JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.118.214.152

138.118.214.152 was found in our database!

This IP was reported 1,687 times. Confidence of Abuse is 100%: ?

100%

ISP	Sebastian Souto (SSSERVICIOS)
Usage Type	Fixed Line ISP
ASN	AS264738
Hostname(s)	red.138.118.214.152.ssservicios.com.ar
Domain Name	ssservicios.com.ar
Country	🇦🇷 Argentina
City	Rio Gallegos, Santa Cruz

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.118.214.152

Whois 138.118.214.152

IP Abuse Reports for 138.118.214.152:

This IP address has been reported a total of 1,687 times from 609 distinct sources. 138.118.214.152 was first reported on November 20th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 agentics	2026-06-10 02:42:48 (2 weeks ago)	138.118.214.152 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scal ... show more 138.118.214.152 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 138.118.214.152 - Anycast false - City N/A - Region N/A - Region Code N/A - Country N/A (N/A) - Continent N/A (N/A) - Range N/A - Provider N/A - Organisation N/A - Proxy N/A - Type N/A show less	Brute-Force SSH
🇩🇪 kipfel★	2026-06-02 07:06:32 (3 weeks ago)	2026-06-02T07:00:03.880670+00:00 xtom-vm-cloud-2c1g-fra sshd-session[122361]: Invalid user md from 1 ... show more 2026-06-02T07:00:03.880670+00:00 xtom-vm-cloud-2c1g-fra sshd-session[122361]: Invalid user md from 138.118.214.152 port 56762 2026-06-02T07:03:22.374774+00:00 xtom-vm-cloud-2c1g-fra sshd-session[122366]: Invalid user vpn from 138.118.214.152 port 33140 2026-06-02T07:06:31.777556+00:00 xtom-vm-cloud-2c1g-fra sshd-session[122373]: Invalid user manjaro from 138.118.214.152 port 37734 ... show less	Brute-Force SSH
Anonymous	2026-06-02 07:03:24 (3 weeks ago)	2026-06-02T15:00:01.762822+08:00 HKCM1-20260502115917ab4c7d sshd[39023]: Invalid user md from 138.11 ... show more 2026-06-02T15:00:01.762822+08:00 HKCM1-20260502115917ab4c7d sshd[39023]: Invalid user md from 138.118.214.152 port 33328 2026-06-02T15:00:01.766419+08:00 HKCM1-20260502115917ab4c7d sshd[39023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 2026-06-02T15:00:03.494714+08:00 HKCM1-20260502115917ab4c7d sshd[39023]: Failed password for invalid user md from 138.118.214.152 port 33328 ssh2 2026-06-02T15:03:20.361242+08:00 HKCM1-20260502115917ab4c7d sshd[39036]: Invalid user vpn from 138.118.214.152 port 37934 2026-06-02T15:03:20.373555+08:00 HKCM1-20260502115917ab4c7d sshd[39036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 2026-06-02T15:03:22.753892+08:00 HKCM1-20260502115917ab4c7d sshd[39036]: Failed password for invalid user vpn from 138.118.214.152 port 37934 ssh2 ... show less	Brute-Force SSH
🇬🇧 Hydrated8853	2026-06-02 07:03:14 (3 weeks ago)	2026-06-02T14:56:37.430549+08:00 debian sshd[1170730]: Failed password for root from 138.118.214.152 ... show more 2026-06-02T14:56:37.430549+08:00 debian sshd[1170730]: Failed password for root from 138.118.214.152 port 39222 ssh2 2026-06-02T14:59:55.363527+08:00 debian sshd[1170782]: Invalid user md from 138.118.214.152 port 43826 2026-06-02T14:59:55.377144+08:00 debian sshd[1170782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 2026-06-02T14:59:57.283022+08:00 debian sshd[1170782]: Failed password for invalid user md from 138.118.214.152 port 43826 ssh2 2026-06-02T15:03:14.185705+08:00 debian sshd[1170809]: Invalid user vpn from 138.118.214.152 port 48432 ... show less	Brute-Force SSH
🇯🇵 oh.mg	2026-06-02 07:03:09 (3 weeks ago)	2026-06-02T02:59:48.129019-04:00 deltachat-jp sshd[1745884]: pam_unix(sshd:auth): authentication fai ... show more 2026-06-02T02:59:48.129019-04:00 deltachat-jp sshd[1745884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 2026-06-02T02:59:49.405546-04:00 deltachat-jp sshd[1745884]: Failed password for invalid user md from 138.118.214.152 port 58826 ssh2 2026-06-02T03:03:07.018393-04:00 deltachat-jp sshd[1761957]: Invalid user vpn from 138.118.214.152 port 35204 2026-06-02T03:03:07.020648-04:00 deltachat-jp sshd[1761957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 2026-06-02T03:03:08.949496-04:00 deltachat-jp sshd[1761957]: Failed password for invalid user vpn from 138.118.214.152 port 35204 ssh2 ... show less	Brute-Force SSH
🇩🇪 SkyCastle	2026-06-02 06:59:00 (3 weeks ago)	2026-06-02T06:58:57.348136+00:00 panel sshd[4180968]: Invalid user md from 138.118.214.152 port 3348 ... show more 2026-06-02T06:58:57.348136+00:00 panel sshd[4180968]: Invalid user md from 138.118.214.152 port 33484 2026-06-02T06:58:57.353624+00:00 panel sshd[4180968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 2026-06-02T06:58:59.629759+00:00 panel sshd[4180968]: Failed password for invalid user md from 138.118.214.152 port 33484 ssh2 ... show less	Brute-Force SSH
🇩🇪 alps.one	2026-06-02 06:34:06 (3 weeks ago)	Jun 2 07:57:34 cloud sshd[14663]: Invalid user zx from 138.118.214.152 port 33752 Jun 2 08:00:40 c ... show more Jun 2 07:57:34 cloud sshd[14663]: Invalid user zx from 138.118.214.152 port 33752 Jun 2 08:00:40 cloud sshd[14680]: Invalid user elasticsearch from 138.118.214.152 port 37764 Jun 2 08:03:41 cloud sshd[14696]: Invalid user tester from 138.118.214.152 port 41766 Jun 2 08:31:06 cloud sshd[14964]: Invalid user dev from 138.118.214.152 port 49604 Jun 2 08:34:06 cloud sshd[14983]: Invalid user zahid from 138.118.214.152 port 53608 show less	Brute-Force SSH
Anonymous	2026-06-02 06:05:03 (3 weeks ago)	SSH abuse or brute force attack detected by Fail2Ban	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-02 05:54:58 (3 weeks ago)	Jun 1 23:54:55 felix sshd[278201]: Invalid user zx from 138.118.214.152 port 55012 Jun 1 23:54:55 ... show more Jun 1 23:54:55 felix sshd[278201]: Invalid user zx from 138.118.214.152 port 55012 Jun 1 23:54:55 felix sshd[278201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 Jun 1 23:54:56 felix sshd[278201]: Failed password for invalid user zx from 138.118.214.152 port 55012 ssh2 ... show less	Brute-Force SSH
🇨🇿 ICT KnTl	2026-06-02 05:08:13 (3 weeks ago)	...	Brute-Force SSH
Anonymous	2026-06-02 04:10:55 (3 weeks ago)	SSH brute force attempt. User: mxs, Pass: [REDACTED]	Brute-Force SSH
🇬🇧 prime_fusion_ld	2026-06-02 04:00:50 (3 weeks ago)	Blocked by CSF/LFD on vps.primefusion.co.uk. Trigger: 1 Ports: *	Port Scan
🇹🇷 hasankayra04	2026-06-02 03:59:07 (3 weeks ago)	Jun 2 06:54:44 localhost sshd[183150]: Invalid user jt from 138.118.214.152 port 56390 Jun 2 06:54 ... show more Jun 2 06:54:44 localhost sshd[183150]: Invalid user jt from 138.118.214.152 port 56390 Jun 2 06:54:44 localhost sshd[183150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.214.152 Jun 2 06:54:44 localhost sshd[183150]: Invalid user jt from 138.118.214.152 port 56390 Jun 2 06:54:46 localhost sshd[183150]: Failed password for invalid user jt from 138.118.214.152 port 56390 ssh2 Jun 2 06:58:06 localhost sshd[183253]: Invalid user ubs from 138.118.214.152 port 60134 ... show less	Brute-Force SSH
Anonymous	2026-06-02 03:54:44 (3 weeks ago)	SSH brute force attempt. User: jt, Pass: [REDACTED]	Brute-Force SSH
🇩🇪 joschuak	2026-06-02 03:52:19 (3 weeks ago)	SSH brute force attack detected from [138.118.214.152]	SSH Brute-Force

Showing 1 to 15 of 1687 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 167.99.102.191

🇳🇱 31.14.32.8

🇰🇿 212.154.203.144

🇷🇴 193.46.255.86

🇩🇪 150.241.107.185

🇷🇴 141.98.83.186

🇳🇱 88.151.32.89

🇺🇸 34.24.2.121

🇮🇷 2.183.162.8

🇺🇸 2607:f8b0:400e:c09::124

🇺🇸 2600:3c00::2000:cbff:fef9:ee07

🇩🇪 207.154.246.19

🇵🇱 193.0.210.83

🇨🇳 180.76.170.111

🇮🇳 49.37.75.26

🇺🇸 45.79.114.248

🇨🇳 27.155.92.28

🇮🇷 5.233.186.188

🇷🇸 188.120.106.246

🇳🇱 185.226.197.9