JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 39.91.166.154

39.91.166.154 was found in our database!

This IP was reported 707 times. Confidence of Abuse is 100%: ?

100%

ISP	China Unicom Shandong province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 39.91.166.154

Whois 39.91.166.154

IP Abuse Reports for 39.91.166.154:

This IP address has been reported a total of 707 times from 306 distinct sources. 39.91.166.154 was first reported on December 20th 2025, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 DonAtari	2026-06-29 06:01:00 (4 hours ago)	SSH honeypot attack - tried root:------fuck------	Brute-Force SSH
🇫🇮 xela_uvas	2026-06-28 19:00:56 (15 hours ago)	SSH attack	Brute-Force SSH
🇩🇪 localhost-admin	2026-06-28 15:22:51 (19 hours ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force SSH
🇨🇦 senkodev	2026-06-28 01:58:13 (1 day ago)	2026-06-28T01:58:07.033245Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 39.91.166.154:4156 ... show more 2026-06-28T01:58:07.033245Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 39.91.166.154:41568 (158.69.22.11:2222) [session: 8b018b6b5f24] 2026-06-28T01:58:12.935388Z [cowrie.ssh.factory.CowrieSSHFactory] New connection: 39.91.166.154:42326 (158.69.22.11:2222) [session: 14f63edefd22] ... show less	Brute-Force SSH
🇫🇷 Yepngo	2026-06-27 16:55:35 (1 day ago)	2026-06-27T18:55:18.526997+02:00 ns3006402 sshd[2794646]: Failed password for root from 39.91.166.15 ... show more 2026-06-27T18:55:18.526997+02:00 ns3006402 sshd[2794646]: Failed password for root from 39.91.166.154 port 57041 ssh2 2026-06-27T18:55:32.535362+02:00 ns3006402 sshd[2794692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.166.154 user=root 2026-06-27T18:55:34.885442+02:00 ns3006402 sshd[2794692]: Failed password for root from 39.91.166.154 port 57852 ssh2 ... show less	Brute-Force SSH
🇫🇷 viki53	2026-06-27 11:32:05 (1 day ago)	Jun 27 13:31:03 portfolio-web sshd[1601356]: Failed password for root from 39.91.166.154 port 36277 ... show more Jun 27 13:31:03 portfolio-web sshd[1601356]: Failed password for root from 39.91.166.154 port 36277 ssh2 Jun 27 13:31:14 portfolio-web sshd[1601358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.166.154 user=root Jun 27 13:31:16 portfolio-web sshd[1601358]: Failed password for root from 39.91.166.154 port 37583 ssh2 Jun 27 13:32:02 portfolio-web sshd[1601361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.166.154 user=root Jun 27 13:32:04 portfolio-web sshd[1601361]: Failed password for root from 39.91.166.154 port 38415 ssh2 ... show less	Brute-Force SSH
🇨🇦 dpinse	2026-06-27 04:41:01 (2 days ago)	Honeypot [honeypot-ca-sensor1]: Unauthorized connection attempt detected on 22/SSH	SSH Port Scan
🇹🇼 bluecloudwork	2026-06-26 20:02:27 (2 days ago)	Fail2Ban - Brute-force SSH server ...	Brute-Force SSH
🇵🇱 Portuseco Biling	2026-06-26 19:50:53 (2 days ago)	-UAVPS---F2B blocked SSH BF--	Brute-Force SSH
🇨🇦 takikawa.b-l.ca	2026-06-26 19:50:33 (2 days ago)	$f2bV_matches	Brute-Force SSH
🇯🇵 huihui	2026-06-26 07:29:39 (3 days ago)	2026-06-26T15:29:22.464307+08:00 [Host] sshd[1492483]: pam_unix(sshd:auth): authentication failure; ... show more 2026-06-26T15:29:22.464307+08:00 [Host] sshd[1492483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.166.154 user=root 2026-06-26T15:29:25.113990+08:00 [Host] sshd[1492483]: Failed password for root from 39.91.166.154 port 57823 ssh2 2026-06-26T15:29:28.371790+08:00 [Host] sshd[1492483]: Connection closed by authenticating user root 39.91.166.154 port 57823 [preauth] ... show less	Brute-Force SSH
🇺🇸 terraforge.fun	2026-06-25 23:44:52 (3 days ago)	Blocked by on us-1-terraforge [22/tcp] \| SPT: 44910 \| TTL: 44 \| LEN: 64 \| TOS: 0x00 • Reported by: t ... show more Blocked by on us-1-terraforge [22/tcp] \| SPT: 44910 \| TTL: 44 \| LEN: 64 \| TOS: 0x00 • Reported by: terraforge.fun show less	Port Scan SSH
Anonymous	2026-06-25 16:51:46 (3 days ago)	SSH brute force attempt. User: root, Pass: [REDACTED]	Brute-Force SSH
Anonymous	2026-06-25 06:04:32 (4 days ago)	2026-06-25T08:04:11.136107+02:00 vm635618.cloud.nuxt.network sshd-session[27968]: Failed password fo ... show more 2026-06-25T08:04:11.136107+02:00 vm635618.cloud.nuxt.network sshd-session[27968]: Failed password for root from 39.91.166.154 port 44643 ssh2 2026-06-25T08:04:30.319955+02:00 vm635618.cloud.nuxt.network sshd-session[27971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.166.154 user=root 2026-06-25T08:04:32.421425+02:00 vm635618.cloud.nuxt.network sshd-session[27971]: Failed password for root from 39.91.166.154 port 45433 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-24 17:00:36 (4 days ago)	39.91.166.154 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 39.91.166.154 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 24 11:53:16 14926 sshd[25808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.95.221.140 user=root Jun 24 11:41:49 14926 sshd[24642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.95.221.140 user=root Jun 24 11:41:51 14926 sshd[24642]: Failed password for root from 36.95.221.140 port 49732 ssh2 Jun 24 12:00:29 14926 sshd[26513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.91.166.154 user=root Jun 24 12:00:31 14926 sshd[26513]: Failed password for root from 39.91.166.154 port 35029 ssh2 IP Addresses Blocked: 36.95.221.140 (ID/Indonesia/-) show less	Brute-Force SSH

Showing 1 to 15 of 707 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 185.185.82.26

🇰🇷 211.251.245.88

🇧🇷 200.165.70.141

🇸🇾 185.225.40.146

🇺🇦 185.111.166.68

🇻🇳 157.10.45.70

🇺🇸 91.230.168.17

🇧🇾 81.30.98.142

🇳🇱 77.83.39.45

🇩🇪 64.226.107.125

🇧🇷 45.205.1.243

🇧🇷 45.171.242.252

🇺🇸 2.58.202.98

🇺🇸 212.119.46.58

🇩🇪 167.94.145.22

🇹🇼 165.154.227.158

🇳🇬 102.88.137.80

🇵🇱 81.15.138.144

🇵🇱 74.248.36.50

🇺🇸 65.49.1.240