JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.96.131.106

195.96.131.106 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 0%: ?

ISP	Beijing Ruihao Kai Yuan Technology Co.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS199242
Domain Name	rashost.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.96.131.106

Whois 195.96.131.106

IP Abuse Reports for 195.96.131.106:

This IP address has been reported a total of 50 times from 18 distinct sources. 195.96.131.106 was first reported on August 20th 2025, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇿 reddog	2025-09-08 21:53:00 (9 months ago)	Blocking for trying to access an exploit file	DDoS Attack Hacking
🇧🇪 cmbplf	2025-09-03 22:37:00 (9 months ago)	150 requests with url.path *config.json	Brute-Force Bad Web Bot
🇺🇸 Jason Howell	2025-09-03 14:35:14 (9 months ago)	195.96.131.106 - - [03/Sep/2025:13:45:18 +0000] "GET /wp-login.php HTTP/1.1" 200 4175 "-" "Mozilla/5 ... show more 195.96.131.106 - - [03/Sep/2025:13:45:18 +0000] "GET /wp-login.php HTTP/1.1" 200 4175 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" 195.96.131.106 - - [03/Sep/2025:14:23:57 +0000] "GET /xmlrpc.php HTTP/1.1" 405 2827 "-" "Mozilla/5.0 (ZZ; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" 195.96.131.106 - - [03/Sep/2025:14:23:59 +0000] "GET /xmlrpc.php HTTP/1.1" 405 2827 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.10586" 195.96.131.106 - - [03/Sep/2025:14:26:54 +0000] "GET /wp-login.php HTTP/1.1" 200 4174 "https://www.reynoldsmfg.com/login/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36" 195.96.131.106 - - [03/Sep/2025:14:35:14 +0000] "GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.reynoldsmfg.com%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 6212 "https://ww ... show less	Web App Attack
🇺🇸 myagent.site	2025-09-03 10:36:12 (9 months ago)	Blocking for trying to access an exploit file: /spreadsheet-reader/test.php?File=../../../../../../. ... show more Blocking for trying to access an exploit file: /spreadsheet-reader/test.php?File=../../../../../../../../../../../etc/passwd show less	Hacking
🇺🇸 myagent.site	2025-09-03 10:17:40 (9 months ago)	Blocking for trying to access an exploit file: /install.php	Hacking
🇺🇸 myagent.site	2025-09-03 09:58:03 (9 months ago)	Blocking for trying to access an exploit file: /include/dialog/config.php?adminDirHand=%3C%2Fscript% ... show more Blocking for trying to access an exploit file: /include/dialog/config.php?adminDirHand=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E show less	Hacking
🇺🇸 myagent.site	2025-09-03 05:57:59 (9 months ago)	Blocking for trying to access an exploit file: /install.php?a=check	Hacking
🇺🇸 myagent.site	2025-09-03 05:10:33 (9 months ago)	Blocking for trying to access an exploit file: /installer-backup.php	Hacking
🇺🇸 myagent.site	2025-09-03 04:27:54 (9 months ago)	Blocking for trying to access an exploit file: //config.php.tar.gz	Hacking
🇺🇸 myagent.site	2025-09-03 00:03:20 (9 months ago)	Blocking for trying to access an exploit file: //.env	Hacking
🇺🇸 myagent.site	2025-09-03 00:03:20 (9 months ago)	Blocking for trying to access an exploit file: //.env.save	Hacking
🇺🇸 myagent.site	2025-09-03 00:03:20 (9 months ago)	Blocking for trying to access an exploit file: //.env_sample	Hacking
🇺🇸 myagent.site	2025-09-03 00:03:20 (9 months ago)	Blocking for trying to access an exploit file: //.env.live	Hacking
🇺🇸 myagent.site	2025-09-02 21:26:20 (9 months ago)	Banned for posting to wp-login.php without referer {"userName":"admin","password":"123456"}	Hacking
🇺🇸 myagent.site	2025-09-02 16:39:40 (9 months ago)	Blocking for trying to access an exploit file: /mailinspector/login.php	Hacking

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 130.193.255.62

🇨🇳 59.61.184.8

🇮🇹 185.201.255.254

🇨🇳 175.168.123.96

🇺🇸 172.253.209.146

🇷🇴 140.233.190.89

🇨🇦 20.116.34.103

🇺🇸 20.64.105.0

🇲🇾 202.165.29.123

🇮🇳 172.236.172.195

🇺🇸 130.131.162.156

🇨🇳 116.179.33.203

🇨🇦 85.217.149.22

🇺🇸 66.220.235.169

🇻🇳 58.186.20.143

🇺🇸 44.210.89.103

🇵🇱 37.47.216.242

🇷🇴 193.46.255.86

🇩🇪 185.242.3.195

🇸🇾 185.225.41.192