JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.204.122.189

91.204.122.189 was found in our database!

This IP was reported 159 times. Confidence of Abuse is 100%: ?

100%

ISP	Private Enterprise Enterra
Usage Type	Fixed Line ISP
ASN	AS48964
Hostname(s)	91.204.122.189.datasfera.net
Domain Name	enterra.dp.ua
Country	🇺🇦 Ukraine
City	Pidhorodne, Dnipropetrovsk

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.204.122.189

Whois 91.204.122.189

IP Abuse Reports for 91.204.122.189:

This IP address has been reported a total of 159 times from 98 distinct sources. 91.204.122.189 was first reported on April 22nd 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 wupinyin	2026-05-15 21:09:41 (2 weeks ago)	CrowdSec ban: ET CINS Active Threat Intelligence Poor Reputation IP group 144	Port Scan Hacking
🇫🇷 jank	2026-05-15 06:37:13 (2 weeks ago)	smtp login attempt	Brute-Force
🇺🇸 cazae	2026-05-14 16:56:54 (2 weeks ago)	Unauthorized attempt on debian [2525/tcp] Source port: 54325 TTL: 235 Packet length: 44 TOS: 0x08 h ... show more Unauthorized attempt on debian [2525/tcp] Source port: 54325 TTL: 235 Packet length: 44 TOS: 0x08 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 polycoda	2026-05-13 20:42:55 (3 weeks ago)	📮 Sends email spam and/or tries to probe for a ton of inexistent email accounts to send spam to and/ ... show more 📮 Sends email spam and/or tries to probe for a ton of inexistent email accounts to send spam to and/or tries to brute force its way into an email account show less	Email Spam
🇯🇵 knock	2026-05-13 20:01:19 (3 weeks ago)	Knock-Knock honeypot brute-force: SMTP (1 total hits)	Brute-Force
🇯🇵 rafled	2026-05-13 19:02:56 (3 weeks ago)	May 13 19:02:55 internal-mail-rafled-com postfix/smtpd[876274]: NOQUEUE: reject: RCPT from unknown[9 ... show more May 13 19:02:55 internal-mail-rafled-com postfix/smtpd[876274]: NOQUEUE: reject: RCPT from unknown[91.204.122.189]: 554 5.7.1 <[email protected]>: Relay access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[192.168.0.100]> ... show less	Brute-Force SSH
🇺🇸 drewf.ink	2026-05-13 18:55:53 (3 weeks ago)	[18:55] Port scanning. Port(s) scanned: TCP/587	Port Scan
🇸🇬 drewf.ink	2026-05-13 18:34:45 (3 weeks ago)	[18:34] Port scanning. Port(s) scanned: TCP/587	Port Scan
🇦🇺 trentwiles.com	2026-05-13 18:11:44 (3 weeks ago)	Unauthorized connection attempt detected from IP address 91.204.122.189 to port 587 [SYD]	Port Scan
🇦🇺 trentwiles.com	2026-05-13 17:42:07 (3 weeks ago)	Unauthorized connection attempt detected from IP address 91.204.122.189 to port 2525 [SYD]	Port Scan
🇨🇭 pingusurmars	2026-05-13 12:36:01 (3 weeks ago)	Blocked by UFW on amperetwo [2525/tcp] Source port: 53877 TTL: 247 Packet length: 44 TOS: 0x00 This ... show more Blocked by UFW on amperetwo [2525/tcp] Source port: 53877 TTL: 247 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 S.O.B.A. Dev.	2026-05-12 21:23:29 (3 weeks ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇺🇸 micropedro	2026-05-12 16:05:48 (3 weeks ago)	3 incidents: malicious activity. First: 2026-04-28 08:05, Last: 2026-05-12 12:05 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-04-28 08:05, Last: 2026-05-12 12:05 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-12 16:05:48 (3 weeks ago)	4 incidents: malicious activity. First: 2026-04-30 14:16, Last: 2026-05-12 12:05 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-04-30 14:16, Last: 2026-05-12 12:05 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 [email protected]	2026-05-11 00:08:55 (3 weeks ago)	ASN: AS48964 Private Enterprise "Enterra". Country: UA. Ports: 443. Proto: TCP. Observations: 1. Abu ... show more ASN: AS48964 Private Enterprise "Enterra". Country: UA. Ports: 443. Proto: TCP. Observations: 1. AbuseScore: 100/100 show less	Web App Attack

Showing 91 to 105 of 159 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 46.16.34.179

🇺🇸 2a13:9500:16b:c7b2::1

🇺🇸 2001:470:1:fb5::1c7

🇦🇺 74.91.200.217

🇧🇩 202.37.53.156

🇧🇷 187.72.128.177

🇨🇳 183.197.66.154

🇭🇰 152.32.133.102

🇭🇰 118.26.36.248

🇫🇷 91.196.152.35

🇭🇺 89.134.210.182

🇱🇹 81.30.98.44

🇳🇱 45.148.10.141

🇺🇸 40.160.9.15

🇬🇧 35.203.211.87

🇧🇷 187.34.131.182

🇺🇸 174.35.25.177

🇭🇰 156.238.236.179

🇫🇷 91.121.33.230

🇳🇱 45.148.10.152