JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 199.96.167.183

199.96.167.183 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 21%: ?

21%

ISP	MyridWeb LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	myridweb.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 199.96.167.183

Whois 199.96.167.183

IP Abuse Reports for 199.96.167.183:

This IP address has been reported a total of 21 times from 12 distinct sources. 199.96.167.183 was first reported on October 16th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 zXero	2026-06-03 12:32:28 (3 days ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇨🇦 zXero	2026-05-29 12:26:41 (1 week ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇨🇦 zXero	2026-05-09 03:13:29 (4 weeks ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
🇧🇷 SOC PR	2026-05-06 08:01:07 (1 month ago)	IPS: WordPress HTTP Brute Force Login Attempt.	Brute-Force
🇨🇦 zXero	2026-05-04 10:41:46 (1 month ago)	Fail2Ban automatic report - jail: no-wordpress	Brute-Force SSH DDoS Attack
Anonymous	2026-05-01 21:22:36 (1 month ago)	wordpress authentication brute force	Brute-Force Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-04-30 23:36:20 (1 month ago)	WP Login Scan Activities: "2026-05-01T06:36:20.894+07:00" "/wp-login.php" "199.96.167.183" "Mozilla/ ... show more WP Login Scan Activities: "2026-05-01T06:36:20.894+07:00" "/wp-login.php" "199.96.167.183" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-04-30 22:29:55 (1 month ago)	WP Login Scan Activities: "2026-05-01T05:29:55.194+07:00" "/wp-login.php" "199.96.167.183" "Mozilla/ ... show more WP Login Scan Activities: "2026-05-01T05:29:55.194+07:00" "/wp-login.php" "199.96.167.183" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇪🇸 el-brujo	2026-04-11 14:41:24 (1 month ago)	[Sat Apr 11 16:41:18.578573 2026] [proxy_fcgi:error] [pid 1537376:tid 1538057] [remote 199.96.167.18 ... show more [Sat Apr 11 16:41:18.578573 2026] [proxy_fcgi:error] [pid 1537376:tid 1538057] [remote 199.96.167.183:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com [Sat Apr 11 16:41:23.431324 2026] [proxy_fcgi:error] [pid 1537406:tid 1537501] [remote 199.96.167.183:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com ... show less	Hacking Web App Attack
🇸🇬 pusathosting.com	2026-03-25 22:48:02 (2 months ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-26 16:20:46 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 11:20:42.746365 2026] [security2:error] [pid 22304:tid 22304] [client 199.96.167.183:33213] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|glassclublake.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "glassclublake.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aaBy2tx4DcLDJcwG_RISRAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 20:10:25 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 15:10:18.638917 2026] [security2:error] [pid 6778:tid 6778] [client 199.96.167.183:47035] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aimer.es\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aimer.es"] [uri "/wp-json/wp/v2/users"] [unique_id "aZ4FqnRtBh10hdibnBEnngAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 20:50:53 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 15:50:47.093988 2026] [security2:error] [pid 7976:tid 7976] [client 199.96.167.183:64749] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|aeongames.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "aeongames.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZy9p5aM6C00mtIBLJpzBQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-20 23:50:57 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 199.96.167.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 18:50:50.084544 2026] [security2:error] [pid 26822:tid 26822] [client 199.96.167.183:61149] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|321q.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "321q.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZjzWhqEtNezlDe_ekV1vAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-02-06 07:16:24 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 212.95.50.77

🇵🇱 74.248.185.153

🇺🇸 45.136.24.234

🇺🇸 3.142.232.179

🇹🇼 220.133.1.53

🇮🇹 87.247.238.152

🇳🇱 45.148.10.183

🇳🇱 45.148.10.141

🇵🇱 31.179.197.26

🇺🇸 2607:f8b0:4001:c0f::126

🇺🇿 144.124.196.93

🇮🇩 112.215.174.195

🇸🇬 103.187.147.165

🇮🇩 103.154.231.122

🇮🇳 13.206.196.228

🇺🇿 213.230.92.225

🇮🇳 160.250.225.19

🇭🇰 101.36.122.139

🇰🇷 58.224.62.29

🇷🇴 2.57.122.177