JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.96.67.243

191.96.67.243 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 21%: ?

21%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	netutils.io
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.96.67.243

Whois 191.96.67.243

IP Abuse Reports for 191.96.67.243:

This IP address has been reported a total of 99 times from 62 distinct sources. 191.96.67.243 was first reported on June 17th 2022, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-05-27 16:37:19 (3 weeks ago)	Blocked by UFW (TCP on 6881) Source port: 57868 TTL: 53 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 6881) Source port: 57868 TTL: 53 Packet length: 60 TOS: 0x08 This report (for 191.96.67.243) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 basing	2026-05-17 13:21:46 (1 month ago)	2026-05-17 14:21:46 idz SASL PLAIN auth failed: rhost=191.96.67.243...	Brute-Force
🇩🇪 int8	2026-04-27 19:00:48 (1 month ago)	2026-04-27T19:00:48.107858521Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-04-27 18:59:47 (1 month ago)	2026-04-27 20:59:46: Minecraft server scan detected from 191.96.67.243 on port 25565 of 127.0.0.1	Port Scan
🇺🇸 cpxducky	2026-04-27 18:59:19 (1 month ago)	2026-04-27 18:59:18: Minecraft server scan detected from 191.96.67.243 on port 25565 of mail.cpxduck ... show more 2026-04-27 18:59:18: Minecraft server scan detected from 191.96.67.243 on port 25565 of mail.cpxducky.com show less	Port Scan
🇺🇸 LockBlock	2026-04-27 18:59:07 (1 month ago)	2026-04-27 18:59:07: Minecraft server scan detected from 191.96.67.243 on port 25565 of racknerd-e7e ... show more 2026-04-27 18:59:07: Minecraft server scan detected from 191.96.67.243 on port 25565 of racknerd-e7e1a9 show less	Port Scan
Anonymous	2026-04-07 00:19:28 (2 months ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇬🇧 consul.to	2026-03-09 06:12:32 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-03-06 04:51:56 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 jjnxpct	2026-02-15 04:48:57 (4 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇫🇷 service Informatique	2026-02-15 04:00:37 (4 months ago)	GET /.env	Web App Attack
🇱🇺 conseilgouz	2026-02-14 06:11:29 (4 months ago)	are-17 : Block hidden directories=>/.env(/)	Hacking
Anonymous	2026-02-14 06:08:29 (4 months ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 05:56:32 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 191.96.67.243 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 191.96.67.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 00:56:25.972599 2026] [security2:error] [pid 25788:tid 25788] [client 191.96.67.243:13205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fishing-links.com"] [uri "/.env"] [unique_id "aZAOiZCsvWGilZofZl2s7QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2026-02-14 05:06:41 (4 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 218.233.182.39

🇺🇸 147.185.132.151

🇦🇺 134.199.154.192

🇨🇳 113.201.65.26

🇿🇦 102.129.55.1

🇩🇪 69.5.169.151

🇳🇱 45.148.10.151

🇦🇺 27.33.247.46

🇺🇸 13.68.214.34

🇧🇷 205.210.31.165

🇧🇷 179.111.150.107

🇲🇾 175.141.90.69

🇺🇸 143.198.134.226

🇺🇸 124.198.131.231

🇨🇳 106.124.137.21

🇸🇬 104.248.148.13

🇺🇸 72.214.49.194

🇺🇸 50.217.40.11

🇿🇦 41.79.19.36

🇬🇧 35.203.210.237