JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 199.96.166.41

199.96.166.41 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	MyridWeb LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	myridweb.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 199.96.166.41

Whois 199.96.166.41

IP Abuse Reports for 199.96.166.41:

This IP address has been reported a total of 3 times from 2 distinct sources. 199.96.166.41 was first reported on October 7th 2025, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-11-03 02:15:42 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.166.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 199.96.166.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 02 21:15:36.007296 2025] [security2:error] [pid 32324:tid 32324] [client 199.96.166.41:63523] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|technesa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "technesa.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQgQSLJnJG3xpzXoegEfkwAAAAw"], referer: https://technesa.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-24 17:08:27 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.166.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 199.96.166.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 24 13:08:23.864919 2025] [security2:error] [pid 4034:tid 4034] [client 199.96.166.41:57335] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aPuyhykyIrD0IkJ2DLsilgAAAAE"], referer: https://jolankagroup.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 wil.com	2025-10-07 18:54:34 (7 months ago)	GlobalProtect login attempts with user jacqueline.marcus.	VPN IP Brute-Force

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.187.176.101

🇲🇽 186.96.145.241

🇫🇮 147.185.133.25

🇮🇳 143.110.186.36

🇰🇷 118.33.113.91

🇺🇸 103.203.57.5

🇻🇳 103.118.29.7

🇫🇷 91.231.89.47

🇷🇴 80.94.92.171

🇺🇸 66.132.172.104

🇩🇪 64.89.163.86

🇻🇳 14.185.115.47

🇳🇱 213.152.161.54

🇰🇷 211.105.129.57

🇺🇸 207.90.244.27

🇲🇳 203.23.199.88

🇿🇦 197.95.65.201

🇪🇹 196.188.33.85

🇧🇷 187.51.208.158

🇧🇷 186.220.37.145