This IP address has been reported a total of
659
times from
374 distinct
sources.
201.138.189.215 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Jun 2 03:18:04 mail sshd[2762543]: Failed password for invalid user duncan from 201.138.189.215 por ...
show moreJun 2 03:18:04 mail sshd[2762543]: Failed password for invalid user duncan from 201.138.189.215 port 36568 ssh2
Jun 2 03:27:16 mail sshd[2922506]: Failed password for invalid user rootadmin from 201.138.189.215 port 46682 ssh2
Jun 2 03:28:46 mail sshd[2948904]: Failed password for root from 201.138.189.215 port 39320 ssh2
show less
2026-06-01T21:16:14.145155-04:00 debian sshd[3646275]: Failed password for invalid user duncan from ...
show more2026-06-01T21:16:14.145155-04:00 debian sshd[3646275]: Failed password for invalid user duncan from 201.138.189.215 port 43550 ssh2
2026-06-01T21:25:07.835734-04:00 debian sshd[3653353]: Invalid user duncan from 201.138.189.215 port 35850
2026-06-01T21:25:07.839159-04:00 debian sshd[3653353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215
2026-06-01T21:25:09.674194-04:00 debian sshd[3653353]: Failed password for invalid user duncan from 201.138.189.215 port 35850 ssh2
2026-06-01T21:26:59.280267-04:00 debian sshd[3654990]: Invalid user rootadmin from 201.138.189.215 port 56278
...
show less
Jun 2 00:35:04 ubuntu sshd[455539]: Invalid user add from 201.138.189.215 port 35190
Jun 2 00:39:3 ...
show moreJun 2 00:35:04 ubuntu sshd[455539]: Invalid user add from 201.138.189.215 port 35190
Jun 2 00:39:38 ubuntu sshd[458778]: Invalid user apps2 from 201.138.189.215 port 53660
Jun 2 00:41:24 ubuntu sshd[460234]: Invalid user transit from 201.138.189.215 port 44404
...
show less
2026-06-01T16:48:08.797036-07:00 cohoe sshd[304842]: pam_unix(sshd:auth): authentication failure; lo ...
show more2026-06-01T16:48:08.797036-07:00 cohoe sshd[304842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 user=root
2026-06-01T16:48:11.119705-07:00 cohoe sshd[304842]: Failed password for root from 201.138.189.215 port 37174 ssh2
2026-06-01T16:49:37.547146-07:00 cohoe sshd[304880]: Invalid user mari from 201.138.189.215 port 48002
2026-06-01T16:49:37.553516-07:00 cohoe sshd[304880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215
2026-06-01T16:49:39.762871-07:00 cohoe sshd[304880]: Failed password for invalid user mari from 201.138.189.215 port 48002 ssh2
...
show less
Jun 2 00:16:25 wh02 sshd[1863835]: Invalid user tan from 201.138.189.215 port 53768
Jun 2 00:16:25 ...
show moreJun 2 00:16:25 wh02 sshd[1863835]: Invalid user tan from 201.138.189.215 port 53768
Jun 2 00:16:25 wh02 sshd[1863835]: Received disconnect from 201.138.189.215 port 53768:11: Bye Bye [preauth]
Jun 2 00:16:25 wh02 sshd[1863835]: Disconnected from invalid user tan 201.138.189.215 port 53768 [preauth]
Jun 2 00:20:00 wh02 sshd[1865448]: Invalid user pal from 201.138.189.215 port 40702
Jun 2 00:20:00 wh02 sshd[1865448]: Received disconnect from 201.138.189.215 port 40702:11: Bye Bye [preauth]
Jun 2 00:20:00 wh02 sshd[1865448]: Disconnected from invalid user pal 201.138.189.215 port 40702 [preauth]
Jun 2 00:21:32 wh02 sshd[1865586]: Received disconnect from 201.138.189.215 port 44066:11: Bye Bye [preauth]
Jun 2 00:21:32 wh02 sshd[1865586]: Disconnected from authenticating user root 201.138.189.215 port 44066 [preauth]
Jun 2 00:23:02 wh02 sshd[1873098]: Received disconnect from 201.138.189.215 port 47934:11: Bye Bye [preauth]
Jun 2 00:23:02 wh02 sshd[1873098]: Disconnected from auth
show less
Brute-Force
Exploited Host
SSH
Anonymous
2026-06-02T00:45:50.421079+02:00 raspberrypi sshd[3422194]: Invalid user toor from 201.138.189.215 p ...
show more2026-06-02T00:45:50.421079+02:00 raspberrypi sshd[3422194]: Invalid user toor from 201.138.189.215 port 46294
2026-06-02T00:51:43.772635+02:00 raspberrypi sshd[3425841]: Invalid user temp from 201.138.189.215 port 50434
2026-06-02T00:57:40.525633+02:00 raspberrypi sshd[3429620]: Invalid user amit from 201.138.189.215 port 59602
...
show less
2026-06-01T23:52:12.675288+01:00 jumphost sshd-session[434095]: Connection from 201.138.189.215 port ...
show more2026-06-01T23:52:12.675288+01:00 jumphost sshd-session[434095]: Connection from 201.138.189.215 port 52940 on 192.168.40.4 port 22 rdomain ""
2026-06-01T23:52:13.474086+01:00 jumphost sshd-session[434095]: Invalid user temp from 201.138.189.215 port 52940
...
show less
2026-06-01T23:30:54.491442+02:00 pbs sshd-session[545279]: Invalid user irfan from 201.138.189.215 p ...
show more2026-06-01T23:30:54.491442+02:00 pbs sshd-session[545279]: Invalid user irfan from 201.138.189.215 port 35740
2026-06-01T23:33:44.693914+02:00 pbs sshd-session[545299]: Connection from 201.138.189.215 port 45838 on 195.201.241.169 port 22 rdomain ""
2026-06-01T23:33:45.590108+02:00 pbs sshd-session[545299]: Invalid user smile from 201.138.189.215 port 45838
...
show less
Brute-Force
SSH
Showing 166 to
180
of 659 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ