JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 199.96.165.161

199.96.165.161 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 2%: ?

ISP	MyridWeb LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	myridweb.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 199.96.165.161

Whois 199.96.165.161

IP Abuse Reports for 199.96.165.161:

This IP address has been reported a total of 6 times from 3 distinct sources. 199.96.165.161 was first reported on May 6th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-16 22:10:33 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 199.96.165.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 199.96.165.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 18:10:00.419223 2026] [security2:error] [pid 30694:tid 30694] [client 199.96.165.161:54567] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Horizon II/Thumbs.db"] [unique_id "agjrOHndOGAtIVO8_g0KkAAAAAI"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Horizon%20II/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-10 02:30:12 (3 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇨🇭 backslash	2025-12-13 06:20:12 (5 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-07 05:06:43 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.165.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 199.96.165.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 00:06:38.261919 2025] [security2:error] [pid 18636:tid 18636] [client 199.96.165.161:42449] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bernsteinip.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernsteinip.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQ1-XkrUj93ihxelcn4x0gAAABI"], referer: https://bernsteinip.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-23 17:08:15 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.165.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 199.96.165.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 23 13:08:09.766402 2025] [security2:error] [pid 2049:tid 2049] [client 199.96.165.161:58739] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|igolfallday.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "igolfallday.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aPpg-ffak3WdSSmaGdirQgAAAA4"], referer: https://igolfallday.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2025-05-06 03:25:29 (1 year ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 212.56.49.51

🇺🇸 198.98.56.205

🇧🇷 189.51.212.224

🇧🇷 177.93.164.127

🇻🇳 165.154.187.159

🇮🇳 135.235.138.43

🇨🇳 112.122.236.202

🇮🇳 103.137.93.63

🇵🇰 103.72.1.164

🇭🇰 39.109.113.238

🇺🇸 20.169.48.59

🇰🇷 1.245.74.10

🇩🇪 213.209.159.228

🇺🇸 207.90.244.2

🇹🇼 198.235.24.88

🇲🇽 187.237.121.34

🇩🇪 164.90.221.207

🇺🇸 162.241.239.202

🇰🇷 59.24.133.197

🇺🇸 3.144.111.170