AbuseIPDB » 116.48.139.201

116.48.139.201 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 100%: ?

100%

ISP	Hong Kong Telecommunications (HKT) Limited
Usage Type	Unknown
Hostname(s)	201.139.48.116.static.netvigator.com
Domain Name	netvigator.com
Country	Hong Kong
City	Hong Kong, Hong Kong

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 116.48.139.201

Whois 116.48.139.201

IP Abuse Reports for 116.48.139.201:

This IP address has been reported a total of 75 times from 21 distinct sources. 116.48.139.201 was first reported on December 18th 2020, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
IrisFlower	2 hours ago	Unauthorized connection attempt detected from IP address 116.48.139.201 to port 22 [T]	Port Scan
Hirte	27 Feb 2021	SS5,Magento Bruteforce Login Attack POST /index.php/admin/	Web Spam Bad Web Bot Web App Attack
IrisFlower	27 Feb 2021	Unauthorized connection attempt detected from IP address 116.48.139.201 to port 22 [T]	Port Scan
kais-universum.de	25 Feb 2021	Feb 25 09:28:26 h2880623 wordpress(www.kai-oesterreich.de)[19527]: Authentication failure for kai fr ... show moreFeb 25 09:28:26 h2880623 wordpress(www.kai-oesterreich.de)[19527]: Authentication failure for kai from 116.48.139.201 Feb 25 09:28:27 h2880623 wordpress(www.kai-oesterreich.de)[19527]: Authentication failure for kai from 116.48.139.201 Feb 25 09:28:29 h2880623 wordpress(www.kai-oesterreich.de)[19527]: Authentication failure for kai from 116.48.139.201 ... show less	Brute-Force Web App Attack
SpaceHost-Server	24 Feb 2021	116.48.139.201 - - [24/Feb/2021:18:26:24 +0100] "POST /wp-login.php HTTP/1.0" 200 6385 "http://chago ... show more116.48.139.201 - - [24/Feb/2021:18:26:24 +0100] "POST /wp-login.php HTTP/1.0" 200 6385 "http://chagos.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 116.48.139.201 - - [24/Feb/2021:18:26:25 +0100] "POST /wp-login.php HTTP/1.0" 200 6610 "http://chagos.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" 116.48.139.201 - - [24/Feb/2021:18:26:27 +0100] "POST /wp-login.php HTTP/1.0" 200 6530 "http://chagos.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0" show less	Hacking Web App Attack
websitecare.io	23 Feb 2021	WordPress login Brute force / Web App Attack on client site.	Brute-Force
Hirte	23 Feb 2021	C1,Magento Bruteforce Login Attack POST /index.php/admin/	Web Spam Bad Web Bot Web App Attack
xyz.rip	22 Feb 2021	Magento Bruteforce Admin...	Brute-Force Web App Attack
Hirte	20 Feb 2021	SS5,Magento Bruteforce Login Attack POST /index.php/admin/	Web Spam Bad Web Bot Web App Attack
Anonymous	20 Feb 2021	Disconnected (auth failed, 1 attempts in 6 secs):	Hacking Brute-Force
hosterpack.com	19 Feb 2021	(imapd) Failed IMAP login from 116.48.139.201 (HK/Hong Kong/201.139.48.116.static.netvigator.com): 1 ... show more(imapd) Failed IMAP login from 116.48.139.201 (HK/Hong Kong/201.139.48.116.static.netvigator.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 20 04:24:22 ir1 dovecot[9799]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=<[email protected]>, method=PLAIN, rip=116.48.139.201, lip=158.58.191.107, TLS, session=<deAbArq7uu10MIvJ> show less	Port Scan
samelarmain.com	19 Feb 2021	Feb 19 12:02:47 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\ ... show moreFeb 19 12:02:47 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\<[email protected]\>, method=PLAIN, rip=116.48.139.201, lip=10.64.89.208, TLS, session=\<0ucVZK677tB0MIvJ\> Feb 20 01:54:23 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\<[email protected]\>, method=PLAIN, rip=116.48.139.201, lip=10.64.89.208, TLS: Disconnected, session=\<MqAsArq7vu10MIvJ\> ... show less	Hacking Brute-Force
vestibtech	18 Feb 2021	Feb 18 08:10:40 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): u ... show moreFeb 18 08:10:40 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=<[email protected]>, method=PLAIN, rip=116.48.139.201, lip=185.198.26.142, TLS: Connection closed, session=<Hk/VvJ27wMp0MIvJ> ... show less	Brute-Force
hosterpack.com	18 Feb 2021	(imapd) Failed IMAP login from 116.48.139.201 (HK/Hong Kong/201.139.48.116.static.netvigator.com): 1 ... show more(imapd) Failed IMAP login from 116.48.139.201 (HK/Hong Kong/201.139.48.116.static.netvigator.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 18 17:01:45 ir1 dovecot[9799]: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=<[email protected]>, method=PLAIN, rip=116.48.139.201, lip=158.58.191.107, session=<po3sWpy79dh0MIvJ> show less	Port Scan
Paul Smith	18 Feb 2021	Email Auth Brute force attack 3/3 in last day	Brute-Force

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩