JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 199.96.165.157

199.96.165.157 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	MyridWeb LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	myridweb.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 199.96.165.157

Whois 199.96.165.157

IP Abuse Reports for 199.96.165.157:

This IP address has been reported a total of 15 times from 11 distinct sources. 199.96.165.157 was first reported on August 13th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 netclix.gr	2026-03-30 13:55:03 (2 months ago)	(wordpress) Failed wordpress login from 199.96.165.157 (US/United States/-): (CF_ENABLE)	Brute-Force
🇺🇸 oralunal	2026-03-17 11:32:30 (2 months ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
🇫🇷 Baking333	2026-01-28 02:16:27 (4 months ago)	[redacted] 199.96.165.157 - - [28/Jan/2026:03:16:23 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/318 ... show more [redacted] 199.96.165.157 - - [28/Jan/2026:03:16:23 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/31896 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" [redacted] 199.96.165.157 - - [28/Jan/2026:03:16:25 +0100] "GET /[redacted] HTTP/1.1" 302 1517 0/28513 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
Anonymous	2026-01-27 21:42:48 (4 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.27 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.27 is noted in report timestamp show less	Hacking Brute-Force
🇪🇸 el-brujo	2025-12-18 06:44:33 (5 months ago)	Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: PUREVOLTAGE-INC Country: US Method: GET Timestamp: 2025-12-18T06:44:33Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2025-12-18 04:59:26 (5 months ago)	Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: PUREVOLTAGE-INC Country: US Method: GET Timestamp: 2025-12-18T04:59:26Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2025-12-18 04:44:28 (5 months ago)	Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: PUREVOLTAGE-INC Country: US Method: GET Timestamp: 2025-12-18T04:44:28Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇨🇭 Zeprax	2025-12-17 19:33:40 (5 months ago)	DDoS Attack Layer 7	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-12-10 13:19:26 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 backslash	2025-11-11 20:35:18 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇺🇸 TPI-Abuse	2025-09-11 04:28:12 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 199.96.165.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 199.96.165.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 11 00:28:06.447479 2025] [security2:error] [pid 25041:tid 25041] [client 199.96.165.157:25711] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|marcosmelero.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "marcosmelero.com"] [uri "/"] [unique_id "aMJP1ryu6Zn1bCgsz2LgyQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-08-25 07:08:35 (9 months ago)	Form spam	Web Spam
🇧🇪 Ivo Vynckier	2025-08-23 15:53:00 (9 months ago)	199.96.165.157 - mailto [23/Aug/2025:04:06:22 +0200] "POST /?subject=Feedback%20Web%20Site%20'How%20 ... show more 199.96.165.157 - mailto [23/Aug/2025:04:06:22 +0200] "POST /?subject=Feedback%20Web%20Site%20'How%20OCR%20Works' HTTP/1.1" 301 298 "http://how-ocr-works.com/contact.html" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0" 199.96.165.157 - - [23/Aug/2025:04:06:24 +0200] "GET /?subject=Feedback%20Web%20Site%20'How%20OCR%20Works' HTTP/1.1" 200 3517 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0" show less	Email Spam
🇦🇺 oncord	2025-08-22 12:00:00 (9 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-08-13 07:51:25 (9 months ago)	Form spam	Web Spam

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 152.169.154.26

🇺🇸 150.107.36.212

🇮🇳 117.245.138.229

🇱🇹 77.90.185.87

🇮🇷 2.180.202.159

🇮🇩 163.7.3.154

🇨🇳 117.50.51.119

🇩🇪 104.28.162.114

🇺🇸 100.49.117.77

🇱🇹 45.227.254.170

🇳🇱 34.141.236.236

🇹🇼 1.173.68.80

🇹🇷 212.154.51.0

🇨🇴 191.97.0.134

🇧🇷 191.6.25.239

🇺🇸 172.172.26.148

🇸🇬 154.196.218.212

🇮🇳 103.178.157.119

🇷🇴 92.118.39.236

🇨🇦 85.217.149.40