JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.96.106.219

191.96.106.219 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutils.io
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.96.106.219

Whois 191.96.106.219

IP Abuse Reports for 191.96.106.219:

This IP address has been reported a total of 36 times from 23 distinct sources. 191.96.106.219 was first reported on July 6th 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-04-10 09:32:46 (2 months ago)	Web vulnerability probing: /webmail/	Web App Attack
🇺🇸 gu-alvareza	2026-03-26 07:05:06 (2 months ago)	OpenVAS.Web.Scanner	Port Scan
🇺🇸 xmission.com	2026-03-18 17:11:28 (2 months ago)	Blocked by UFW (TCP on 55756) Source port: 55460 TTL: 118 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 55756) Source port: 55460 TTL: 118 Packet length: 52 TOS: 0x08 This report (for 191.96.106.219) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-03-03 18:03:48 (3 months ago)	Blocked by UFW (TCP on 46947) Source port: 16380 TTL: 118 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 46947) Source port: 16380 TTL: 118 Packet length: 52 TOS: 0x08 This report (for 191.96.106.219) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇹 VHosting	2026-02-18 23:14:39 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇸🇪 konseptit	2026-01-30 09:35:50 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 191.96.106.219 (US/United States/-)	Brute-Force
🇮🇩 sockominfo	2026-01-07 16:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 6.5/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 6.5/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-07 15:00:09 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). Bayesian: 84%. MITRE: T1071. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Exploited Host
🇮🇩 sockominfo	2026-01-07 13:49:34 (5 months ago)	[WAZUH] Postfix: Multiple SASL authentication failures.	Hacking Web App Attack
🇮🇹 VHosting	2026-01-07 13:48:24 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇫🇷 Dorian GRANDHAY	2026-01-07 13:38:03 (5 months ago)	(smtpauth) Failed SMTP AUTH login from 191.96.106.219 (US/United States/-): 5 in the last 3600 secs; ... show more (smtpauth) Failed SMTP AUTH login from 191.96.106.219 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-01-07 14:36:55 dovecot_plain authenticator failed for H=([10.30.18.198]) [191.96.106.219]:50979: 535 Incorrect authentication data ([email protected]) 2026-01-07 14:37:01 dovecot_login authenticator failed for H=([10.30.18.198]) [191.96.106.219]:50979: 535 Incorrect authentication data ([email protected]) 2026-01-07 14:37:09 dovecot_plain authenticator failed for H=([10.30.18.198]) [191.96.106.219]:8943: 535 Incorrect authentication data ([email protected]) 2026-01-07 14:37:11 dovecot_login authenticator failed for H=([10.30.18.198]) [191.96.106.219]:8943: 535 Incorrect authentication data ([email protected]) 2026-01-07 14:37:57 dovecot_plain authenticator failed for H=([10.30.18.198]) [191.96.106.219]:40950: 535 Incorrect authentication data ([email protected]) show less	Port Scan
🇭🇺 Lacika555	2025-10-28 01:02:53 (7 months ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
🇨🇭 backslash	2025-06-29 03:15:05 (11 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇪🇸 librebit	2025-04-06 08:43:50 (1 year ago)	Brute force	Brute-Force
🇩🇪 marzzzello	2025-02-19 15:50:49 (1 year ago)	Ports: 3x 58377	Port Scan

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 217.154.144.111

🇷🇼 41.186.203.117

🇬🇧 193.163.125.63

🇨🇳 180.153.236.5

🇩🇪 167.94.146.40

🇮🇩 165.154.151.176

🇺🇸 103.234.62.71

🇩🇪 69.5.169.225

🇸🇬 47.128.39.150

🇧🇷 20.226.116.19

🇩🇿 193.194.91.218

🇧🇴 189.28.64.145

🇸🇬 146.190.104.85

🇺🇸 146.70.41.186

🇳🇱 45.148.10.183

🇸🇬 43.160.251.13

🇧🇪 34.156.222.50

🇨🇳 221.226.232.44

🇬🇧 195.206.182.207

🇲🇽 187.190.35.163