JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.196.152.255

91.196.152.255 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 60%: ?

60%

ISP	FR ONYPHE
Usage Type	Commercial
ASN	AS213412
Hostname(s)	angelo.probe.onyphe.net
Domain Name	onyphe.io
Country	🇫🇷 France
City	Roubaix, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.196.152.255

Whois 91.196.152.255

IP Abuse Reports for 91.196.152.255:

This IP address has been reported a total of 141 times from 31 distinct sources. 91.196.152.255 was first reported on February 27th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-04 09:02:21 (3 days ago)	Brute force	Brute-Force
🇺🇸 kosada.com	2026-06-04 07:18:56 (3 days ago)	Web vulnerability probing: /CHANGELOG.txt	Web App Attack
🇸🇮 administrator	2026-05-30 22:19:36 (1 week ago)	2026-05-31 00:06:15,746 fail2ban.actions [264721]: NOTICE [apache-auth] Ban 91.196.152.255 . ... show more 2026-05-31 00:06:15,746 fail2ban.actions [264721]: NOTICE [apache-auth] Ban 91.196.152.255 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇸🇮 administrator	2026-05-30 12:00:36 (1 week ago)	2026-05-26 00:03:34,427 fail2ban.actions [1070]: NOTICE [apache-auth] Ban 91.196.152.255 ...	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇪🇸 el-brujo	2026-05-29 11:03:54 (1 week ago)	05/29/2026-13:03:54.087117 91.196.152.255 Protocol: 6 ET DROP Dshield Block Listed Source group 1	Hacking
🇺🇸 MPL	2026-05-28 23:53:16 (1 week ago)	tcp/8020 (5 or more attempts)	Port Scan
🇳🇱 BIV	2026-05-27 22:58:52 (1 week ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 8001. Automated tiered ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 8001. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇸🇮 administrator	2026-05-22 22:10:32 (2 weeks ago)	2026-05-17 00:02:20,578 fail2ban.actions [1088]: NOTICE [apache-auth] Ban 91.196.152.255 202 ... show more 2026-05-17 00:02:20,578 fail2ban.actions [1088]: NOTICE [apache-auth] Ban 91.196.152.255 2026-05-20 00:03:12,849 fail2ban.actions [1089]: NOTICE [apache-auth] Ban 91.196.152.255 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇺🇸 MPL	2026-05-22 11:44:21 (2 weeks ago)	tcp/8020 (10 or more attempts)	Port Scan
🇫🇷 Petre 21_ip	2026-05-21 09:38:33 (2 weeks ago)	2026-05-21T11:38:32.352604+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-05-21T11:38:32.352604+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=91.196.152.255 DST=155.133.26.57 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=56337 DF PROTO=TCP SPT=42607 DPT=8000 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇨🇭 SOC [GOLINE SA]	2026-05-21 09:07:55 (2 weeks ago)	FortiGate detected IPS attack from IPv4 address 91.196.152.255	Hacking
🇺🇸 kosada.com	2026-05-21 03:26:17 (2 weeks ago)	Web vulnerability probing: /CHANGELOG.txt	Web App Attack
🇨🇭 SOC [GOLINE SA]	2026-05-20 08:08:57 (2 weeks ago)	FortiGate detected IPS attack from IPv4 address 91.196.152.255	Hacking
🇸🇰 Eurofluid	2026-05-20 04:05:34 (2 weeks ago)	You shall not pass ! Abusive behavior blocked by EF firewall.	Port Scan Hacking Brute-Force
🇸🇰 KZP	2026-05-20 04:00:40 (2 weeks ago)	Automatic report from KZP firewall log.	Port Scan Hacking Brute-Force

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 43.228.157.161

🇵🇪 190.119.63.98

🇻🇳 183.91.186.36

🇺🇸 174.35.25.178

🇸🇬 172.188.218.162

🇪🇬 102.188.35.70

🇮🇪 54.228.123.181

🇺🇸 47.77.182.54

🇦🇺 45.133.5.150

🇺🇸 45.56.118.133

🇩🇴 179.53.15.187

🇺🇸 172.253.214.21

🇨🇳 123.245.84.222

🇨🇳 123.160.232.121

🇺🇸 118.193.77.161

🇺🇸 107.150.1.166

🇺🇸 104.194.8.142

🇧🇩 103.26.136.173

🇦🇴 102.213.34.99

🇮🇳 98.70.50.166