JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 128.201.9.152

128.201.9.152 was found in our database!

This IP was reported 3,805 times. Confidence of Abuse is 100%: ?

100%

ISP	NEXT FIBRA
Usage Type	Fixed Line ISP
ASN	AS266603
Hostname(s)	128-201-9-152.mgnettelecom.com.br
Domain Name	nextfibra.com.br
Country	🇧🇷 Brazil
City	Divinopolis, Minas Gerais

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 128.201.9.152

Whois 128.201.9.152

IP Abuse Reports for 128.201.9.152:

This IP address has been reported a total of 3,805 times from 940 distinct sources. 128.201.9.152 was first reported on September 28th 2025, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-01 15:44:13 (3 days ago)	2026-06-01T12:44:11.849014-03:00 vmi1230637 sshd[264275]: Invalid user sipv from 128.201.9.152 port ... show more 2026-06-01T12:44:11.849014-03:00 vmi1230637 sshd[264275]: Invalid user sipv from 128.201.9.152 port 60376 ... show less	Brute-Force SSH
Anonymous	2026-06-01 15:09:39 (3 days ago)	2026-06-01T16:59:33.144662+02:00 webtest sshd[423053]: Failed password for invalid user root from 12 ... show more 2026-06-01T16:59:33.144662+02:00 webtest sshd[423053]: Failed password for invalid user root from 128.201.9.152 port 55516 ssh2 2026-06-01T17:06:40.713138+02:00 webtest sshd[423256]: Invalid user ftptest from 128.201.9.152 port 45658 2026-06-01T17:06:40.714995+02:00 webtest sshd[423256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 2026-06-01T17:06:42.741591+02:00 webtest sshd[423256]: Failed password for invalid user ftptest from 128.201.9.152 port 45658 ssh2 2026-06-01T17:09:38.680934+02:00 webtest sshd[423329]: User root from 128.201.9.152 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-01 15:07:12 (3 days ago)	Jun 1 09:07:09 lighthope sshd[350056]: Invalid user ftptest from 128.201.9.152 port 32892 Jun 1 09 ... show more Jun 1 09:07:09 lighthope sshd[350056]: Invalid user ftptest from 128.201.9.152 port 32892 Jun 1 09:07:09 lighthope sshd[350056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 Jun 1 09:07:11 lighthope sshd[350056]: Failed password for invalid user ftptest from 128.201.9.152 port 32892 ssh2 ... show less	Brute-Force SSH
🇫🇷 thc2cat	2026-06-01 15:06:32 (3 days ago)	2026-06-01T16:58:23.742053 proxy-ssh.dsi.uvsq.fr sshd[478277]: Disconnected from authenticating user ... show more 2026-06-01T16:58:23.742053 proxy-ssh.dsi.uvsq.fr sshd[478277]: Disconnected from authenticating user root 128.201.9.152 port 51592 [preauth] 2026-06-01T17:06:29.572736 proxy-ssh.dsi.uvsq.fr sshd[478417]: Invalid user ftptest from 128.201.9.152 port 45136 2026-06-01T17:06:29.584013 proxy-ssh.dsi.uvsq.fr sshd[478417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 2026-06-01T17:06:31.100376 proxy-ssh.dsi.uvsq.fr sshd[478417]: Failed password for invalid user ftptest from 128.201.9.152 port 45136 ssh2 2026-06-01T17:06:31.696439 proxy-ssh.dsi.uvsq.fr sshd[478417]: Disconnected from invalid user ftptest 128.201.9.152 port 45136 [preauth] ... show less	Brute-Force
🇸🇬 itachi1706	2026-06-01 14:24:30 (3 days ago)	2026-06-01T14:24:29.207058+00:00 sg-jumphost-server sshd[614756]: Invalid user harsh from 128.201.9. ... show more 2026-06-01T14:24:29.207058+00:00 sg-jumphost-server sshd[614756]: Invalid user harsh from 128.201.9.152 port 34300 2026-06-01T14:24:29.568624+00:00 sg-jumphost-server sshd[614756]: Disconnected from invalid user harsh 128.201.9.152 port 34300 [preauth] ... show less	Brute-Force SSH
🇸🇪 sverre26	2026-06-01 14:09:22 (3 days ago)	Bruteforce detected by fail2ban	Brute-Force SSH
🇸🇬 itachi1706	2026-06-01 14:06:40 (3 days ago)	2026-06-01T13:59:22.703909+00:00 sg-jumphost-server sshd[613850]: Invalid user ubuntu from 128.201.9 ... show more 2026-06-01T13:59:22.703909+00:00 sg-jumphost-server sshd[613850]: Invalid user ubuntu from 128.201.9.152 port 48278 2026-06-01T13:59:23.060662+00:00 sg-jumphost-server sshd[613850]: Disconnected from invalid user ubuntu 128.201.9.152 port 48278 [preauth] 2026-06-01T14:06:40.135990+00:00 sg-jumphost-server sshd[614152]: Disconnected from authenticating user root 128.201.9.152 port 38788 [preauth] ... show less	Brute-Force SSH
🇳🇴 kipfel★	2026-06-01 12:33:38 (3 days ago)	2026-06-01T14:21:40.152012+02:00 gigahost-vm-cm21-2c2g-sfj sshd[2096486]: Invalid user teamspeak3 fr ... show more 2026-06-01T14:21:40.152012+02:00 gigahost-vm-cm21-2c2g-sfj sshd[2096486]: Invalid user teamspeak3 from 128.201.9.152 port 45638 2026-06-01T14:30:34.153742+02:00 gigahost-vm-cm21-2c2g-sfj sshd[2096584]: Invalid user elastic from 128.201.9.152 port 58390 2026-06-01T14:33:38.037092+02:00 gigahost-vm-cm21-2c2g-sfj sshd[2096591]: Invalid user ftp_client from 128.201.9.152 port 34412 ... show less	Brute-Force SSH
🇫🇷 LRob.fr	2026-06-01 12:30:02 (3 days ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇵🇱 skillhost.pl	2026-06-01 12:26:50 (3 days ago)	Automated SSH brute-force attack detected. The IP repeatedly attempted to authenticate to port 22 us ... show more Automated SSH brute-force attack detected. The IP repeatedly attempted to authenticate to port 22 using multiple usernames and password guesses within a short timeframe. show less	Brute-Force SSH
🇺🇸 troublesome	2026-06-01 12:20:43 (3 days ago)	ion	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-01 12:19:32 (3 days ago)	Jun 1 06:19:29 mickey sshd[258444]: Invalid user teamspeak3 from 128.201.9.152 port 53622 Jun 1 06 ... show more Jun 1 06:19:29 mickey sshd[258444]: Invalid user teamspeak3 from 128.201.9.152 port 53622 Jun 1 06:19:29 mickey sshd[258444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.9.152 Jun 1 06:19:31 mickey sshd[258444]: Failed password for invalid user teamspeak3 from 128.201.9.152 port 53622 ssh2 ... show less	Brute-Force SSH
🇩🇪 licen777	2026-06-01 12:09:25 (3 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-01T12:04:12Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-01T12:04:12Z and 2026-06-01T12:09:25Z show less	Brute-Force SSH
🇵🇱 Wepted	2026-06-01 11:21:00 (3 days ago)	2026-06-01T13:10:07.338410+02:00 axisverse sshd-session[1987062]: Invalid user devops from 128.201.9 ... show more 2026-06-01T13:10:07.338410+02:00 axisverse sshd-session[1987062]: Invalid user devops from 128.201.9.152 port 42132 2026-06-01T13:17:11.034978+02:00 axisverse sshd-session[2007551]: Invalid user michel from 128.201.9.152 port 54306 2026-06-01T13:20:59.879669+02:00 axisverse sshd-session[2019614]: Invalid user redmine from 128.201.9.152 port 60388 ... show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-06-01 11:20:06 (3 days ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH

Showing 76 to 90 of 3805 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 216.10.245.205

🇺🇸 185.77.220.57

🇧🇩 103.138.171.40

🇺🇸 62.132.18.142

🇬🇧 35.203.211.74

🇧🇷 201.69.32.200

🇸🇪 193.13.167.151

🇮🇩 180.244.231.101

🇫🇷 149.50.220.135

🇮🇳 113.193.234.210

🇳🇱 80.82.77.139

🇮🇳 66.116.199.98

🇬🇧 8.228.55.217

🇳🇱 5.83.143.112

🇫🇷 185.177.72.81

🇨🇱 181.42.38.158

🇵🇾 170.254.219.18

🇮🇳 152.52.232.174

🇺🇸 150.136.129.10

🇻🇳 123.25.97.130