JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.231.89.52

91.231.89.52 was found in our database!

This IP was reported 2,316 times. Confidence of Abuse is 100%: ?

100%

ISP	FR ONYPHE
Usage Type	Commercial
ASN	AS213412
Hostname(s)	randolph.probe.onyphe.net
Domain Name	onyphe.io
Country	🇫🇷 France
City	Gravelines, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.231.89.52

Whois 91.231.89.52

IP Abuse Reports for 91.231.89.52:

This IP address has been reported a total of 2,316 times from 155 distinct sources. 91.231.89.52 was first reported on December 13th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-06-15 19:45:46 (2 hours ago)	Honeypot [uk-production01]: Unauthorized traffic (614 bytes of payload); 7099 [1] TCP	Port Scan
🇺🇸 drewf.ink	2026-06-15 19:09:42 (3 hours ago)	[19:09] Port scanning. Port(s) scanned: TCP/993	Port Scan
🇺🇸 MPL	2026-06-15 16:10:09 (6 hours ago)	tcp/25565 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-15 10:10:55 (12 hours ago)	tcp/24284 (2 or more attempts)	Port Scan
🇯🇵 mkaraki	2026-06-15 09:41:22 (12 hours ago)	1781516481 # Service_probe # SIGNATURE_SEND # source_ip:91.231.89.52 # dst_port:3919 ...	Port Scan
🇬🇧 gbzret4d	2026-06-15 09:33:54 (12 hours ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 50080 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-15 07:05:15 (15 hours ago)	Honeypot hit: Empty payload (likely service probe); 7509 [1] TCP	Port Scan
🇲🇹 neilcaruana	2026-06-15 06:47:05 (15 hours ago)	Sentinel detected an attack on port [4090]	Hacking
🇺🇸 MPL	2026-06-15 04:10:48 (18 hours ago)	tcp/2404 (2 or more attempts)	Port Scan
🇺🇸 thororen	2026-06-15 03:21:39 (18 hours ago)	Blocked by UFW [37215/tcp] Source port: 53278 TTL: 48 Packet length: 60 TOS: 0x00 This report was g ... show more Blocked by UFW [37215/tcp] Source port: 53278 TTL: 48 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-15 01:15:36 (20 hours ago)	AS213412: 91.231.89.0/24 - ONYPHE SAS (FR)	Port Scan
🇺🇸 MPL	2026-06-14 22:52:58 (23 hours ago)	tcp/2375	Port Scan
🇺🇸 MPL	2026-06-14 17:33:37 (1 day ago)	tcp/2365	Port Scan
🇵🇱 sefinek.net	2026-06-14 13:33:39 (1 day ago)	Honeypot hit: Unauthorized traffic (614 bytes of payload); 3689 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (614 bytes of payload); 3689 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-06-14 12:08:44 (1 day ago)	tcp/2154 (2 or more attempts)	Port Scan

Showing 1 to 15 of 2316 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.175

🇩🇿 197.140.142.167

🇳🇱 45.148.10.151

🇬🇧 35.203.210.221

🇩🇪 216.26.255.178

🇩🇪 216.26.248.221

🇺🇸 209.50.172.250

🇨🇳 203.76.241.18

🇭🇰 165.154.1.18

🇮🇪 108.131.226.223

🇩🇪 104.207.56.152

🇹🇭 83.118.107.37

🇻🇳 45.117.179.232

🇯🇵 207.56.229.19

🇰🇷 203.245.41.180

🇹🇼 198.235.24.46

🇫🇷 185.187.169.232

🇫🇮 185.148.1.18

🇳🇱 176.65.139.232

🇺🇸 136.144.43.85