JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.146.252.91

189.146.252.91 was found in our database!

This IP was reported 648 times. Confidence of Abuse is 100%: ?

100%

ISP	Gestión de direccionamiento UniNet
Usage Type	Fixed Line ISP
ASN	AS8151
Hostname(s)	dsl-91-252-146-189-dynamic.prod-infinitum.com.mx
Domain Name	uninet.net.mx
Country	🇲🇽 Mexico
City	Mexico City, Mexico City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.146.252.91

Whois 189.146.252.91

IP Abuse Reports for 189.146.252.91:

This IP address has been reported a total of 648 times from 342 distinct sources. 189.146.252.91 was first reported on May 23rd 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 NeverBehave	2026-05-27 03:11:37 (1 week ago)	[fail2ban] service sshd jail	Brute-Force SSH
🇺🇸 blackburied	2026-05-26 23:55:01 (1 week ago)	SSH brute force on kuhioshores	Brute-Force SSH
🇩🇪 excill	2026-05-26 03:13:10 (1 week ago)	Honeypot mesh observed 159 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇮🇱 spd.co.il	2026-05-25 18:03:44 (1 week ago)	Unauthorized access attempts on ports: 22	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 15:33:14 (1 week ago)	(sshd) Failed SSH login from 189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com ... show more (sshd) Failed SSH login from 189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 25 10:24:57 15547 sshd[2776]: Invalid user curl from 189.146.252.91 port 53814 May 25 10:24:59 15547 sshd[2776]: Failed password for invalid user curl from 189.146.252.91 port 53814 ssh2 May 25 10:29:30 15547 sshd[3308]: Invalid user localhost from 189.146.252.91 port 46368 May 25 10:29:33 15547 sshd[3308]: Failed password for invalid user localhost from 189.146.252.91 port 46368 ssh2 May 25 10:32:59 15547 sshd[3662]: Invalid user peter from 189.146.252.91 port 35888 show less	Brute-Force SSH
🇫🇷 GV-mtb	2026-05-25 15:31:46 (1 week ago)	Fail2ban At mtb-server	Brute-Force SSH
🇩🇪 GrafSchnüffel	2026-05-25 15:31:40 (1 week ago)	2026-05-25T17:20:59.688212+02:00 admin sshd[2460340]: Failed password for invalid user curl from 189 ... show more 2026-05-25T17:20:59.688212+02:00 admin sshd[2460340]: Failed password for invalid user curl from 189.146.252.91 port 36580 ssh2 2026-05-25T17:28:03.870641+02:00 admin sshd[2460775]: Invalid user localhost from 189.146.252.91 port 60312 2026-05-25T17:28:03.873584+02:00 admin sshd[2460775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 2026-05-25T17:28:05.526080+02:00 admin sshd[2460775]: Failed password for invalid user localhost from 189.146.252.91 port 60312 ssh2 2026-05-25T17:31:39.927806+02:00 admin sshd[2461019]: Invalid user peter from 189.146.252.91 port 40580 ... show less	Brute-Force SSH
Anonymous	2026-05-25 15:30:41 (1 week ago)	May 25 15:18:09 ubuntu sshd[920327]: Invalid user curl from 189.146.252.91 port 39932 May 25 15:27:0 ... show more May 25 15:18:09 ubuntu sshd[920327]: Invalid user curl from 189.146.252.91 port 39932 May 25 15:27:00 ubuntu sshd[926935]: Invalid user localhost from 189.146.252.91 port 34796 May 25 15:30:40 ubuntu sshd[929754]: Invalid user peter from 189.146.252.91 port 46836 ... show less	Brute-Force SSH
🇳🇱 Robert S.	2026-05-25 15:30:25 (1 week ago)	2026-05-25T15:17:26.628173+00:00 nl-ams01-wavy sshd-session[2879385]: Invalid user curl from 189.146 ... show more 2026-05-25T15:17:26.628173+00:00 nl-ams01-wavy sshd-session[2879385]: Invalid user curl from 189.146.252.91 port 41508 2026-05-25T15:26:43.576287+00:00 nl-ams01-wavy sshd-session[2951216]: Invalid user localhost from 189.146.252.91 port 48008 2026-05-25T15:30:25.020468+00:00 nl-ams01-wavy sshd-session[2980429]: Invalid user peter from 189.146.252.91 port 38722 show less	Brute-Force SSH
🇩🇪 WebDig	2026-05-25 15:26:46 (1 week ago)	2026-05-25T16:17:32.340307+01:00 mxbackup sshd[45861]: pam_unix(sshd:auth): authentication failure; ... show more 2026-05-25T16:17:32.340307+01:00 mxbackup sshd[45861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 2026-05-25T16:17:34.034486+01:00 mxbackup sshd[45861]: Failed password for invalid user curl from 189.146.252.91 port 34494 ssh2 2026-05-25T16:26:46.135032+01:00 mxbackup sshd[45921]: Invalid user localhost from 189.146.252.91 port 51076 ... show less	Brute-Force SSH Port Scan
🇺🇸 cwytech	2026-05-25 14:38:56 (1 week ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/tpot-ssh-high.	Brute-Force SSH
Anonymous	2026-05-25 14:36:24 (1 week ago)	May 25 17:32:48 ipht sshd[1400850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more May 25 17:32:48 ipht sshd[1400850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=root May 25 17:32:50 ipht sshd[1400850]: Failed password for root from 189.146.252.91 port 44966 ssh2 May 25 17:36:23 ipht sshd[1401788]: Invalid user glenn from 189.146.252.91 port 39728 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-05-25 14:30:07 (1 week ago)	May 25 08:26:35 ssg-imac1 sshd[89927]: Failed password for root from 189.146.252.91 port 57516 ssh2 ... show more May 25 08:26:35 ssg-imac1 sshd[89927]: Failed password for root from 189.146.252.91 port 57516 ssh2 May 25 08:30:05 ssg-imac1 sshd[89934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=admin May 25 08:30:07 ssg-imac1 sshd[89934]: Failed password for admin from 189.146.252.91 port 48020 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 14:19:35 (1 week ago)	189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx), 5 distributed sshd atta ... show more 189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 25 08:27:38 17799 sshd[2201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.103.123.80 user=root May 25 08:27:40 17799 sshd[2201]: Failed password for root from 14.103.123.80 port 50828 ssh2 May 25 09:19:14 17799 sshd[8618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=root May 25 08:42:03 17799 sshd[3930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.44.38.181 user=root May 25 08:35:09 17799 sshd[3132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.147.107.219 user=root IP Addresses Blocked: 14.103.123.80 (CN/China/-) show less	Brute-Force SSH
🇫🇷 krapon	2026-05-25 13:44:20 (1 week ago)	May 25 15:39:57 service sshd[767117]: Invalid user user from 189.146.252.91 port 47208 May 25 15:44: ... show more May 25 15:39:57 service sshd[767117]: Invalid user user from 189.146.252.91 port 47208 May 25 15:44:19 service sshd[767401]: Invalid user steam from 189.146.252.91 port 41626 ... show less	Brute-Force SSH

Showing 181 to 195 of 648 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 203.242.185.211

🇬🇧 188.240.59.23

🇳🇱 176.65.148.147

🇳🇱 176.65.131.192

🇸🇳 154.125.0.153

🇿🇦 105.233.67.36

🇺🇸 104.194.10.248

🇬🇧 35.203.211.188

🇲🇦 196.75.166.160

🇩🇪 195.63.20.56

🇰🇷 169.211.232.182

🇩🇪 167.94.146.62

🇺🇸 147.185.132.114

🇺🇸 135.237.122.43

🇺🇸 108.181.22.199

🇸🇬 101.47.8.188

🇫🇷 91.196.152.126

🇫🇷 91.196.152.36

🇳🇱 91.92.42.162

🇷🇴 80.94.92.187