JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 128.201.9.152

128.201.9.152 was found in our database!

This IP was reported 3,805 times. Confidence of Abuse is 100%: ?

100%

ISP	NEXT FIBRA
Usage Type	Fixed Line ISP
ASN	AS266603
Hostname(s)	128-201-9-152.mgnettelecom.com.br
Domain Name	nextfibra.com.br
Country	🇧🇷 Brazil
City	Divinopolis, Minas Gerais

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 128.201.9.152

Whois 128.201.9.152

IP Abuse Reports for 128.201.9.152:

This IP address has been reported a total of 3,805 times from 940 distinct sources. 128.201.9.152 was first reported on September 28th 2025, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 bitosis	2026-06-04 01:07:42 (14 hours ago)	2026-06-04T02:59:58.873458+02:00 jumphost sshd-session[37770]: Invalid user administracion from 128. ... show more 2026-06-04T02:59:58.873458+02:00 jumphost sshd-session[37770]: Invalid user administracion from 128.201.9.152 port 42418 2026-06-04T03:03:47.796589+02:00 jumphost sshd-session[37784]: User root from 128.201.9.152 not allowed because none of user's groups are listed in AllowGroups 2026-06-04T03:07:41.806608+02:00 jumphost sshd-session[37802]: User root from 128.201.9.152 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH
🇩🇪 eposs-it.de	2026-06-04 01:00:15 (14 hours ago)	2026-06-04T02:56:17.811124+02:00 h2706878.stratoserver.net sshd-session[94899]: pam_unix(sshd:auth): ... show more 2026-06-04T02:56:17.811124+02:00 h2706878.stratoserver.net sshd-session[94899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 2026-06-04T02:56:19.620130+02:00 h2706878.stratoserver.net sshd-session[94899]: Failed password for invalid user nagios from 128.201.9.152 port 38220 ssh2 2026-06-04T02:56:17.811124+02:00 h2706878.stratoserver.net sshd-session[94899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 2026-06-04T02:56:19.620130+02:00 h2706878.stratoserver.net sshd-session[94899]: Failed password for invalid user nagios from 128.201.9.152 port 38220 ssh2 2026-06-04T03:00:14.880197+02:00 h2706878.stratoserver.net sshd-session[95372]: Invalid user administracion from 128.201.9.152 port 51094 show less	Brute-Force SSH
🇳🇱 bitosis	2026-06-04 00:29:11 (15 hours ago)	2026-06-04T02:19:23.204087+02:00 jumphost sshd-session[37520]: User root from 128.201.9.152 not allo ... show more 2026-06-04T02:19:23.204087+02:00 jumphost sshd-session[37520]: User root from 128.201.9.152 not allowed because none of user's groups are listed in AllowGroups 2026-06-04T02:23:02.645614+02:00 jumphost sshd-session[37540]: Invalid user ubuntu from 128.201.9.152 port 39302 2026-06-04T02:29:11.255253+02:00 jumphost sshd-session[37565]: Invalid user gituser from 128.201.9.152 port 52430 ... show less	Brute-Force SSH
🇩🇪 eposs-it.de	2026-06-04 00:23:20 (15 hours ago)	2026-06-04T02:19:38.876526+02:00 h2706878.stratoserver.net sshd-session[94036]: pam_unix(sshd:auth): ... show more 2026-06-04T02:19:38.876526+02:00 h2706878.stratoserver.net sshd-session[94036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 user=root 2026-06-04T02:19:40.526746+02:00 h2706878.stratoserver.net sshd-session[94036]: Failed password for root from 128.201.9.152 port 35126 ssh2 2026-06-04T02:23:17.294035+02:00 h2706878.stratoserver.net sshd-session[94093]: Invalid user ubuntu from 128.201.9.152 port 47966 2026-06-04T02:23:17.296347+02:00 h2706878.stratoserver.net sshd-session[94093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 2026-06-04T02:23:19.533557+02:00 h2706878.stratoserver.net sshd-session[94093]: Failed password for invalid user ubuntu from 128.201.9.152 port 47966 ssh2 show less	Brute-Force SSH
🇵🇱 Wepted	2026-06-03 23:36:43 (16 hours ago)	2026-06-04T01:29:15.905752+02:00 axisverse sshd-session[1063402]: Invalid user pg from 128.201.9.152 ... show more 2026-06-04T01:29:15.905752+02:00 axisverse sshd-session[1063402]: Invalid user pg from 128.201.9.152 port 54226 2026-06-04T01:32:56.798587+02:00 axisverse sshd-session[1069371]: Invalid user ubuntu from 128.201.9.152 port 38156 2026-06-04T01:36:42.453526+02:00 axisverse sshd-session[1075004]: Invalid user socksuser from 128.201.9.152 port 50308 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-06-03 22:23:06 (17 hours ago)	2026-06-04T00:15:47.498288+02:00 router01.mhm.de.mersrv.de sshd[3005801]: Disconnected from authenti ... show more 2026-06-04T00:15:47.498288+02:00 router01.mhm.de.mersrv.de sshd[3005801]: Disconnected from authenticating user root 128.201.9.152 port 45560 [preauth] 2026-06-04T00:19:21.131367+02:00 router01.mhm.de.mersrv.de sshd[3006917]: Invalid user sandeep from 128.201.9.152 port 57574 2026-06-04T00:19:21.362006+02:00 router01.mhm.de.mersrv.de sshd[3006917]: Disconnected from invalid user sandeep 128.201.9.152 port 57574 [preauth] 2026-06-04T00:23:04.903859+02:00 router01.mhm.de.mersrv.de sshd[3008008]: Invalid user andrew from 128.201.9.152 port 41366 2026-06-04T00:23:05.127470+02:00 router01.mhm.de.mersrv.de sshd[3008008]: Disconnected from invalid user andrew 128.201.9.152 port 41366 [preauth] show less	Brute-Force
🇫🇮 Finder	2026-06-03 22:22:26 (17 hours ago)	Fail2Ban - \[SSHD\]Brute-force SSH server ...	Brute-Force SSH
🇵🇱 Wepted	2026-06-03 22:22:14 (17 hours ago)	2026-06-04T00:11:29.623439+02:00 axisverse sshd-session[937565]: Invalid user admin from 128.201.9.1 ... show more 2026-06-04T00:11:29.623439+02:00 axisverse sshd-session[937565]: Invalid user admin from 128.201.9.152 port 55800 2026-06-04T00:18:30.027019+02:00 axisverse sshd-session[947151]: Invalid user sandeep from 128.201.9.152 port 51576 2026-06-04T00:22:14.441860+02:00 axisverse sshd-session[953670]: Invalid user andrew from 128.201.9.152 port 35368 ... show less	Brute-Force SSH
🇷🇺 Kotiacat_one	2026-06-03 22:11:22 (17 hours ago)	2026-06-04T01:11:21.890395+03:00 kotia sshd[3988994]: Invalid user admin from 128.201.9.152 port 392 ... show more 2026-06-04T01:11:21.890395+03:00 kotia sshd[3988994]: Invalid user admin from 128.201.9.152 port 39216 ... show less	Brute-Force SSH
🇺🇸 JL41414141	2026-06-03 21:08:36 (18 hours ago)	2026-06-03T21:08:35.563113+00:00 messaround sshd[2427673]: Invalid user ejabberd from 128.201.9.152 ... show more 2026-06-03T21:08:35.563113+00:00 messaround sshd[2427673]: Invalid user ejabberd from 128.201.9.152 port 58600 ... show less	Brute-Force SSH
🇺🇸 JL41414141	2026-06-03 20:06:43 (19 hours ago)	2026-06-03T20:02:47.154084+00:00 messaround sshd[2426420]: Invalid user silva from 128.201.9.152 por ... show more 2026-06-03T20:02:47.154084+00:00 messaround sshd[2426420]: Invalid user silva from 128.201.9.152 port 35980 2026-06-03T20:06:43.409358+00:00 messaround sshd[2426432]: Invalid user guest from 128.201.9.152 port 48950 ... show less	Brute-Force SSH
Anonymous	2026-06-03 20:03:41 (19 hours ago)	$f2bV_matches	Brute-Force SSH
🇩🇪 BanHammer99	2026-06-03 20:00:11 (19 hours ago)	Reported by VPN-sin	Brute-Force SSH
Anonymous	2026-06-03 19:57:26 (19 hours ago)	...	Brute-Force SSH
Anonymous	2026-06-03 19:39:36 (20 hours ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:abc12345678 • Number of ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:abc12345678 • Number of login attempts: 1 • Client: SSH-2.0-libssh_0.11.1 Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	SSH

Showing 1 to 15 of 3805 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.36

🇺🇸 20.96.179.87

🇰🇪 196.216.85.237

🇺🇸 195.184.76.162

🇳🇱 192.142.24.39

🇺🇸 185.152.66.173

🇭🇰 152.32.129.110

🇵🇰 139.135.40.194

🇨🇳 110.40.200.115

🇺🇸 108.165.20.123

🇷🇺 81.177.101.45

🇩🇪 64.89.163.235

🇭🇰 43.128.60.40

🇨🇦 37.120.237.223

🇺🇸 18.119.209.50

🇺🇸 165.154.173.35

🇺🇸 162.216.150.234

🇧🇬 78.128.112.6

🇳🇱 45.198.224.5

🇬🇧 35.203.210.100