JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 199.96.166.240

199.96.166.240 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 4%: ?

ISP	MyridWeb LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	myridweb.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 199.96.166.240

Whois 199.96.166.240

IP Abuse Reports for 199.96.166.240:

This IP address has been reported a total of 11 times from 8 distinct sources. 199.96.166.240 was first reported on September 12th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-06-08 20:38:02 (5 hours ago)	Form spam	Web Spam
Anonymous	2026-02-01 00:48:45 (4 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2026.02.01 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2026.02.01 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2026-01-23 16:48:46 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-01-17 12:22:43 (4 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.17 is noted in report timestamp show less	Hacking Brute-Force
🇫🇷 masterguru	2025-12-23 11:04:05 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 199.96.166.240 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 199.96.166.240 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
Anonymous	2025-12-11 05:52:59 (5 months ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.12.11 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.12.11 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-12-09 16:28:53 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 backslash	2025-11-11 20:00:48 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇺🇸 fbarela	2025-10-16 19:00:12 (7 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇳🇱 soverin	2025-09-13 09:07:34 (8 months ago)	Network scan on port 80	Email Spam
🇺🇸 TPI-Abuse	2025-09-12 15:26:43 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 199.96.166.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 199.96.166.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 12 11:26:37.336463 2025] [security2:error] [pid 31989:tid 32003] [client 199.96.166.240:62663] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.vote4joegardner.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.vote4joegardner.com"] [uri "/403.shtml"] [unique_id "aMQ7rV5IaIenaly9lkH1iQAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.24.219.107

🇺🇸 216.24.219.72

🇺🇸 165.154.162.111

🇫🇮 147.185.133.208

🇧🇷 131.161.219.137

🇧🇷 131.100.242.102

🇹🇼 111.70.32.52

🇺🇸 104.236.197.144

🇳🇱 45.153.34.149

🇨🇳 222.176.201.191

🇺🇸 216.33.116.79

🇺🇸 216.24.219.90

🇺🇸 216.24.219.81

🇺🇸 216.24.219.62

🇹🇼 198.235.24.127

🇬🇧 195.206.182.220

🇩🇪 194.88.98.103

🇬🇧 185.216.145.184

🇮🇳 130.250.191.204

🇮🇳 130.250.191.201