JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 201.138.189.215

201.138.189.215 was found in our database!

This IP was reported 658 times. Confidence of Abuse is 100%: ?

100%

ISP	Gestión de direccionamiento UniNet
Usage Type	Fixed Line ISP
ASN	AS8151
Hostname(s)	215-189-138-201.prod-infinitum.com.mx
Domain Name	uninet.net.mx
Country	🇲🇽 Mexico
City	Puebla, Puebla

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 201.138.189.215

Whois 201.138.189.215

IP Abuse Reports for 201.138.189.215:

This IP address has been reported a total of 658 times from 374 distinct sources. 201.138.189.215 was first reported on May 28th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 licen777	2026-05-29 18:57:43 (5 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-29T18:28:32Z and 2026-05-2 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-29T18:28:32Z and 2026-05-29T18:57:43Z show less	Brute-Force SSH
🇬🇧 prime_fusion_ld	2026-05-29 18:38:23 (5 days ago)	Blocked by CSF/LFD on vps.primefusion.co.uk. Trigger: 1 Ports: *	Port Scan
🇬🇧 Marten Mark	2026-05-29 18:32:19 (5 days ago)	2026-05-29T18:30:36.448926+00:00 mail.cfi.co sshd[131879]: Invalid user ubuntu from 201.138.189.215 ... show more 2026-05-29T18:30:36.448926+00:00 mail.cfi.co sshd[131879]: Invalid user ubuntu from 201.138.189.215 port 41968 2026-05-29T18:32:17.585287+00:00 mail.cfi.co sshd[131916]: Connection from 201.138.189.215 port 46992 on 206.189.122.172 port 22 rdomain "" 2026-05-29T18:32:18.506328+00:00 mail.cfi.co sshd[131916]: Invalid user patrick from 201.138.189.215 port 46992 ... show less	SSH Brute-Force
🇺🇸 bigscoots.com	2026-05-29 18:32:01 (5 days ago)	(sshd) Failed SSH login from 201.138.189.215 (MX/Mexico/215-189-138-201.prod-infinitum.com.mx): 5 in ... show more (sshd) Failed SSH login from 201.138.189.215 (MX/Mexico/215-189-138-201.prod-infinitum.com.mx): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 29 13:26:30 14379 sshd[30600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 user=root May 29 13:26:32 14379 sshd[30600]: Failed password for root from 201.138.189.215 port 41642 ssh2 May 29 13:30:03 14379 sshd[32496]: Invalid user ubuntu from 201.138.189.215 port 35858 May 29 13:30:05 14379 sshd[32496]: Failed password for invalid user ubuntu from 201.138.189.215 port 35858 ssh2 May 29 13:31:39 14379 sshd[715]: Invalid user ubuntu from 201.138.189.215 port 50492 show less	Brute-Force SSH
🇦🇷 sadhtux	2026-05-29 18:29:12 (5 days ago)	ssh-brute-force	Brute-Force SSH
🇭🇰 bluecloudwork	2026-05-29 17:55:53 (5 days ago)	Fail2Ban - Brute-force SSH server ...	Brute-Force SSH
Anonymous	2026-05-29 17:55:36 (5 days ago)	2026-05-29 19:44:45,451 fail2ban.actions [3799592]: NOTICE [sshd] Ban 201.138.189.215 2026-0 ... show more 2026-05-29 19:44:45,451 fail2ban.actions [3799592]: NOTICE [sshd] Ban 201.138.189.215 2026-05-29 19:55:36,198 fail2ban.actions [3799592]: NOTICE [sshd] Ban 201.138.189.215 ... show less	Brute-Force Exploited Host
🇨🇳 pengpeng	2026-05-29 17:51:15 (5 days ago)	monitor: on VM-0-7-ubuntu \| port: 22 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan SSH
🇩🇪 Ha1fdan	2026-05-29 17:23:05 (5 days ago)	May 29 19:15:21 main1 sshd[4123413]: Invalid user user1 from 201.138.189.215 port 34300 May 29 19:23 ... show more May 29 19:15:21 main1 sshd[4123413]: Invalid user user1 from 201.138.189.215 port 34300 May 29 19:23:05 main1 sshd[4130719]: User ubuntu not allowed because account is locked May 29 19:23:05 main1 sshd[4130719]: Received disconnect from 201.138.189.215 port 46152:11: Bye Bye [preauth] ... show less	Brute-Force SSH
🇯🇵 Hydrated8853	2026-05-29 17:15:42 (5 days ago)	2026-05-30T01:13:52.244019+08:00 r901613 sshd[250720]: pam_unix(sshd:auth): authentication failure; ... show more 2026-05-30T01:13:52.244019+08:00 r901613 sshd[250720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 2026-05-30T01:13:54.031171+08:00 r901613 sshd[250720]: Failed password for invalid user hdfs from 201.138.189.215 port 34920 ssh2 2026-05-30T01:15:40.206412+08:00 r901613 sshd[250877]: Invalid user user1 from 201.138.189.215 port 49236 2026-05-30T01:15:40.210360+08:00 r901613 sshd[250877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 2026-05-30T01:15:42.157625+08:00 r901613 sshd[250877]: Failed password for invalid user user1 from 201.138.189.215 port 49236 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-29 16:38:47 (5 days ago)	201.138.189.215 (MX/Mexico/215-189-138-201.prod-infinitum.com.mx), 5 distributed sshd attacks on acc ... show more 201.138.189.215 (MX/Mexico/215-189-138-201.prod-infinitum.com.mx), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 29 11:38:40 14970 sshd[3848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 user=root May 29 11:36:57 14970 sshd[2940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 user=root May 29 11:36:59 14970 sshd[2940]: Failed password for root from 201.138.189.215 port 42434 ssh2 May 29 11:35:15 14970 sshd[2229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.211.139 user=root May 29 11:35:17 14970 sshd[2229]: Failed password for root from 101.96.211.139 port 56268 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇵🇾 SecOpsSL	2026-05-29 16:32:11 (5 days ago)	2026-05-29T12:32:08.279625mail.softlan.com.py sshd[9334]: Invalid user user2 from 201.138.189.215 po ... show more 2026-05-29T12:32:08.279625mail.softlan.com.py sshd[9334]: Invalid user user2 from 201.138.189.215 port 50732 2026-05-29T12:32:08.288142mail.softlan.com.py sshd[9334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 2026-05-29T12:32:10.320980mail.softlan.com.py sshd[9334]: Failed password for invalid user user2 from 201.138.189.215 port 50732 ssh2 ... show less	Brute-Force SSH
🇳🇱 majo-it.nl	2026-05-29 16:27:59 (5 days ago)	May 29 16:27:57 fail2ban sshd[3651830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 29 16:27:57 fail2ban sshd[3651830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 May 29 16:27:59 fail2ban sshd[3651830]: Failed password for invalid user user2 from 201.138.189.215 port 39450 ssh2 ... show less	Brute-Force SSH
🇺🇸 jfc	2026-05-29 16:00:27 (5 days ago)	2026-05-29T09:55:52.816966-06:00 oracle5 sshd[1429048]: Invalid user vbox from 201.138.189.215 port ... show more 2026-05-29T09:55:52.816966-06:00 oracle5 sshd[1429048]: Invalid user vbox from 201.138.189.215 port 57488 2026-05-29T09:57:22.793650-06:00 oracle5 sshd[1430921]: Invalid user pentest from 201.138.189.215 port 48312 2026-05-29T10:00:26.513470-06:00 oracle5 sshd[1434774]: Invalid user deploy from 201.138.189.215 port 37790 ... show less	Brute-Force SSH
🇩🇪 updown.io	2026-05-29 15:57:33 (5 days ago)	2026-05-29T17:55:59.960413+02:00 db3.updn.io sshd[2992842]: pam_unix(sshd:auth): authentication fail ... show more 2026-05-29T17:55:59.960413+02:00 db3.updn.io sshd[2992842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 2026-05-29T17:56:02.559505+02:00 db3.updn.io sshd[2992842]: Failed password for invalid user vbox from 201.138.189.215 port 42038 ssh2 2026-05-29T17:57:30.371768+02:00 db3.updn.io sshd[2994042]: Invalid user pentest from 201.138.189.215 port 33638 2026-05-29T17:57:30.375343+02:00 db3.updn.io sshd[2994042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.138.189.215 2026-05-29T17:57:32.467512+02:00 db3.updn.io sshd[2994042]: Failed password for invalid user pentest from 201.138.189.215 port 33638 ssh2 ... show less	Brute-Force SSH

Showing 511 to 525 of 658 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.206.139

🇩🇪 139.59.151.64

🇳🇱 91.124.209.51

🇨🇳 49.72.111.25

🇺🇸 20.65.194.87

🇬🇧 188.240.59.61

🇺🇸 185.223.152.184

🇺🇸 147.185.132.204

🇨🇳 123.145.9.174

🇨🇳 106.117.117.91

🇺🇸 64.62.156.152

🇨🇳 61.53.1.98

🇨🇳 14.103.118.167

🇸🇬 2a09:bac5:55fd:25b9::3c2:4c

🇬🇧 2a06:4880:6000::8d

🇩🇪 213.209.159.158

🇸🇬 212.73.148.22

🇺🇸 205.210.31.40

🇳🇱 192.142.24.7

🇺🇸 185.255.100.197