JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.146.252.91

189.146.252.91 was found in our database!

This IP was reported 648 times. Confidence of Abuse is 100%: ?

100%

ISP	Gestión de direccionamiento UniNet
Usage Type	Fixed Line ISP
ASN	AS8151
Hostname(s)	dsl-91-252-146-189-dynamic.prod-infinitum.com.mx
Domain Name	uninet.net.mx
Country	🇲🇽 Mexico
City	Mexico City, Mexico City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.146.252.91

Whois 189.146.252.91

IP Abuse Reports for 189.146.252.91:

This IP address has been reported a total of 648 times from 342 distinct sources. 189.146.252.91 was first reported on May 23rd 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-23 09:01:26 (1 week ago)	2026-05-23T08:57:39.129830+00:00 nosvoid.com sshd[1223498]: pam_unix(sshd:auth): authentication fail ... show more 2026-05-23T08:57:39.129830+00:00 nosvoid.com sshd[1223498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 2026-05-23T08:57:41.313778+00:00 nosvoid.com sshd[1223498]: Failed password for invalid user contabilidad from 189.146.252.91 port 57884 ssh2 2026-05-23T09:01:23.562023+00:00 nosvoid.com sshd[1230378]: Invalid user ec2-user from 189.146.252.91 port 54984 2026-05-23T09:01:23.568199+00:00 nosvoid.com sshd[1230378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 2026-05-23T09:01:25.502043+00:00 nosvoid.com sshd[1230378]: Failed password for invalid user ec2-user from 189.146.252.91 port 54984 ssh2 ... show less	Brute-Force SSH
🇫🇷 ImMarvolo	2026-05-23 08:57:31 (1 week ago)	Unauthorized connection attempt detected neo-backup, SSH Brute-Force	Brute-Force SSH
🇸🇪 sa0azs	2026-05-23 08:56:17 (1 week ago)	2026-05-23T10:56:13.462572+02:00 ErrolFlynn sshd[288944]: Invalid user contabilidad from 189.146.252 ... show more 2026-05-23T10:56:13.462572+02:00 ErrolFlynn sshd[288944]: Invalid user contabilidad from 189.146.252.91 port 51162 2026-05-23T10:56:13.492485+02:00 ErrolFlynn sshd[288944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 2026-05-23T10:56:15.536340+02:00 ErrolFlynn sshd[288944]: Failed password for invalid user contabilidad from 189.146.252.91 port 51162 ssh2 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-05-23 08:55:21 (1 week ago)	May 23 02:55:19 b146-36 sshd[151871]: Invalid user contabilidad from 189.146.252.91 port 36054 May 2 ... show more May 23 02:55:19 b146-36 sshd[151871]: Invalid user contabilidad from 189.146.252.91 port 36054 May 23 02:55:19 b146-36 sshd[151871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 May 23 02:55:21 b146-36 sshd[151871]: Failed password for invalid user contabilidad from 189.146.252.91 port 36054 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-23 08:52:48 (1 week ago)	189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx), 5 distributed sshd atta ... show more 189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 23 03:52:39 15256 sshd[21230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=root May 23 03:38:03 15256 sshd[18793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.140.11.157 user=root May 23 03:18:26 15256 sshd[15452]: Failed password for root from 189.165.70.195 port 47108 ssh2 May 23 03:27:38 15256 sshd[17030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.44.104.43 user=root May 23 03:27:40 15256 sshd[17030]: Failed password for root from 113.44.104.43 port 57442 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇨🇿 plzenskypruvodce.cz	2026-05-23 08:38:01 (1 week ago)	2026-05-23T10:30:19.611564+02:00 phishsim sshd[1126528]: Invalid user pdv from 189.146.252.91 port 5 ... show more 2026-05-23T10:30:19.611564+02:00 phishsim sshd[1126528]: Invalid user pdv from 189.146.252.91 port 54052 2026-05-23T10:38:01.728834+02:00 phishsim sshd[1126754]: Invalid user frappe from 189.146.252.91 port 41994 ... show less	Web App Attack
🇨🇿 plzenskypruvodce.cz	2026-05-23 08:19:22 (1 week ago)	2026-05-23T10:15:38.538457+02:00 phishsim sshd[1126056]: Invalid user test from 189.146.252.91 port ... show more 2026-05-23T10:15:38.538457+02:00 phishsim sshd[1126056]: Invalid user test from 189.146.252.91 port 57182 2026-05-23T10:19:21.517230+02:00 phishsim sshd[1126186]: Invalid user dev from 189.146.252.91 port 54200 ... show less	Web App Attack
🇩🇪 cybergecko.de	2026-05-23 08:06:34 (1 week ago)	May 23 09:59:01 CyberGecko sshd[402076]: Failed password for invalid user testftp from 189.146.252.9 ... show more May 23 09:59:01 CyberGecko sshd[402076]: Failed password for invalid user testftp from 189.146.252.91 port 53994 ssh2 May 23 10:02:55 CyberGecko sshd[402620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=root May 23 10:02:56 CyberGecko sshd[402620]: Failed password for root from 189.146.252.91 port 33836 ssh2 May 23 10:06:33 CyberGecko sshd[403112]: Invalid user wj from 189.146.252.91 port 48218 ... show less	Brute-Force SSH
🇨🇿 plzenskypruvodce.cz	2026-05-23 08:00:32 (1 week ago)	2026-05-23T09:51:02.491739+02:00 phishsim sshd[1125194]: Invalid user wy from 189.146.252.91 port 32 ... show more 2026-05-23T09:51:02.491739+02:00 phishsim sshd[1125194]: Invalid user wy from 189.146.252.91 port 32804 2026-05-23T10:00:31.728232+02:00 phishsim sshd[1125483]: Invalid user testftp from 189.146.252.91 port 55134 ... show less	Web App Attack
🇺🇸 amit177	2026-05-23 07:56:24 (1 week ago)		Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-23 07:55:48 (1 week ago)	189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx), 5 distributed sshd atta ... show more 189.146.252.91 (MX/Mexico/dsl-91-252-146-189-dynamic.prod-infinitum.com.mx), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 23 02:54:47 15093 sshd[13915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.105.134.234 user=root May 23 02:54:49 15093 sshd[13915]: Failed password for root from 112.105.134.234 port 59930 ssh2 May 23 02:55:32 15093 sshd[14067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=root May 23 02:04:00 15093 sshd[5650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.0.242.54 user=root May 23 02:04:03 15093 sshd[5650]: Failed password for root from 196.0.242.54 port 33298 ssh2 IP Addresses Blocked: 112.105.134.234 (TW/Taiwan/112-105-134-234.adsl.dynamic.seed.net.tw) show less	Brute-Force SSH
Anonymous	2026-05-23 07:55:46 (1 week ago)	2026-05-23T09:49:29.226903+02:00 vm986549.cloud.nuxt.network sshd-session[4887]: Failed password for ... show more 2026-05-23T09:49:29.226903+02:00 vm986549.cloud.nuxt.network sshd-session[4887]: Failed password for invalid user wy from 189.146.252.91 port 32806 ssh2 2026-05-23T09:55:43.178800+02:00 vm986549.cloud.nuxt.network sshd-session[4898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 user=root 2026-05-23T09:55:45.521162+02:00 vm986549.cloud.nuxt.network sshd-session[4898]: Failed password for root from 189.146.252.91 port 42330 ssh2 ... show less	Brute-Force SSH
🇩🇪 Panter	2026-05-23 07:55:10 (1 week ago)	Bruteforce detected by fail2ban SSH	Brute-Force SSH
🇰🇷 2048	2026-05-23 07:55:05 (1 week ago)	2026-05-23T16:55:03.897422+09:00 no1 sshd[1683732]: Disconnected from authenticating user root 189.1 ... show more 2026-05-23T16:55:03.897422+09:00 no1 sshd[1683732]: Disconnected from authenticating user root 189.146.252.91 port 54336 [preauth] ... show less	Brute-Force SSH
🇸🇬 bret.dk	2026-05-23 07:52:31 (1 week ago)	May 23 07:52:28 sg-mirror sshd[2027626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 23 07:52:28 sg-mirror sshd[2027626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.146.252.91 May 23 07:52:30 sg-mirror sshd[2027626]: Failed password for invalid user wy from 189.146.252.91 port 42862 ssh2 ... show less	Brute-Force SSH

Showing 556 to 570 of 648 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.3.53.8

🇺🇸 185.255.100.250

🇨🇳 153.37.227.44

🇮🇳 122.187.230.162

🇫🇷 88.138.20.172

🇲🇾 47.250.155.223

🇳🇱 45.148.10.121

🇨🇳 27.18.68.250

🇳🇱 213.177.179.127

🇧🇷 200.165.15.78

🇬🇧 185.247.137.196

🇺🇸 167.172.223.199

🇫🇮 147.185.133.225

🇰🇷 121.66.124.147

🇸🇬 121.6.81.59

🇨🇳 117.80.152.104

🇷🇺 94.25.40.30

🇨🇳 61.146.129.133

🇫🇮 45.154.244.2

🇮🇳 36.50.167.81