JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.96.196.81

191.96.196.81 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 100%: ?

100%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	netutils.io
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.96.196.81

Whois 191.96.196.81

IP Abuse Reports for 191.96.196.81:

This IP address has been reported a total of 114 times from 81 distinct sources. 191.96.196.81 was first reported on May 12th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Parth Maniar	2026-05-18 19:46:57 (2 weeks ago)	This IP address carried out 108 port scanning attempts on 18-05-2026. For more information or to rep ... show more This IP address carried out 108 port scanning attempts on 18-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2026-05-18 19:27:17 (2 weeks ago)	This IP address carried out 22 SSH credential attack (attempts) on 18-05-2026. For more information ... show more This IP address carried out 22 SSH credential attack (attempts) on 18-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇺🇸 COMPLEX	2026-05-18 14:23:34 (2 weeks ago)	Banned by Multi Agent · node …eq1h · attempts=5 · SSH brute-force / scan	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-18 14:14:54 (2 weeks ago)	191.96.196.81 (US/United States/wofte.site), 5 distributed sshd attacks on account [root] in the las ... show more 191.96.196.81 (US/United States/wofte.site), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 18 09:13:36 14421 sshd[19516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root May 18 09:13:38 14421 sshd[19516]: Failed password for root from 191.96.196.81 port 54112 ssh2 May 18 09:13:15 14421 sshd[19512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.168.113 user=root May 18 09:13:17 14421 sshd[19512]: Failed password for root from 209.97.168.113 port 47392 ssh2 May 18 09:14:35 14421 sshd[19597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.133.39.206 user=root IP Addresses Blocked: show less	Brute-Force SSH
🇸🇬 itachi1706	2026-05-18 13:55:04 (2 weeks ago)	2026-05-18T13:53:07.662837+00:00 sg-jumphost-server sshd[38584]: Disconnected from authenticating us ... show more 2026-05-18T13:53:07.662837+00:00 sg-jumphost-server sshd[38584]: Disconnected from authenticating user root 191.96.196.81 port 55066 [preauth] 2026-05-18T13:55:04.062039+00:00 sg-jumphost-server sshd[38664]: Disconnected from authenticating user root 191.96.196.81 port 53058 [preauth] ... show less	Brute-Force SSH
🇸🇬 itachi1706	2026-05-18 13:36:51 (2 weeks ago)	2026-05-18T13:31:27.950696+00:00 sg-jumphost-server sshd[37859]: Disconnected from authenticating us ... show more 2026-05-18T13:31:27.950696+00:00 sg-jumphost-server sshd[37859]: Disconnected from authenticating user root 191.96.196.81 port 40372 [preauth] 2026-05-18T13:34:42.352915+00:00 sg-jumphost-server sshd[37964]: Disconnected from authenticating user root 191.96.196.81 port 44926 [preauth] 2026-05-18T13:36:50.566875+00:00 sg-jumphost-server sshd[38085]: Disconnected from authenticating user root 191.96.196.81 port 42916 [preauth] ... show less	Brute-Force SSH
🇫🇷 kisiek	2026-05-18 12:48:36 (2 weeks ago)	(sshd) Failed SSH login from 191.96.196.81 (US/United States/wofte.site): 5 in the last 3600 secs; P ... show more (sshd) Failed SSH login from 191.96.196.81 (US/United States/wofte.site): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 18 14:41:43 zone sshd[1298345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root May 18 14:41:45 zone sshd[1298345]: Failed password for root from 191.96.196.81 port 36024 ssh2 May 18 14:46:38 zone sshd[1301091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root May 18 14:46:40 zone sshd[1301091]: Failed password for root from 191.96.196.81 port 49298 ssh2 May 18 14:48:34 zone sshd[1302233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root show less	Port Scan
🇺🇸 yzfdude1	2026-05-18 12:48:35 (2 weeks ago)	May 18 06:46:41 lighthope sshd[39934]: Failed password for root from 191.96.196.81 port 43750 ssh2 M ... show more May 18 06:46:41 lighthope sshd[39934]: Failed password for root from 191.96.196.81 port 43750 ssh2 May 18 06:48:33 lighthope sshd[39973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root May 18 06:48:35 lighthope sshd[39973]: Failed password for root from 191.96.196.81 port 40152 ssh2 ... show less	Brute-Force SSH
🇩🇪 zUnlegit	2026-05-18 12:31:19 (2 weeks ago)	2026-05-18T14:28:05.443133+02:00 root260 sshd[894813]: Failed password for root from 191.96.196.81 p ... show more 2026-05-18T14:28:05.443133+02:00 root260 sshd[894813]: Failed password for root from 191.96.196.81 port 60346 ssh2 2026-05-18T14:29:27.238175+02:00 root260 sshd[919834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root 2026-05-18T14:29:29.599033+02:00 root260 sshd[919834]: Failed password for root from 191.96.196.81 port 58798 ssh2 2026-05-18T14:31:17.529199+02:00 root260 sshd[953118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root 2026-05-18T14:31:19.321789+02:00 root260 sshd[953118]: Failed password for root from 191.96.196.81 port 57250 ssh2 ... show less	Brute-Force SSH
🇩🇪 zUnlegit	2026-05-18 12:14:55 (2 weeks ago)	2026-05-18T14:12:28.887025+02:00 root260 sshd[611810]: Failed password for root from 191.96.196.81 p ... show more 2026-05-18T14:12:28.887025+02:00 root260 sshd[611810]: Failed password for root from 191.96.196.81 port 52222 ssh2 2026-05-18T14:13:42.797635+02:00 root260 sshd[634000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root 2026-05-18T14:13:44.426027+02:00 root260 sshd[634000]: Failed password for root from 191.96.196.81 port 50672 ssh2 2026-05-18T14:14:53.075160+02:00 root260 sshd[655174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root 2026-05-18T14:14:54.448306+02:00 root260 sshd[655174]: Failed password for root from 191.96.196.81 port 49130 ssh2 ... show less	Brute-Force SSH
🇩🇪 wlt-blocker	2026-05-18 12:14:46 (2 weeks ago)	Attempts to access SSH server with wrong credentials	SSH
🇺🇸 Babu Chang	2026-05-18 12:05:38 (2 weeks ago)	sshguard	SSH
🇳🇱 GlobalArt, Inc	2026-05-18 11:42:44 (2 weeks ago)	2026-05-18T13:40:20.521704+02:00 proxy-nl1 sshd[3300]: Failed password for root from 191.96.196.81 p ... show more 2026-05-18T13:40:20.521704+02:00 proxy-nl1 sshd[3300]: Failed password for root from 191.96.196.81 port 51586 ssh2 2026-05-18T13:41:30.380889+02:00 proxy-nl1 sshd[3340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root 2026-05-18T13:41:32.447655+02:00 proxy-nl1 sshd[3340]: Failed password for root from 191.96.196.81 port 48120 ssh2 2026-05-18T13:42:41.619827+02:00 proxy-nl1 sshd[3435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root 2026-05-18T13:42:43.098120+02:00 proxy-nl1 sshd[3435]: Failed password for root from 191.96.196.81 port 44652 ssh2 show less	Brute-Force SSH
🇫🇷 CyberPain	2026-05-18 10:52:48 (2 weeks ago)	May 18 10:50:46 hermes sshd[497981]: Failed password for root from 191.96.196.81 port 46696 ssh2 May ... show more May 18 10:50:46 hermes sshd[497981]: Failed password for root from 191.96.196.81 port 46696 ssh2 May 18 10:52:44 hermes sshd[498105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root May 18 10:52:47 hermes sshd[498105]: Failed password for root from 191.96.196.81 port 43304 ssh2 ... show less	Brute-Force SSH
🇰🇷 hanb.jp	2026-05-18 10:51:35 (2 weeks ago)	May 18 10:49:42 v4bgp sshd[1518146]: Failed password for root from 191.96.196.81 port 50524 ssh2 May ... show more May 18 10:49:42 v4bgp sshd[1518146]: Failed password for root from 191.96.196.81 port 50524 ssh2 May 18 10:51:32 v4bgp sshd[1518214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.196.81 user=root May 18 10:51:35 v4bgp sshd[1518214]: Failed password for root from 191.96.196.81 port 47110 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 93.92.76.120

🇷🇴 92.118.39.236

🇬🇷 79.131.103.152

🇵🇱 188.212.135.192

🇵🇱 143.20.97.215

🇨🇳 106.32.143.255

🇳🇱 46.232.211.154

🇬🇧 37.10.113.212

🇨🇳 222.246.110.237

🇧🇬 193.24.211.107

🇺🇸 162.216.150.202

🇱🇺 64.89.160.161

🇩🇪 43.157.90.232

🇺🇸 35.190.153.148

🇳🇱 5.255.125.45

🇧🇷 201.42.153.160

🇮🇱 147.236.163.161

🇬🇧 81.0.248.4

🇺🇸 67.20.132.65

🇰🇷 221.161.235.168