JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.138.91.204

159.138.91.204 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 100%: ?

100%

ISP	Huawei Singapore Clouds
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Hostname(s)	ecs-159-138-91-204.compute.hwclouds-dns.com
Domain Name	huawei.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.138.91.204

Whois 159.138.91.204

IP Abuse Reports for 159.138.91.204:

This IP address has been reported a total of 149 times from 119 distinct sources. 159.138.91.204 was first reported on June 1st 2026, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 chronos	2026-06-02 03:35:05 (1 day ago)	Attempted unauthorized access to Telnet (port 23), likely brute force. \| Port: 23 \| Proto: TCP \| Loc ... show more Attempted unauthorized access to Telnet (port 23), likely brute force. \| Port: 23 \| Proto: TCP \| Location: Singapore, Singapore show less	Hacking Brute-Force Port Scan Exploited Host
🇺🇸 donarev419	2026-06-02 03:33:46 (1 day ago)	Connection to port 443 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 kosada.com	2026-06-02 03:03:26 (1 day ago)	SSH password guessing: Invalid user admin from 159.138.91.204 port 56112	Brute-Force SSH
🇸🇰 sh97	2026-06-02 03:02:02 (1 day ago)	SK01-Hosteroid: SSH Brute Force from 159.138.91.204 at 2026-06-02 08:32:02 IST	Brute-Force SSH
🇺🇸 RAP	2026-06-02 03:00:38 (1 day ago)	2026-06-02 03:00:38 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇩🇪 ISPLtd	2026-06-02 02:57:13 (1 day ago)	Jun 1 23:57:13 159.138.91.204 TCP SPT=56181 DPT=22 SYN ...	Port Scan SSH
🇩🇪 ksol-hostmaster	2026-06-02 02:42:35 (1 day ago)	Jun 2 04:42:34 ksol sshd-session[86390]: Invalid user :ANONYMIZED: from 159.138.91.204 port 35440 . ... show more Jun 2 04:42:34 ksol sshd-session[86390]: Invalid user :ANONYMIZED: from 159.138.91.204 port 35440 ... show less	SSH
🇩🇪 femboy.cat	2026-06-02 02:42:28 (1 day ago)	Port scan to tcp/23 from 159.138.91.204	Brute-Force
🇸🇬 drewf.ink	2026-06-02 02:23:51 (1 day ago)	[02:23] Port scanning. Port(s) scanned: TCP/2375	Port Scan
🇺🇸 amit177	2026-06-02 02:07:46 (1 day ago)		Brute-Force SSH
🇺🇸 MPL	2026-06-02 02:06:36 (1 day ago)	tcp/2375 (2 or more attempts)	Port Scan
🇦🇹 urnilxfgbez	2026-06-01 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇨🇭 Kepler-1649c	2026-06-01 22:05:14 (2 days ago)	Detected Attack: Apache.HTTP.Server.cgi-bin.Path.Traversal	Hacking
🇦🇺 dyln	2026-06-01 20:26:51 (2 days ago)	Dyls honeypot brute-force: SSH (137 total hits)	Brute-Force SSH
🇯🇵 VXG-NET	2026-06-01 20:24:57 (2 days ago)	port=80, indicator_type=code-execution	Hacking

Showing 46 to 60 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.3.196.157

🇨🇦 144.217.74.127

🇻🇳 116.118.44.131

🇨🇳 106.12.241.195

🇷🇴 92.118.39.62

🇺🇸 71.6.199.65

🇳🇱 45.156.87.204

🇫🇷 91.196.152.29

🇺🇸 66.228.38.149

🇺🇸 66.132.172.109

🇬🇧 35.203.210.182

🇬🇧 35.203.210.57

🇺🇸 147.185.132.184

🇨🇳 106.12.74.119

🇱🇹 81.30.98.44

🇺🇸 50.116.72.139

🇬🇧 45.137.126.24

🇭🇰 152.32.172.177

🇳🇱 141.11.0.200

🇩🇪 116.203.204.171