191.96.249.212

ThreatDown is now the name of the Malwarebytes line of business products. References to Malwarebytes below reflect the amazing technology used to first identify the threat.

Short bio

The IP 191.96.249.212 was blocked because it is associated with malware identified as a keylogger known as Agent Tesla.

Malicious behavior

Agent Tesla is a commercial keylogger that can be abused to monitor the keystrokes on a system and take screenshots. The IP 191.96.249.212 hosts a webpanel for this keylogger.

Protection

Malwarebytes blocks the IP 191.96.249.212

Add an exclusion

Should users wish to visit a blocked IP Address and exclude it from being blocked, they can add it to the exclusions list. Here’s how to do it.

Open Malwarebytes for Windows.
Click the Detection History
Click the Allow List
To add an item to the Allow List, click Add.
Select Allow a website.
Select Add an IP address and enter the IP address that you wish to exclude.
Click on Done and the IP address should appear in your Allow List.

Similiar detections

83.222.191.94 83.222.190.66 185.169.4.150 196.251.83.222 193.37.69.113 45.142.193.91 176.65.148.6 104.167.221.114 193.142.147.109 196.251.73.96 View all IP detections >

Products

Services

Features

Platforms

Why ThreatDown

Detection Details

191.96.249.212

Short bio

Malicious behavior

Protection

Add an exclusion

Similiar detections

Products & Services

Partners

Resources

Managed Services Terms & Conditions

Support

Get in Touch