JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 201.165.139.35

201.165.139.35 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 100%: ?

100%

ISP	Mega Cable, S.A. de C.V.
Usage Type	Fixed Line ISP
ASN	AS13999
Hostname(s)	customer-TCN-MCA-139-35.megared.net.mx
Domain Name	mega.mx
Country	🇲🇽 Mexico
City	San Marcos Tlacoyalco, Puebla

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 201.165.139.35

Whois 201.165.139.35

IP Abuse Reports for 201.165.139.35:

This IP address has been reported a total of 125 times from 50 distinct sources. 201.165.139.35 was first reported on April 22nd 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-26 13:03:14 (1 hour ago)	tcp/1433	Port Scan
Anonymous	2026-06-26 05:35:51 (9 hours ago)	unsolicited connect TCP dport 445 (sport 10000)	Hacking
🇺🇸 drewf.ink	2026-06-25 11:21:40 (1 day ago)	[11:21] Port scanning. Port(s) scanned: TCP/1433	Port Scan
🇷🇸 Smel	2026-06-25 08:23:24 (1 day ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇸🇬 drewf.ink	2026-06-25 08:08:58 (1 day ago)	[08:08] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): NT LM 0.12	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-25 02:58:00 (1 day ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 bellovacorp	2026-06-25 00:03:32 (1 day ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 Petre 21_ip	2026-06-24 21:55:21 (1 day ago)	2026-06-24T23:55:20.347521+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-24T23:55:20.347521+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=201.165.139.35 DST=155.133.26.57 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=38237 PROTO=TCP SPT=10000 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇭🇰 mutebot.net	2026-06-24 18:05:22 (1 day ago)	SRC=201.165.139.35, PROTO=TCP, SPT=10000, DPT=445	Port Scan
🇺🇸 MPL	2026-06-24 13:18:46 (2 days ago)	tcp/1433	Port Scan
🇧🇷 diego	2026-06-24 12:10:02 (2 days ago)	[rede-arem1] 06/24/2026-09:10:01.782312, 201.165.139.35, Protocol: 6, ET CINS Active Threat Intellig ... show more [rede-arem1] 06/24/2026-09:10:01.782312, 201.165.139.35, Protocol: 6, ET CINS Active Threat Intelligence Poor Reputation IP group 282 show less	Hacking
🇷🇸 Scan	2026-06-24 01:21:01 (2 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Smel	2026-06-24 00:53:03 (2 days ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇷🇸 Scan	2026-06-23 00:51:40 (3 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Smel	2026-06-23 00:08:06 (3 days ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.96.139.129

🇫🇷 144.91.114.172

🇺🇸 100.50.17.159

🇱🇹 45.227.254.170

🇨🇳 223.109.141.9

🇰🇷 218.148.106.182

🇲🇴 182.93.50.90

🇷🇺 178.176.229.202

🇺🇸 172.253.1.29

🇩🇪 130.12.181.98

🇰🇷 121.179.93.147

🇩🇪 80.150.6.150

🇸🇬 43.173.160.11

🇺🇸 43.166.239.157

🇹🇼 210.61.148.174

🇺🇸 195.184.76.221

🇬🇧 193.163.125.158

🇳🇱 185.236.20.195

🇺🇸 165.227.188.42

🇳🇱 91.92.40.124