This IP address has been reported a total of
23
times from
19 distinct
sources.
138.252.198.166 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
(sshd) Failed SSH login from 138.252.198.166 (BD/Bangladesh/-): 5 in the last 3600 secs; Ports: *; D ...
show more(sshd) Failed SSH login from 138.252.198.166 (BD/Bangladesh/-): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jul 5 13:14:10 14057 sshd[10217]: Invalid user steam from 138.252.198.166 port 37372
Jul 5 13:14:12 14057 sshd[10217]: Failed password for invalid user steam from 138.252.198.166 port 37372 ssh2
Jul 5 13:16:54 14057 sshd[12069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.252.198.166 user=root
Jul 5 13:16:56 14057 sshd[12069]: Failed password for root from 138.252.198.166 port 44022 ssh2
Jul 5 13:18:50 14057 sshd[13736]: Invalid user mqmuser from 138.252.198.166 port 44848
show less
2026-07-05T20:13:08.651999+02:00 proxy sshd[118420]: Invalid user steam from 138.252.198.166 port 50 ...
show more2026-07-05T20:13:08.651999+02:00 proxy sshd[118420]: Invalid user steam from 138.252.198.166 port 50588
2026-07-05T20:18:41.966069+02:00 proxy sshd[118854]: Invalid user mqmuser from 138.252.198.166 port 34360
...
show less
2026-07-05T17:27:19.047181+00:00 mail.eternalnetworktm.com sshd-session[637137]: Invalid user server ...
show more2026-07-05T17:27:19.047181+00:00 mail.eternalnetworktm.com sshd-session[637137]: Invalid user server4 from 138.252.198.166 port 47862
2026-07-05T17:33:21.532643+00:00 mail.eternalnetworktm.com sshd-session[641469]: Invalid user debian from 138.252.198.166 port 34550
2026-07-05T17:39:12.085915+00:00 mail.eternalnetworktm.com sshd-session[645288]: Invalid user minecraft from 138.252.198.166 port 57060
...
show less
2026-07-05T17:21:03.525843+01:00 web01.schwick.de sshd-session[3658887]: Disconnected from authentic ...
show more2026-07-05T17:21:03.525843+01:00 web01.schwick.de sshd-session[3658887]: Disconnected from authenticating user root 138.252.198.166 port 47262 [preauth]
2026-07-05T17:23:39.103205+01:00 web01.schwick.de sshd-session[3660329]: Disconnected from authenticating user root 138.252.198.166 port 57256 [preauth]
2026-07-05T17:26:15.578491+01:00 web01.schwick.de sshd-session[3662163]: Disconnected from authenticating user admin 138.252.198.166 port 59030 [preauth]
2026-07-05T17:28:46.252704+01:00 web01.schwick.de sshd-session[3663372]: Disconnected from authenticating user root 138.252.198.166 port 51102 [preauth]
2026-07-05T17:31:12.461298+01:00 web01.schwick.de sshd-session[3665166]: Invalid user developer from 138.252.198.166 port 45558
show less
2026-07-05T16:18:54.216208+00:00 reverse sshd[973198]: Failed password for invalid user ubuntu from ...
show more2026-07-05T16:18:54.216208+00:00 reverse sshd[973198]: Failed password for invalid user ubuntu from 138.252.198.166 port 43474 ssh2
2026-07-05T16:22:55.149999+00:00 reverse sshd[993026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.252.198.166 user=root
2026-07-05T16:22:57.227386+00:00 reverse sshd[993026]: Failed password for root from 138.252.198.166 port 58414 ssh2
...
show less
2026-07-05T15:42:16.843788+00:00 edge-tdt-man01.int.pdx.net.uk sshd[2757672]: Invalid user deployer ...
show more2026-07-05T15:42:16.843788+00:00 edge-tdt-man01.int.pdx.net.uk sshd[2757672]: Invalid user deployer from 138.252.198.166 port 32966
2026-07-05T15:46:33.392850+00:00 edge-tdt-man01.int.pdx.net.uk sshd[2758003]: Invalid user ubuntu from 138.252.198.166 port 36368
2026-07-05T15:48:35.100261+00:00 edge-tdt-man01.int.pdx.net.uk sshd[2758162]: Invalid user testftp from 138.252.198.166 port 40272
...
show less
2026-07-05T17:41:10.219856+02:00 proxy sshd[107195]: Invalid user deployer from 138.252.198.166 port ...
show more2026-07-05T17:41:10.219856+02:00 proxy sshd[107195]: Invalid user deployer from 138.252.198.166 port 54562
2026-07-05T17:45:29.774998+02:00 proxy sshd[107486]: Invalid user ubuntu from 138.252.198.166 port 33372
...
show less
Jul 5 15:42:21 dabeau sshd[2199]: Invalid user deployer from 138.252.198.166 port 54502
Jul 5 15:4 ...
show moreJul 5 15:42:21 dabeau sshd[2199]: Invalid user deployer from 138.252.198.166 port 54502
Jul 5 15:42:21 dabeau sshd[2199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.252.198.166
Jul 5 15:42:23 dabeau sshd[2199]: Failed password for invalid user deployer from 138.252.198.166 port 54502 ssh2
...
show less
Brute-Force
SSH
Showing 1 to
15
of 23 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ