JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.99.48.239

91.99.48.239 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 0%: ?

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	static.239.48.99.91.clients.your-server.de
Domain Name	hetzner.com
Country	🇩🇪 Germany
City	Nurnberg, Bavaria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.99.48.239

Whois 91.99.48.239

IP Abuse Reports for 91.99.48.239:

This IP address has been reported a total of 11 times from 10 distinct sources. 91.99.48.239 was first reported on September 18th 2025, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Parth Maniar	2025-09-19 08:43:20 (8 months ago)	This IP address carried out 26 SSH credential attack (attempts) on 18-09-2025. For more information ... show more This IP address carried out 26 SSH credential attack (attempts) on 18-09-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
trevrosa	2025-09-18 18:15:38 (8 months ago)	2025-09-19T02:12:44.960024+08:00 raspberrypi sshd-session[3851720]: Invalid user bram from 91.99.48. ... show more 2025-09-19T02:12:44.960024+08:00 raspberrypi sshd-session[3851720]: Invalid user bram from 91.99.48.239 port 59966 2025-09-19T02:13:43.410722+08:00 raspberrypi sshd-session[3852050]: Invalid user deployer from 91.99.48.239 port 37692 2025-09-19T02:15:37.588116+08:00 raspberrypi sshd-session[3852705]: Invalid user vnc from 91.99.48.239 port 45660 ... show less	Brute-Force SSH
Anonymous	2025-09-18 18:15:25 (8 months ago)	2025-09-18T18:12:31.893309+00:00 de-fsn1-it1 sshd[1050322]: Invalid user bram from 91.99.48.239 port ... show more 2025-09-18T18:12:31.893309+00:00 de-fsn1-it1 sshd[1050322]: Invalid user bram from 91.99.48.239 port 47110 2025-09-18T18:13:30.836262+00:00 de-fsn1-it1 sshd[1050376]: Invalid user deployer from 91.99.48.239 port 45994 2025-09-18T18:15:25.014146+00:00 de-fsn1-it1 sshd[1050942]: Invalid user vnc from 91.99.48.239 port 38902 ... show less	Brute-Force SSH
🇺🇸 amit177	2025-09-18 18:09:59 (8 months ago)		Brute-Force SSH
Anonymous	2025-09-18 18:08:26 (8 months ago)	2025-09-18T20:04:20.283976v22019037947384217 sshd[30961]: Disconnected from 91.99.48.239 port 38826 ... show more 2025-09-18T20:04:20.283976v22019037947384217 sshd[30961]: Disconnected from 91.99.48.239 port 38826 [preauth] 2025-09-18T20:07:23.091227v22019037947384217 sshd[31023]: Disconnected from 91.99.48.239 port 47736 [preauth] 2025-09-18T20:08:25.390662v22019037947384217 sshd[31069]: Disconnected from 91.99.48.239 port 48232 [preauth] ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-09-18 18:05:26 (8 months ago)	91.99.48.239 (DE/Germany/static.239.48.99.91.clients.your-server.de), 5 distributed sshd attacks on ... show more 91.99.48.239 (DE/Germany/static.239.48.99.91.clients.your-server.de), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Sep 18 13:05:02 14007 sshd[1814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.141.60.80 user=root Sep 18 13:03:39 14007 sshd[1682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.16.72 user=root Sep 18 13:03:41 14007 sshd[1682]: Failed password for root from 161.35.16.72 port 34168 ssh2 Sep 18 13:02:07 14007 sshd[1598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.99.48.239 user=root Sep 18 13:02:09 14007 sshd[1598]: Failed password for root from 91.99.48.239 port 43464 ssh2 IP Addresses Blocked: 193.141.60.80 (UA/Ukraine/sentboxmailq16.sinergycentre.com) 161.35.16.72 (DE/Germany/-) show less	Brute-Force SSH
Anonymous	2025-09-18 17:38:11 (8 months ago)	Automatic Reporting - Brute Force Attempts	Brute-Force Web App Attack SSH
🇭🇺 lmathe	2025-09-18 17:31:18 (8 months ago)	2025-09-18T19:29:13.063320+02:00 vm-197198 sshd[587870]: Invalid user testuser from 91.99.48.239 por ... show more 2025-09-18T19:29:13.063320+02:00 vm-197198 sshd[587870]: Invalid user testuser from 91.99.48.239 port 59202 2025-09-18T19:31:18.185438+02:00 vm-197198 sshd[587989]: Connection from 91.99.48.239 port 48870 on 95.138.193.99 port 22 rdomain "" 2025-09-18T19:31:18.370509+02:00 vm-197198 sshd[587989]: Invalid user deploy from 91.99.48.239 port 48870 ... show less	Brute-Force SSH
🇩🇪 space471	2025-09-18 17:23:30 (8 months ago)	Sep 18 19:22:21 Svalbard sshd[402562]: Failed password for root from 91.99.48.239 port 49872 ssh2 Se ... show more Sep 18 19:22:21 Svalbard sshd[402562]: Failed password for root from 91.99.48.239 port 49872 ssh2 Sep 18 19:23:27 Svalbard sshd[403443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.99.48.239 user=root Sep 18 19:23:30 Svalbard sshd[403443]: Failed password for root from 91.99.48.239 port 39538 ssh2 ... show less	Brute-Force SSH
🇪🇸 bohl-aiG5aef	2025-09-18 17:23:25 (8 months ago)	2025-09-18T19:22:15.994787 gitlab00corp sshd[3246629]: User root from 91.99.48.239 not allowed becau ... show more 2025-09-18T19:22:15.994787 gitlab00corp sshd[3246629]: User root from 91.99.48.239 not allowed because none of user's groups are listed in AllowGroups 2025-09-18T19:23:24.434322 gitlab00corp sshd[3246784]: Connection from 91.99.48.239 port 55112 on 10.100.88.177 port 22 2025-09-18T19:23:24.751347 gitlab00corp sshd[3246784]: User root from 91.99.48.239 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-09-18 17:21:37 (8 months ago)	91.99.48.239 (DE/Germany/static.239.48.99.91.clients.your-server.de), 5 distributed sshd attacks on ... show more 91.99.48.239 (DE/Germany/static.239.48.99.91.clients.your-server.de), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Sep 18 12:20:15 16711 sshd[10111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.99.48.239 user=root Sep 18 12:20:17 16711 sshd[10111]: Failed password for root from 91.99.48.239 port 56058 ssh2 Sep 18 12:19:43 16711 sshd[10043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.185.159.86 user=root Sep 18 12:19:45 16711 sshd[10043]: Failed password for root from 93.185.159.86 port 53618 ssh2 Sep 18 12:21:20 16711 sshd[10189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.170.59.75 user=root IP Addresses Blocked: show less	Brute-Force SSH

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 138.68.243.18

🇨🇳 223.109.252.225

🇩🇪 167.94.146.38

🇺🇸 159.26.99.29

🇶🇦 89.211.241.217

🇨🇳 223.199.181.249

🇹🇼 198.235.24.110

🇦🇪 193.31.75.253

🇨🇳 115.231.78.11

🇺🇸 107.175.0.108

🇺🇸 91.230.168.255

🇺🇸 91.230.168.124

🇺🇸 47.77.219.25

🇳🇱 45.148.10.157

🇧🇪 34.78.56.154

🇨🇳 220.167.233.77

🇨🇳 220.167.232.57

🇩🇪 213.209.159.242

🇺🇸 185.180.141.72

🇨🇳 171.116.45.31