JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.28.49.136

139.28.49.136 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 69%: ?

69%

ISP	Telecom SY
Usage Type	Fixed Line ISP
ASN	AS216472
Domain Name	highspeed-sy.com
Country	🇸🇾 Syrian Arab Republic
City	Aleppo, Aleppo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.28.49.136

Whois 139.28.49.136

IP Abuse Reports for 139.28.49.136:

This IP address has been reported a total of 31 times from 29 distinct sources. 139.28.49.136 was first reported on January 5th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 pltcldvlpr	2026-05-31 13:44:57 (6 days ago)	Bogus Useragent: 139.28.49.136 - - [31/May/2026:15:44:57 +0200] "GET /protocol?id=st_5_82&offset=350 ... show more Bogus Useragent: 139.28.49.136 - - [31/May/2026:15:44:57 +0200] "GET /protocol?id=st_5_82&offset=350&seq=208 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible; MSIE 6.0; Windows 98; Win 9x 4.90; Trident/4.1)" asn=216472 org="High Speed For Internet Services L.L.C" country=SY ... show less	Bad Web Bot
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 week ago)	Aisuru(Mirai variant) DDoS \| Incident ID: fd8a75e9-7ad9-4605-bec7-39ad26683952	DDoS Attack
🇵🇱 Yachiyo Runami	2026-05-25 06:01:40 (1 week ago)	Port Scan on Honeypot \| Ports: 23/Telnet \| Proto: TCP(1) \| Flags: all SYN \| TTL: 47 \| Len: 44B \| Win ... show more Port Scan on Honeypot \| Ports: 23/Telnet \| Proto: TCP(1) \| Flags: all SYN \| TTL: 47 \| Len: 44B \| Win: 1506(1) \| F2B/ufw-honeypot@2026-05-25T06:01:40Z show less	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-05-24 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 MPL	2026-05-24 20:41:14 (1 week ago)	tcp/23 (2 or more attempts)	Port Scan
🇩🇪 anycast_ac	2026-05-24 05:01:47 (1 week ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/23 (telnet). Tried credentials: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/23 (telnet). Tried credentials: b'default':b'antslq' show less	DDoS Attack IoT Targeted Brute-Force
🇩🇪 anycast_ac	2026-05-24 04:45:35 (1 week ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/23 (telnet). Tried credentials: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/23 (telnet). Tried credentials: b'admin':b'admin' Family fingerprint: mirai Commands captured: $ enable $ system $ shell $ sh $ /bin/busybox boat show less	DDoS Attack IoT Targeted Brute-Force
🇫🇷 security.rdmc.fr	2026-05-24 04:10:02 (1 week ago)	Port Scan Attack proto:TCP src:49825 dst:23	Port Scan
🇺🇸 RAP	2026-05-24 03:15:48 (1 week ago)	2026-05-24 03:15:48 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 dmsec	2026-05-23 21:41:09 (2 weeks ago)	The IP 139.28.49.136 is scanning a server on port 23. Attack at: 2026-05-23 18:41 (yyyy/MM/dd HH:mm) ... show more The IP 139.28.49.136 is scanning a server on port 23. Attack at: 2026-05-23 18:41 (yyyy/MM/dd HH:mm) UTC -3. show less	Port Scan
Anonymous	2026-05-21 17:02:46 (2 weeks ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
Anonymous	2026-05-21 16:32:43 (2 weeks ago)	Unauthorized access (tcp/23/telnet)	Port Scan
🇨🇳 ThreatBook.io	2026-05-12 00:09:26 (3 weeks ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/139.28.49.136	SSH
🇬🇧 PeravixGroup	2026-05-11 15:23:48 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
Anonymous	2026-05-10 14:21:09 (3 weeks ago)	Attack Signature Blocked: /wishlist/index/add/product/12689/form_key/qoHopp7Cm6pwT1tZ/ (Magento Site ... show more Attack Signature Blocked: /wishlist/index/add/product/12689/form_key/qoHopp7Cm6pwT1tZ/ (Magento Site) (Botnet activity attributed to: Angara Technologies Group / mikhail-smirnov-79830322) show less	Web App Attack Bad Web Bot

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.197

🇸🇪 155.4.244.169

🇭🇰 199.45.155.93

🇧🇷 189.20.181.138

🇮🇳 182.18.180.44

🇺🇸 159.65.255.5

🇺🇸 152.32.235.4

🇮🇳 143.110.177.177

🇸🇬 94.231.206.108

🇧🇬 91.191.209.74

🇳🇱 89.21.67.133

🇬🇧 87.236.176.138

🇨🇷 74.244.145.5

🇺🇸 66.132.186.228

🇺🇸 65.49.1.101

🇨🇳 60.208.125.156

🇩🇪 2a01:4f8:150:13a5::100:27

🇺🇸 170.187.165.139

🇸🇬 165.154.205.91

🇺🇸 147.185.132.183