JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.189.16.120

191.189.16.120 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 40%: ?

40%

ISP	Claro NXT Telecomunicacoes Ltda
Usage Type	Fixed Line ISP
ASN	AS28573
Hostname(s)	bfbd1078.virtua.com.br
Domain Name	claro.com.br
Country	🇧🇷 Brazil
City	Manaus, Amazonas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.189.16.120

Whois 191.189.16.120

IP Abuse Reports for 191.189.16.120:

This IP address has been reported a total of 13 times from 9 distinct sources. 191.189.16.120 was first reported on April 23rd 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-24 04:00:55 (2 days ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇺🇸 etu brutus	2026-06-14 00:36:26 (1 week ago)	191.189.16.120 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
🇺🇸 xmission.com	2026-06-11 14:29:55 (2 weeks ago)	Blocked by UFW (TCP on 25) Source port: 22350 TTL: 44 Packet length: 60 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 25) Source port: 22350 TTL: 44 Packet length: 60 TOS: 0x08 This report (for 191.189.16.120) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Email Spam
🇺🇸 Cyber Crusader	2026-06-11 05:08:03 (2 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
Anonymous	2026-06-11 01:10:16 (2 weeks ago)	unsolicited UDP packet to port 38282 (26 bytes)	Hacking
🇺🇸 Cyber Crusader	2026-06-10 09:51:32 (2 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇧🇷 ICS Labs	2026-06-08 13:25:44 (2 weeks ago)	ICS Labs identified 191.189.16.120 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 SMARTNET	2026-05-27 06:03:53 (4 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 6ed80dcf-192e-41b9-b3cf-8e7356812aa9	DDoS Attack
🇳🇵 radheykrishna.com.np	2026-05-03 04:37:14 (1 month ago)	May 3 10:22:14 kernel: [1272763.365698] [UFW BLOCK] IN=ens160 OUT= SRC=191.189.16.120 LEN=65 TOS=0x ... show more May 3 10:22:14 kernel: [1272763.365698] [UFW BLOCK] IN=ens160 OUT= SRC=191.189.16.120 LEN=65 TOS=0x00 PREC=0x00 TTL=48 ID=57733 DF PROTO=UDP SPT=28603 DPT=6000 LEN=45 ... show less	Port Scan
Anonymous	2026-04-28 18:00:55 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-26 03:30:12 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-24 19:37:17 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 Cyber Crusader	2026-04-23 15:12:22 (2 months ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.198

🇷🇴 2.57.121.25

🇺🇸 205.210.31.54

🇨🇳 202.46.62.113

🇧🇪 198.235.24.138

🇺🇸 147.182.177.180

🇰🇷 112.166.31.254

🇸🇳 41.208.147.131

🇨🇳 14.103.86.48

🇨🇳 218.1.223.248

🇺🇸 205.210.31.20

🇳🇱 176.65.139.231

🇺🇸 147.182.246.240

🇺🇸 136.144.43.117

🇨🇳 119.249.100.242

🇸🇬 47.128.19.211

🇺🇸 2607:f720:1300:1241:5786:90ae:cf70:8b7a

🇮🇳 194.76.121.54

🇺🇸 173.244.60.241

🇨🇳 119.0.218.148