ink	2025-08-14 19:48:16 (9 months ago)	[19:48] Port scanning. Port(s) scanned: TCP/194	Port Scan
🇧🇷 SvrAdmin	2025-03-29 03:40:00 (1 year ago)	[101] (smtpauth) Failed SMTP AUTH login from 191.96.255.66 (US/United States/-): 5 in the last 3600 ... show more [101] (smtpauth) Failed SMTP AUTH login from 191.96.255.66 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-03-29 00:35:31 dovecot_login authenticator failed for (ADMIN) [191.96.255.66]:46210: 535 Incorrect authentication data ([email protected]) 2025-03-29 00:37:51 dovecot_login authenticator failed for (ADMIN) [191.96.255.66]:56660: 535 Incorrect authentication data ([email protected]) 2025-03-29 00:39:22 dovecot_login authenticator failed for (ADMIN) [191.96.255.66]:56742: 535 Incorrect authentication data ([email protected]) 2025-03-29 00:39:45 dovecot_login authenticator failed for (ADMIN) [191.96.255.66]:37348: 535 Incorrect authentication data ([email protected]) 2025-03-29 00:39:57 dovecot_login authenticator failed for (ADMIN) [191.96.255.66]:55484: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇧🇷 hostseries	2025-02-18 19:21:06 (1 year ago)	Trigger: LF_DISTATTACK	Brute-Force
🇧🇪 cmbplf	2024-11-02 16:57:34 (1 year ago)	5 /?fhzrx=gecxb (2mos2w6d)	Brute-Force Bad Web Bot
🇨🇭 zynex	2024-10-12 03:53:44 (1 year ago)	URL Probing: /scripts/UExerSpA34wA.php	Web App Attack
🇺🇸 ChamberofCommerce.com	2024-09-24 18:29:16 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-09-21 06:20:08 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-08-20 01:48:31 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇳🇱 Linuxmalwarehuntingnl	2024-07-03 08:57:47 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 wlt-blocker	2024-05-04 09:22:25 (2 years ago)	Attempts to login to mail server with wrong username and/or password	Brute-Force
🇺🇸 TPI-Abuse	2024-02-03 18:22:14 (2 years ago)	(mod_security) mod_security (id:217200) triggered by 191.96.255.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:217200) triggered by 191.96.255.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 03 13:22:04.043356 2024] [security2:error] [pid 25129] [client 191.96.255.66:55093] [client 191.96.255.66] ModSecurity: Access denied with code 403 (phase 1). Match of "endsWith /wp-cron.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "103"] [id "217200"] [rev "2"] [msg "COMODO WAF: HTTP/1.1 POST request missing Content-Length Header\|\|www.jaxlist.org\|F\|2"] [data "/index.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "www.jaxlist.org"] [uri "/index.php"] [unique_id "Zb6ETDecUZeDQGbmGIp4tQAAAA0"], referer: https://www.jaxlist.org/index.php?page=register&action=register show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 112.137.143.2

🇨🇳 60.166.31.198

🇺🇸 52.21.227.35

🇳🇱 45.148.10.151

🇺🇸 35.236.255.219

🇶🇦 34.18.125.195

🇳🇱 5.129.217.102

🇰🇷 1.247.245.61

🇨🇳 220.196.229.7

🇲🇺 197.227.8.186

🇷🇴 193.32.162.16

🇲🇽 189.194.140.170

🇩🇪 151.243.11.35

🇺🇸 143.244.169.201

🇨🇳 120.33.197.123

🇱🇹 45.227.254.170

🇮🇳 34.131.140.97

🇺🇸 217.145.224.190

🇬🇧 213.166.84.56

🇺🇸 205.210.31.95